Alleged FSB Spyware Found on Russian Programmer’s Android Phone

Posted in Commentary with tags , on December 5, 2024 by itnerd

Here’s some interesting reading for you. A Russian programmer has made the claim that FSB agents planted spyware on his Android phone:

A programmer said the Russian Federal Security Service (FSB) installed spyware on his Android phone after he was detained in Moscow earlier this year. Security researchers confirmed that his phone had spyware installed, likely when the authorities had physical access to his phone and had forced him to give up his passcode. 

For the programmer Kirill Parubets, it was a terrifying and traumatic ordeal. But thanks to his computer expertise and vigilance, his story offers a rare first-hand account of Russian authorities deploying spyware on one of its citizens — not by using a technically advanced remote hacking attack, but with a more crude approach. 

I encourage you to read the whole story as it really will open your eyes.  Ken Westin, Sr. Solutions Engineer, LimaCharlie has an opinion on this incident:

“If a device is confiscated by an authoritarian regime, there is a very good chance it has been compromised. When they have physical access to the device it is much easier to compromise, as you are not relying on remote exploitation of the device. There are many more methods to compromise a device when it is connected to a cable. Also, not having to crack the password, as they can get it by intimidating and even beating the target into providing it, makes the process even easier. Many companies have security polices to bring “burner” devices to certain countries for this reason. If a device is confiscated temporarily or left in a hotel room, the likelihood of it being compromised due to spies having physical access increases substantially.”

I think that this story serves as a cautionary tale as to what can happen when you lose control of your devices. Which means that you should do the best that you can to ensure that you’re not placed in this sort of situation.

Leave a comment »

2025 Predictions from the CTO of Yellowbrick

Posted in Commentary with tags on December 5, 2024 by itnerd

Today we have 2025 predictions from Mark Cusack who is the CTO  Yellowbrick. The first prediction is a big one:

The Rise of Cloud-to-On-Premises Repatriation
As the data management and cloud technology landscape evolves, we predict a significant shift in 2025 toward cloud-to-on-premises repatriation. Businesses will increasingly migrate workloads from public cloud platforms to on-premises or private cloud solutions. This trend will be fueled by:

Rising Cloud Costs: Organizations will seek more cost-effective alternatives as cloud expenditures escalate.

Security Concerns: Growing fears over cloud vulnerabilities and breaches will drive companies to prioritize controlled, secure environments.

Data Sovereignty Requirements: Heightened regulatory demands will compel businesses to keep sensitive data in-house.

Advancements in affordable, high-performance hardware will make this transition both practical and economical, enabling businesses to maintain greater control over their data while enhancing security and compliance. This marks a pivotal moment in redefining hybrid cloud strategies.

Hybrid Cloud Will Become the Standard
Hybrid cloud deployments will become the norm, driven by the philosophy of “own the base, rent the spike.” This approach offers the best balance of cost and flexibility, enabled by Kubernetes-powered solutions that make portability seamless across on-premises and multi-cloud environments.

  • Own the base, rent the spike: Businesses will keep core workloads on-premises and scale up with the cloud during peak demand.
  • Cost and flexibility: A hybrid cloud will provide optimal cost efficiency while maintaining flexibility.
  • Kubernetes-enabled agility: Organizations will find that Kubernetes will make it easy to move workloads between cloud and on-premises while supporting agile operations.

This shift will give companies the freedom to scale as needed without sacrificing control or cost-efficiency.

Leave a comment »

Catalyst Commons is now home to Canada’s largest privately held co-working space

Posted in Commentary with tags on December 5, 2024 by itnerd

Catalyst Commons, Kitchener’s fastest-growing co-working space, is excited to announce the opening of a significant expansion to its facility. At over 125,000 square feet, this move solidifies it as Canada’s largest privately held co-working space and further positions Catalyst as Waterloo Region’s leading hub for entrepreneurial innovation.

With the addition of this expansion, Catalyst is also proud to announce its role as the first operational site under the Ontario Vehicle Innovation Network (OVIN) Incubators initiative. Announced by Ontario Premier Doug Ford earlier this year, this initiative will serve as a catalyst for Ontario’s automotive and mobility sector, accelerating the creation and growth of new Ontario-based companies and connecting them with the global market.

Founded in 2020 by serial entrepreneurs Kurtis McBride, Amber French and Angela Watkins, Catalyst Commons is an industry-driven centre for businesses of all sizes, promoting collaboration, growth and innovation. Since its inception, Catalyst has attracted over 150 companies, creating a vibrant ecosystem for businesses to thrive. Among the latest additions to the Catalyst community are industry giants such as Bloomberg, IMAX, Conga, Miovision and IPON, McCallum Santher, Skillswave, ThinkLP, Bridgit, Cabinovo and DialPad.

As part of this collaboration with Mercedes-Benz as the first partner, the OVIN Incubators are designed to bridge the gap between applied research and the commercialization of intellectual property, connecting industry leaders, startups, scale-ups and post-secondary institutions. As part of this collaboration, the Kitchener-Waterloo site at Catalyst Commons will host space for entrepreneurs and startups, connecting regional activities in this area focused on building the next generation of Ontario-based automotive and mobility ventures and strengthening the province’s automotive supply chain.
 

Please see a list of new companies joining the Catalyst Commons below:

  • Bloomberg
  • Bridgit
  • Cabinovo 
  • Conga 
  • DialPad
  • Ducimus 
  • Capital H2O 
  • Geomatics 
  • IMAX
  • IPON
  • Korbit.ai
  • Loftin Management 
  • McCallum Santher 
  • Miovision
  • Northern Mechatronics 
  • Nutratology
  • Reel-In Robotics 
  • Skillswave 
  • Squint.ai
  • Swift Connect 
  • ThinkLP

To learn more about Catalyst Commons, visit catalyst-commons.com/.
 

Leave a comment »

82% of security leaders fear AI will amplify challenges around toxic combinations 

Posted in Commentary on December 5, 2024 by itnerd

New research from Panaseer, a leader in security posture management powered by Continuous Controls Monitoring (CCM), shows 82% of security leaders fear AI will amplify challenges around toxic combinations of control failures. Moreover, 92% believe growing IT complexity is increasing the threat of toxic combinations, putting high-value assets at greater risk. 

Toxic combinations of control failures refer to the interconnected risks spanning multiple inventories and asset relationships, that compound to create a pathway for attackers to compromise a business. Now attackers have AI at their disposal, security leaders are increasingly concerned that attackers will exploit these combinations as Marc Möesse, Chief Product Officer from Panaseer explains:  

Panaseer warns that because toxic combinations span multiple security domains, they don’t always take the same form and are very hard to detect and prioritize. Security teams often lack the time and tools needed to see how different combinations of risk overlap within their environments, and are therefore ill-equipped to address areas of vulnerability or prioritize remediation effectively.  

To tackle this challenge and help shine a light on toxic combinations, Panaseer has launched a new Compound Risk Metrics (CRMs) feature. These CRMs deliver actionable insights into the specific assets and relationships driving toxic combinations. This helps eliminate manual effort while ensuring consistent, reliable access to validated and verified data from across the business – far more than just a number or single line of data. Designed to address toxic combinations of risks across security domains, CRMs enable organizations to create complex, threat-driven risk profiles by identifying previously hidden or unknown vulnerabilities, prioritizing response and mitigating risk.

This is a unique solution available today that integrates data from multiple sources, including vulnerability, endpoint, Configuration Management Database (CMDB), user awareness, and Privileged Access Management (PAM) tooling, to spotlight hidden attack paths and devices at risk. Panaseer’s CRMs are uniquely automated and ready to deploy within hours, making it easy for users to start creating dashboards and getting insights from their data. 

You can read more in Panaseer’s new blog: https://panaseer.com/resources/blog/why-toxic-combinations-are-a-cause-for-real-concern-in-2025 

To download the ‘ControlWatch and the Continuous Controls Battle: Panaseer 2025 Security Leaders Peer Report’, please visit the Panaseer website: https://panaseer.com/resources/reports/2025-security-leaders-peer-report 

Leave a comment »

Discovery | HGTV | Food Network | ID | Magnolia Network. Rogers Sports & Media Unveils Winter Schedule, Launching January 1

Posted in Commentary with tags on December 5, 2024 by itnerd

Starting January 1, Canadians can continue watching their favourite shows with new seasons and series exclusively on Discovery, HGTV, Food Network, and more. Rogers is the new home to these iconic lifestyle brands and beloved content including titles such as Homestead Rescue (Discovery), Celebrity IOU with Drew and Jonathan Scott (HGTV), Diners, Drive-Ins, and Dives with Guy Fieri (Food Network), Signs of a Psychopath (ID), and Maine Cabin Masters (Magnolia Network).

Building on the exciting slate of hit content from Bravo, Citytv, FX, and FXX, Citytv+ adds thousands of hours of new and returning shows from Discovery, HGTV, Food Network, OWN, Cooking Channel, Animal Planet, Discovery Science, MotorTrend, and more.

Discovery will feature new seasons of off-the-grid living with Homestead Rescue, exploring the unknown in Expedition X, high-stakes underdogs in Hustlers Gamblers Crooks, bootleg legends in Moonshiners, the ultimate booze-making competition Moonshiners: Master Distiller, and all-new series Expedition Files and The Last Woodsman, beginning this January. That’s not all! Discovery will air repeat seasons of Caught, Gold Rush, Big Little Brawlers, and Outback Opal Hunters, plus special events such as Shark Week and Puppy Bowl.

Beginning this January, HGTV will have new seasons of star-studded transformations on Celebrity IOU with Drew and Jonathan Scottproperty pursuits with House Hunters, Home Town with Erin and Ben Napierheritage home renovation series Fixer to Fabulous, and over-the-top house hunting with My Lottery Dream Home, plus Married to Real Estate, Zillow Gone Wild, and Help! I Wrecked My House. Additionally, the channel will have repeat seasons from HGTV’s slate of home improvement programming including Why The Heck Did I Buy This House?, Rico to the Rescue, and Battle on the Mountain. 

The Food Network, connecting viewers to the power and joy of food, will feature all-new seasons of competition series Chopped, Kids Baking Championship, Wildcard Kitchen, and Spring Baking Championship, sizzling showdowns with Beat Bobby Flay, plus Guy Fieri’s Diners, Drive-Ins, and Dives and Guy’s Grocery Games to round out the schedule.

ID offers a slate chock-full of harrowing crimes, in-depth investigations, and powerful true stories with all-new seasons of Signs of a Psychopath, Very Scary People, Murder Under the Friday Night Lights, Death by Fame, Body Cam: On The Scene, and Evil Lives Here, plus past seasons of Real Time Crime.

Premiering on the Magnolia Network this January are new seasons of Maine Cabin Masters, Building Outside The Lines, and In With The Old, plus past seasons of Beachfront Bargain Hunt Renovations and Barnwood Builders to complete the schedule. 

Leave a comment »

Cyber Nations Foundation Announce A Strategic Partnership With BlackNorth

Posted in Commentary with tags , on December 5, 2024 by itnerd

Cyber Nations Foundation, a leader in cybersecurity training and talent placement, is proud to announce a strategic partnership with BlackNorth Initiative. This collaboration combines cybersecurity solutions with a commitment to diversity, equity, and inclusion, providing BlackNorth Initiative’s network of partners with innovative solutions and access to racialized cyber analysts.  

As cyber threats increase in complexity, this partnership is designed to equip BlackNorth Initiative and its partners – from small startups to large enterprises—with the talent and tools needed to protect their digital environments. Cyber Nations Foundation will provide small and mid-sized businesses with customized packages, offering foundational security protections and scalable solutions designed to safeguard critical data, privacy, minimize operational downtime.

Beyond strengthening cybersecurity, the partnership advances community-building goals by integrating diverse professionals into the cybersecurity workforce, helping companies achieve inclusive and socially responsible business practices.  

For more information visit cyber-nations.com/blacknorth

Leave a comment »

SurePath AI Launches Discovery Mode Empowering Partners to Take Secure Control of GenAI Adoption

Posted in Commentary with tags on December 5, 2024 by itnerd

SurePath AIa leader in governing generative AI for the enterprise, today announced the launch of SurePath AI Discovery at AWS re:Invent, a new offering that provides rapid visibility into a company’s employee use of public AI services. By classifying AI use by intent and identifying sensitive data violations, companies can better understand the volume, use case, and risk of AI use across their organization.

This no-cost, collaborative service has already launched with key strategic partners to power their customer offerings. By seamlessly integrating with leading platforms like Netskope, Zscaler, and Palo Alto Networks, SurePath AI Discovery operates across cloud, hybrid, and multi-cloud environments, delivering rapid, actionable intelligence through an intuitive, transparent approach.

SurePath AI Discovery provides a customized report uncovering organizational GenAI usage and risks, including:

  • GenAI apps that are already adopted throughout the organization
  • Pinpoint the most significant risks associated with deployed GenAI tools
  • Evaluate the ROI of the organization’s GenAI investments
  • Tailor recommendations to optimize GenAI utilization

The service is implemented by enterprise IT teams using Secure Access Service Edge (SASE) tools to redirect public GenAI traffic to SurePath AI for analysis. This approach ensures transparency and secure oversight of GenAI usage without disrupting end users.

SurePath AI Discovery is a partner-first offering that equips system integrators (SIs), managed service providers (MSPs), and managed security service providers (MSSPs) with a robust solution to enhance customer engagement. Partners are already embedding Discovery into GenAI workshops, GenAI security assessments, and AI Center of Excellence (CoE) initiatives to deliver unmatched value to their clients.

SurePath AI Discovery was developed to address enterprises’ rapidly evolving challenges in adopting GenAI. By working closely with the company’s strategic partners, SurePath AI created a service that identifies risks and helps businesses realize the full potential of their AI investments while maintaining control over sensitive data.

To learn more about SurePath AI’s partner program, please visit https://www.surepath.ai/company/partners.

Leave a comment »

Digital sales across Cyber Week for Canadian retailers reached $5.1B CAD in 2024

Posted in Commentary with tags on December 4, 2024 by itnerd

Following up on this post and this post, here are the final Cyber Week findings for 2024 from Salesforce.

Cyber Week Results | Key Findings for Canada + US + Global: 

Cyber Week: 

  • Digital sales across Cyber Week for Canadian retailers reached $5.1 billion CAD in 2024
  • Digital sales reached $76 billion in the United States (up 7% YoY) and $314.9 billion globally (up 6% YoY).

Black Friday:

  • The Black Friday online sales estimate for Canada is $309M CAD 
  • Globally online sales reached $74.4 billion (up 5% YoY) and $17.5 billion (up 7% YoY) in the United States. 

Cyber Monday: 

  • Global online sales reached $12.8 billion in the United States (up 3% YoY) and $49.7 billion globally (up 2% YoY).
  • The Canadian average discount rate during Cyber Week was 22% (down 7% YoY).
  • In contrast, the global average discount rate was 26% and the U.S. discount rate was 28%, both down 1% YoY.
  • The Average Order Value in Canada increased ever so slightly to $102 CAD up from $101 CAD last year.

Additional Global Findings

  • AI and agents play a big part in Cyber Week: Retailers doubled down on the use of AI, including agents, to power shopping experiences this season.
  • $60 billion of global online sales were influenced by AI and agents for product recommendations, targeted offers, and conversational customer service support.
  • Retailers used generative AI and agents 18% more during Cyber Week than the previous week, likely to drive efficiency and personalization for customers.
  • Mobile conversion picks up the pace: As consumers of all ages grow increasingly comfortable with mobile shopping and the mobile buying experience gets easier, the gap between mobile traffic and mobile orders is narrowing. This trend underscores a growing consumer willingness to make significant and high-value purchases directly from their smartphones.
  • More than 80% of both U.S. and global ecommerce traffic originated from a mobile device during Cyber Week
  • Exactly as predicted, mobile orders drove 70% of U.S. and global sales, up from 67% in 2023.
  • In total, mobile accounted for $220 billion in sales globally and $53.3 billion in the United States.
  • Mobile wallet usage also increased 16% globally during the week.
  • Social commerce plays critical role for retailers
  • Retailers implementing social commerce strategies saw 19% of their Cyber Week sales generated through platforms like TikTok Shop and Instagram.
  • Mixed bag of discounts drove mixed bag of results: Despite the threat of growing consumer appeal and low prices offered by Chinese marketplaces like Temu, Shein, and AliExpress, Western retailers did not offer significant discounts to compete.
  • Verticals with the highest global average discount rates included:
  • Makeup (40%)
  • General apparel (34%)
  • Skincare (33%)
  • Verticals with the highest U.S. average discount rates included:

Salesforce’s global press release can be found here if you want to go into the weeds on this.

Leave a comment »

Samsung Canada’s 10th Annual “Solve for Tomorrow” Contest Announced

Posted in Commentary with tags on December 4, 2024 by itnerd

Samsung Canada has announced the launch of this year’s Solve for Tomorrow contest and is now accepting applications from Canadian classrooms, from grades 6-12. With just four weeks left to register, this nationwide competition, now in its 10th year, encourages young minds to harness the power of STEM to address real-world issues. 

With the spotlight on critical themes such as environmental sustainability, equity for equity-seeking groups, and health in communities, this year’s contest challenges students to create solutions that could spark meaningful change. 

Key Highlights: 

  • Who: Canadian students in grades 6-12, with teachers submitting applications on their behalf 
  • What: Annual competition designed to foster STEM-based innovation to solve real-world problems 
  • When: Applications are open until December 20, 2025 – just four weeks left to apply! 
  • Prize: $125,000 in Samsung technology and vouchers for finalists and winners 

Find out more details here.

Leave a comment »

Dispersive Graduates from MissionLink’s 2024 Cohort And Joins Esteemed Alumni Network

Posted in Commentary with tags on December 4, 2024 by itnerd

Dispersive Holdings, Inc. , a leader in Stealth Networking which redefines preemptive cybersecurity with zero trust networking, quantum defense, and trusted access across enclaves and zones, is proud to announce that Rajiv Pimplaskar, CEO has graduated from MissionLink, an exclusive nationwide network that serves as a force-multiplier and gateway to accelerating innovation and advancing solutions to National Security threats.

Founded in 2010, MissionLink’s mission is to connect passionate problem solvers with next-gen, mission-critical capabilities in NatSec tech to the right resources, customers, investors, advisors and partners to solve the rapidly evolving national security concerns across commercial and federal sectors. For more than 10 years, MissionLink has been on the cutting edge of National Security and is recognized as the organization that has most captured the timeliness and immediacy of the latest security developments, discoveries and breakthroughs.

Dispersive was selected by world class technologists and thought leaders that serve on MissionLink’s Board of Advisors, which are at the core of MissionLink’s trusted innovation ecosystem and includes industry and National Security veterans who are committed to its success.

Newly appointed Advisory Board members are: Major General Charlie Cleveland, former NGA & SOCOM; Lt General Mike Groen, former Marine Corps /JAIC; Tim Reardon, NextFed; William “Mac” McHenry, DIU; Kevin Higgins, former CIA; Andy Boyd, former CIA. These six join the ranks of longstanding Advisory Board members who include: Maj. Gen. Aaron Prupas, former Air Force / MAVEN; Lt. Gen. Scott Howell, former JSOC; Bob Ashley, former DIA; Dawn Meyerriecks, former CIA; Chris Gladwin, Ocient; Mike Kushin, Parsons; Dr. Michael Capps, Diveplane; and Scott Herman, Maxar; Sue Gordon, former ODNI, NGA and CIA; Bill Crowell, former NSA; Charlene Leubecker, former CIA; Bob Gourley, former DIA; Bryan Ware, former DHS; Ellen McCarthy, former Department of State; Fran Landolf, former NSA; Will Grannis, CTO of Google Cloud; Jen Sovada,; Peggy Styer and Jack Kerrigan of Razor’s Edge Ventures; Tim Newberry, co-founder of BlackHorse Solutions; Wes Blackwell, Partner at Booz Allen Ventures; Jim Hunt, co-founder of Lavrock Ventures; Tim Estes, AngelAI; Jamie Dos Santos, former Cybraics Defense Corp; Gus Hunt, former CIA; Brian Hibbeln, former DoD; Alan Wade, former CIA; Dov Levy and Elma Levy, co-founders of Dovel Technologies.

Mission Partners for the 2024 cohort include: InQTel, Amazon Web Services, Carahsoft, Booz Allen Ventures and NobleReach.

MissionLink’s Organizing Board consists of: MissionLink’s cofounders Jeremy King of Benchmark Executive Search and Andy Lustig of Cooley LLP; Constantine Saab, former CIA senior executive, and Matt Devost of OODA Inc.

Leave a comment »

« Older Entries
Newer Entries »