Abstract Security Names Chris Camacho COO 

Posted in Commentary with tags on July 24, 2024 by itnerd

Abstract Security today announced that Chris Camacho has joined the company as Chief Operating Officer (COO). As one of Abstract’s co-founders, Camacho has been instrumental in launching and advising the company since its inception. Through his role as COO, Camacho will lead the company’s customer-first approach and spearhead its strategic global market expansion. 

A well-respected industry leader, Chris Camacho is an entrepreneur, investor, and advisor with more than 25 years of cyber security leadership experience from roles at The World Bank, Bank of America, Flashpoint, and others. Camacho has spearheaded initiatives across Operational Strategy, Incident Response, Threat Management, and Security Operations to ensure cyber risk postures align with business goals. Camacho earned a BS degree in Decision Sciences & Management of Information Systems from George Mason University.

Abstract has seen growing demand since emerging from stealth and announcing its Seed funding in March 2024. In April, Abstract announced the opening of its first Middle East office. In May, the company announced the addition of Christopher Key to its Board of Directors and was selected as a “Pioneering Cybersecurity Startup” winner, as part of the 2024 Global Infosec Awards.

Leave a comment »

BlackFog Strengthens Leadership Team with Strategic Appointments

Posted in Commentary with tags on July 24, 2024 by itnerd

BlackFog, today announced it has made new appointments to strengthen its leadership team as it witnesses significant growth. John Sarantakes has joined as Chief Revenue Officer, and Mark Griffith has been appointed as Vice President of Strategic Sales.

As one of its founding team members, CMO Brenda Robb has also been promoted to President of BlackFog. As executive director of the company, Brenda led the expansion of the company into Northern Ireland, where BlackFog has now established R&D headquarters. As President, Brenda’s strong leadership skills and counsel will be leveraged with BlackFog’s expansion throughout North America.

With over 28 years in technology sales, John Sarantakes will play a pivotal role as CRO in driving global sales through direct sales and the development of a strong channel. He will also target sales growth across State, Federal, Local Government and Education sectors.

Previously at InMotion Software, John served as Senior Vice President of Strategy and Business Development. He has also held positions as Executive Vice President at Headspring Systems, Senior Vice President of Sales and General Manager of EMEA at Absolute Software and National Sales Director at Dell.

Mark Griffith was also appointed as Vice President of Strategic Sales at BlackFog. Griffith, who has more than 30 years of experience in strategic leadership and innovation, will lead BlackFog efforts to develop partnerships with MSPs and MSSPs, to secure customers in State, Local and Government agencies, and continue to work alongside customers on a tactical and operational standpoint.

These appointments lay the foundation for BlackFog’s next stage of rapid growth. As ransomware threats escalate, the demand for data protection and anti data exfiltration is at an all-time high. Organizations are seeking new effective solutions to help them protect their systems and data from ransomware attacks.

Leave a comment »

CrowdStrike Summoned To Capitol Hill To Explain His Company’s Screw Up

Posted in Commentary with tags on July 24, 2024 by itnerd

When the CrowdStrike snafu happened on Friday, I said this:

I’ll be watching this situation and posting updates when it warrants an update. But this situation is bad and likely won’t improve for a while. And when this is resolved, CrowdStrike will have a whole lot of explaining to do.

And later that day, I said this:

I wish every help desk globally well in dealing with this as this is going to be days if not a week or two of remediation. I also hope that CrowdStrike gets hauled in front of the relevant authorities globally to explain why this happened, and why corporate users should trust them again.

Well, it looks like I will get my wish based on this:

Today, House Committee on Homeland Security Chairman Mark E. Green, MD (R-TN) and Subcommittee on Cybersecurity and Infrastructure Protection Andrew Garbarino (R-NY) sent a letter to CrowdStrike Chief Executive Officer George Kurtz, requesting his public testimony before the Committee regarding the global information technology (IT) outage that occurred last Friday. The outage was attributed to a “defect” in a CrowdStrike software update. The cascading effects impacted key functions of the global economy including aviation, healthcare, banking, media, and emergency services. 

It will be interesting to see if he actually show’s up, and what he says if he does. This company pretty much executed the most successful cyberattack in the history of the planet….. By accident. So I am not surprised that Congress wants to ask some questions about this. And what he’s going to ensure that this won’t happen again.

1 Comment »

New GeoFencing, Compliance Solution from Appdome

Posted in Commentary with tags on July 23, 2024 by itnerd

Appdome today announced it has enhanced its award-winning Geo-Fraud Detection service to include two new defenses: Geo-Location Fencing and Geo DeSync Attack Detection. Combined with other Geo-Compliance features available on the Appdome platform, mobile app developers and enterprises can eliminate location-based fraud, ensure geo-compliance and deliver location relevant user experiences in mobile apps free from location spoofing, fake location, VPNs, Fake GPS Apps and other threats.

Geo-fencing is essential in finance apps and other regulated industries that need to meet Know Your Customer (KYC) and other compliance mandates, such as the US Federal Financial Institutions Examination Council (FFIEC), EU General Data Protection Regulation (GDPR), and the Monetary Authority of Singapore (MAS) requirements. Geo-fencing enables mobile app developers to restrict or limit app access on a country or regional level, ensuring that operations are compliant with local laws and regulations.

A Geo Desync Attack is a cyber-attack that intentionally creates mismatches in location data on a mobile device. By manipulating GPS coordinates, altering the time zone settings, and falsifying accelerometer readings, attackers can deceive location-based services and security systems. This type of attack can lead to inaccurate tracking, unauthorized access, and potential breaches of security protocols, undermining the integrity of location-dependent applications and services.

Unlike legacy geo compliance offerings that rely on proprietary, costly, and vendor-built geo service networks, the Appdome Geo Compliance solution zeros in on protecting the mobile device’s built-in location services and ensures these services have not been abused or tampered with. Appdome’s approach eliminates the need for third-party networks, SDKs, complex server-based implementations and does not require third-party monthly usage fees, allowing the enforcement to work even if the device is not network-connected.

The full Appdome Mobile Geo-Compliance solution puts an end to geo-fraud by detecting fake location, fake GPS apps, fraudulent location, detect VPN, no SIM (fake device), teleportation, Geo DeSync and other attacks. Customers simply select the Geo-Compliance features needed in any Android & iOS apps and initiate the build command from CI/CD or using the Appdome Platform’s “Build My App” button. Appdome’s patented technology uses machine learning to code the defenses into each application, so mobile developers don’t have to.

The Appdome Geo-Compliance solution is available in multiple enforcement modes including advanced telemetry and customized responses or workflows when geo compliance threats are detected, and monitoring geo-fraud attacks via the Appdome ThreatScope™ Mobile XDR, either before or after the deployment of geo-location defenses via the Appdome platform.

See the full Appdome Mobile Geo-Compliance solution live at Black Hat USA August 3-8, 2024 in booth #1350.

For more information on Appdome Geo-Compliance capabilities and to book a personalized demo, visit https://www.appdome.com/mobile-fraud-detection/geo-compliance/.

Leave a comment »

Greece’s Land Registry Has Been Attacked On A Scale That I Have Never Seen Before

Posted in Commentary with tags on July 23, 2024 by itnerd

From the “I can’t believe the scale of this” department, comes this story where Greece’s Land Registry has been hit by 400 cyberattacks that have resulted in what they call a “limited scale” data breach.

Mind. Blown.

I’m going to come back as to why my mind is blown. But first, here’s the relevant details:

The Land Registry agency in Greece has announced that it suffered a limited-scope data breach following a wave of 400 cyberattacks targeting its IT infrastructure over the last week.

The agency said hackers managed to compromise employee terminals and steal 1.2 GB of data, corresponding to roughly 0.0006% of the total data held by the government organization.

The stolen data reportedly does not contain any citizens’ personal information but primarily consists of typical administrative documents, the exposure of which is not expected to impact the registry’s operations.

The announcement also mentions that the hackers attempted to create a malicious user to infiltrate the agency’s central database, but they failed.

One of the database’s backups, which are updated daily, was accessed by the unauthorized actors. However, the subsequent attempt to exfiltrate the data to an external server was blocked.

The Land Registry’s internal investigation, aided by the Cybersecurity Directorate of the General Staff of National Defense, has not found any evidence of ransomware having been deployed on the breached systems.

Emergency actions to reduce the risk of ransomware have been taken, like terminating all VPN access to block malicious users.

Rogier Fischer, CEO, Hadrian had this comment:

“Based on the information provided, the data breach at the Land Registry agency in Greece doesn’t seem to fall under the GDPR’s mandatory disclosure bracket. The stolen data amounted to 1.2 GB or 0.0006% of the agency’s total data, and it primarily consisted of administrative documents without any citizens’ personal information,”

“Since the breach did not affect personal data or disrupt the agency’s operations, it likely doesn’t pose a significant risk to individuals’ rights and freedoms.”

“Despite the large number of cyberattacks, the agency successfully blocked attempts to exfiltrate data and thwarted further malicious activities. Such proactive approach helps maintain trust and demonstrates commitment to data protection, even if formal disclosure isn’t required,”

While I applaud this organization for shutting this down, it still blows my mind that the threat actors tried as hard as they did to try and set up shop and steal data. This illustrates why you need robust, multi layered defences to not only keep the bad guys out, but to respond if they get in.

Leave a comment »

Fubo Expands Soccer Coverage with 2024 DIRECTV Soccer Champions Tour

Posted in Commentary with tags on July 23, 2024 by itnerd

FuboTV Inc. announced today it has acquired live streaming rights to the 2024 DIRECTV Soccer Champions Tour in Canada. This collaboration will offer fans unparalleled access to six iconic matches featuring some of the world’s best football clubs in the coming weeks.

The tour will feature five elite European soccer clubs – Real Madrid, FC Barcelona, AC Milan, Manchester City FC, and Chelsea FC – competing across six legendary stadiums in the United States including Yankee Stadium in New York City and Soldier Field in Chicago.

DIRECTV Soccer Champions Tour Schedule:

●        Saturday, July 27: Yankee Stadium, New York City, 6 p.m. EDT

●        Tuesday, July 30: Camping World Stadium, Orlando, 7 p.m. EDT

●        Wednesday, July 31: Soldier Field, Chicago, 8:30 p.m. EDT

●        Saturday, August 3: MetLife Stadium, New Jersey, 7 p.m. EDT

●        Tuesday, August 6: M&T Bank Stadium, Baltimore, 7:30 p.m. EDT

●        Tuesday, August 6: Bank of America Stadium, Charlotte, 7 p.m. EDT

The agreement further solidifies Fubo’s position as Canada’s premier soccer streaming platform. Fubo also offers subscribers exclusive soccer content in Canada, including English Premier League available in 4K, and expansive sports coverage through partners like CBC, MLB.TV, NBA TV Canada and OneSoccer. Fubo’s growing entertainment and news offering includes dozens of live TV channels and over 12,000 TV shows and movies on demand.

Subscribers can stream Fubo programming in Canada anywhere and at any time, from their mobile device, connected TV or web browser. The Fubo app is available on Amazon Fire TV, Android, GoogleTV, Apple TV, Chromecast, Hisense, iOS, LG TV, Roku and Xbox One.

For more information, visit www.fubo.tv.

The DIRECTV Soccer Champions Tour was represented by Sportfive in deal negotiations with Fubo.

Leave a comment »

Equinix to Extend its Digital Infrastructure Platform to the Philippines

Posted in Commentary with tags on July 23, 2024 by itnerd

 Equinix, Inc. today announced its planned entry into THE PHILIPPINES with the acquisition of three data centers from Total Information Management (“TIM”), a leading technology solutions provider.

Following the recently announced expansions in MALAYSIA and INDONESIA, this strategic move aims to help businesses expand and capitalize on the digital opportunity of the fast-growing SOUTHEAST ASIA region. The all-cash transaction represents a multiple of approximately 15x the projected EBITDA at full utilization and is expected to close in 2H 2024, subject to customary closing conditions.

The acquisition of the three high-performance data centers will provide capacity for Equinix to address the digital needs of local and overseas businesses in the Philippines. Enterprises, cloud and IT service providers, and network service providers around the world can leverage Platform Equinix to interconnect and exchange data privately and securely within a vibrant ecosystem of business partners and customers. Existing customers of TIM, including network and financial services companies, will also gain access to Equinix’s global ecosystems of more than 10,000 companies, including more than 2,000 networks and 3,000 cloud and IT service providers.

Southeast Asia’s digital economy grew to $218 billion in gross merchandise value (GMV) in 2023.1 In particular, the Philippines’ digital economy is expected to continue its upward climb toward $35 billion by 2025, growing at a compound annual growth rate (CAGR) of 20%.2 The country is also seeing a surge in demand for digital infrastructure services, driven by a highly engaged digital population,  booming e-commerce adoption and various government initiatives to promote digitization, such as the E-Government Masterplan 2022 and the Digi-Ed 2028 program.

Highlights / Key Facts

  • The three carrier-neutral and interconnection-rich data centers include more than 1,000 cabinets of capacity and land for further expansion. These data centers will support the digital transformation of local and global customers looking to expand into the Philippines.
  • As part of Equinix’s ambitious investment plans in the Asia-Pacific region, the company will expand in new markets including Jakarta, Indonesia (JK1) and Chennai, India (CN1) later this year. With the capacity allocation by the government, Equinix will also expand its footprint in Singapore. These expansions will reinforce Equinix’s leadership in the region and support the digital transformation of customers expanding into new markets.
  • Today, the global footprint of Platform Equinix spans 260 data centers across 71 metros and 33 countries. In Asia-Pacific, Equinix currently operates 56 data centers in 14 key metros across Australia, China, Hong Kong, India, Japan, Korea, Malaysia and Singapore, including the recently opened data centers in Johor (JH1) and Kuala Lumpur (KL1) in Malaysia.

Leave a comment »

TELUS Community Boards reach milestone with $100 million in donations to Canadian charities

Posted in Commentary with tags on July 23, 2024 by itnerd

TELUS is proud to announce a major milestone in charitable giving in Canada, with TELUS’ Community Board program reaching $100 million in donations to local charities across the country. Funded by the TELUS Friendly Future Foundation, TELUS’ Canadian Community Boards are composed of local business and community leaders and are empowered to make decisions about where charitable grants are best allocated based on need and maximum impact. As youth-serving organizations struggle to keep up with the demand for their services, and with the number of Canadians making charitable donations on the decline for the eleventh consecutive year, TELUS Community Board grants have remained an important source of funding for grassroots charities nationwide for over two decades. Each year, over $6 million in grants, made possible by TELUS Friendly Future Foundation, are contributed to support grassroots community-based health and education programs that help Canadian youth and their families thrive.

With 13 Community Boards across Canada, TELUS is continuing to expand into new communities, providing even more youth with new opportunities that help facilitate life-changing connections, nurture a sense of belonging, and empower them to thrive. Over the past two years alone, TELUS has expanded the geographical area of eight of its Community Boards including, Interior and Northern B.C., Vancouver and Coastal, Manitoba and Saskatchewan, Edmonton and Northern Alberta, Calgary and Southern Alberta, Ottawa and Eastern Ontario, Barrie and Central Ontario, and Greater Toronto and Hamilton Area.

To apply for a TELUS Community Board grant, organizations must be a Canadian registered charity and meet the eligibility funding criteria requirements, including support for youth, up to age 29, experiencing health or education barriers that inhibit their ability to reach their full potential. With the next round of funding opening on August 27 and closing October 8, local charities are encouraged to visit friendlyfuture.com/communityboards to learn more and submit an application.

Individuals and organizations across Canada are invited to partner with TELUS and TELUS Friendly Future Foundation in support of grassroots charities nationwide and our efforts to help address the ongoing and urgent needs facing underserved youth. Visit friendlyfuture.com/donate to give.

Leave a comment »

Oil rig data leaks raise terrorism threat

Posted in Commentary with tags on July 23, 2024 by itnerd

In November 2023, Cybernews researchers discovered an openly accessible storage with over 1.5 million sensitive files. The files contained personal employee information and operational data from multiple energy companies. 

The research team has been able to attribute the leak to WorldLive LLC, a Louisiana-based company that specializes in tracking employee training, managing assets, and creating maintenance schedules for energy companies.

Some of the examined files were connected to ExxonMobil and Guyana Revenue Authority, JP Oil Holdings, Broussard Brothers, and Noble Energy, acquired by Chevron Corporation. However, given the scope of the leak, more companies could be affected.

The leak was caused by missing authentication on Azure Cloud Storage Blob – a cloud-based service from Microsoft Azure that allows users to store and manage large amounts of unstructured data such as text, binary data, and media files.

The leaked data includes:

  • Employee names 
  • Addresses
  • Phone numbers
  • Dates of birth
  • Social Security numbers (SSN)
  • Physical examination and drug test forms
  • Scanned documents
  • Employee certificates
  • Templates for employee cards
  • Employee resumes with photos
  • On-site assessment forms with photos of critical infrastructure


The risk of attacks

Cybersecurity neglect by the companies’ service provider is highly concerning, as the energy sector is considered a critical infrastructure. Apart from the devastating effects in the case of an attack, the sector is highly targeted by malicious actors.

For the full report, visit: https://cybernews.com/security/worldlive-oil-rig-data-leak/

Leave a comment »

Premier East Coast Cybersecurity Event Returns to New York City in September

Posted in Commentary on July 23, 2024 by itnerd

Cybertech NYC 2024, the largest East Coast event for the cyber industry, will take place on September 5, 2024, at the Metropolitan Pavilion in Chelsea, New York. This prestigious conference will gather over 1,500 attendees, including CISOs and other industry professionals, key solutions providers, high-ranking government officials, and innovative startups.

The event will feature an exhibition hall, a record-breaking Startup Pavilion, and sector-specific special events covering critical topics such as:

  • AI and cybersecurity
  • Bridging the gap in cyber talent
  • Cyber and law enforcement
  • Cyber crisis management
  • Cyber in healthcare
  • Data security
  • Fake news and elections
  • Fintech security
  • Successful entrepreneurship
  • Supply chain security
  • Threat intelligence
  • Women in cyber
  • and more!

A literal who’s who in cybersecurity, government, and investing are set to present, including speakers from Nasdaq, NBC News, Nvidia, The Wall Street Journal, Visa and many others. The conference includes innovative breakouts such as:

  • Invest in the Best – This unique closed-door event provides pre-selected startups with an unparalleled opportunity to connect with leading global investors. Participation is by invitation only and space is limited. Startups and investors can apply at: https://nyc.cybertechconference.com/Invest_in_the_best.
  • Startup Pavilion – The record-breaking Startup Pavilion will showcase over 100 innovative startups from around the globe, highlighting groundbreaking solutions and technologies in cybersecurity. The pavilion offers a unique platform for startups to connect with industry leaders, investors, and potential partners, fostering collaboration and driving innovation in the cybersecurity sector. The record participation underscores the growing importance and dynamism of the cybersecurity landscape. To apply, visit: https://nyc.cybertechconference.com/startupreg.
  • Cybertech Talent Arena: In collaboration with TechDay, the talent arena will explore the future of cyber talent development with workshops, a competition, and talent zone focused on human capital in the cyber age. For more information, visit: https://nyc.cybertechconference.com/talent_arena.

Cybertech NYC 2024 promises to be a hub for networking, knowledge exchange, and showcasing groundbreaking cybersecurity solutions. With participants ranging from business decision-makers to C-level executives, this event is an unparalleled opportunity for professionals to connect and collaborate.

Event Details:

For media wishing to attend, register for a press, here: https://nyc.cybertechconference.com/registration.

To become a sponsor or exhibitor: https://nyc.cybertechconference.com/becomeasponsor.

For special rates and services: https://nyc.cybertechconference.com/delegationformnyc.

Leave a comment »

« Older Entries
Newer Entries »