Mujjo has announced that they have a number of discounts on their products during this year’s Prime Day. Their discounts include 30-40% off on products such as:
Check out Mujjo’s Amazon Page for other Prime Day discounts.
Clicks Technology announced today its teaming up with Best Buy Canada to bring the popular Clicks Keyboard for iPhone to Canadians at BestBuy.ca. Starting today, Best Buy customers can pre-order Clicks for iPhone 15 series models.
The Clicks Global Roll-out Continues
Expanding availability to Best Buy marks the beginning of the second phase of the Clicks global roll-out. Following a viral launch at CES in January 2024, Clicks quickly sold out the limited Founders Edition on its website, with strong demand from customers in over 85 countries around the world. Clicks early customers range from CEOs and students to award-winning artists and best-selling authors, demonstrating the preference for buttons spans across professions and ages. The expanded portfolio and colours being announced today reflect this overwhelming demand for a first-of-its-kind accessory that enhances the capabilities of iPhone.
Beyond the benefits of tactile typing, Clicks frees up screen real estate previously consumed by a virtual keyboard, giving iPhone users up to 50% more space for apps and content. Featuring a full keyboard with real buttons, Clicks offers users a typing experience that enables new possibilities for creating on the go with speed and precision. Clicks also gives iPhone users more control of their phone with support for keyboard shortcuts across many apps and dedicated keys that unlock the full power of iOS.
Over the last six months, new capabilities have been added to Clicks through the Clicks Keyboard app, now available in Apple App Store. The free app gives customers more control over their keyboard experience, including backlight settings and the ability to tailor the functionality of certain keys to their typing preferences. Plus, the recently announced ‘Clicks Mode’ turns the keyboard into a remote control for launching apps and invoking workflows by mapping those actions to physical keys as customizable action buttons.
Pricing and Availability
Customers can pre-order Clicks at bestbuy.ca starting today, for the following models:
HYAS Infosec today announced a new edition of HYAS Insight. The award-winning threat intelligence solution is used worldwide by law enforcement and Fortune 500 enterprise clients alike who benefit from the solution’s unprecedented visibility into the origins of attacks, the campaign infrastructure being used, and the resources likely to be used against them in the future.
As the industry expert in infrastructure intelligence, HYAS leverages a proprietary “VRA” analytics capability to provide organizations with superior real-time intelligence on Verdicts, Related Infrastructure, and Actors. HYAS Insight clients leverage VRA to better answer the critical cybersecurity questions about “what happened” and proactively mitigate the threat of future attacks with unmatched speed and effectiveness.
Additionally, HYAS Insight’s Malware Infrastructure dashboard now delivers timely, graphically presented insights into the hundreds of thousands of individual malware samples that HYAS detonates daily. This capability offers unparalleled visibility into the current state of malware globally, enabling organizations to identify and track trends, gather more information, and gain better visibility into the threat landscape.
HYAS’s Malware Infrastructure intelligence also includes a newly expanded set of domains and IPs representing malware command and control (C2), and new visualization that shows distribution of top C2 intelligence by country. Threat hunters and fraud investigators now get one-click visibility into the regions and resources through which threat actors actively push exploits. These new capabilities make it easy for security and fraud teams to see the most pertinent information and immediately drill down. And HYAS Insight’s free Intel Feed makes consuming the latest malware infrastructure intelligence a snap, without worrying about budget, the procurement process, or red tape.
A Preferred Alternative for RiskIQ Users
With RiskIQ’s partial integration into Microsoft Defender and impending end-of-life for its standalone features, organizations searching for a suitable alternative to a comprehensive infrastructure intelligence platform find HYAS Insight an exceptional replacement solution. New users will immediately benefit from comprehensive threat intelligence, real-time analytics, seamless integration, and an intuitive user interface.
HYAS Insight upgrades deliver:
The AP is reporting that Apple is the first target of EU’s new digital competition rules aimed at big tech called the Digital Markets Act:
European Union regulators on Monday leveled their first charges under the bloc’s new digital competition rulebook, accusing Apple of preventing app makers from pointing users to cheaper options outside its App Store.
The European Commission said that according to the preliminary findings of its investigation, the restrictions that the iPhone maker imposes on developers using its mobile App Store had breached the 27-nation bloc’s Digital Markets Act.
The rulebook, also known as the DMA, is a sweeping set of regulations aimed at preventing tech “gatekeepers” from cornering digital markets under threat of heavy financial penalties. The commission opened an initial round of investigations after it took effect in March, including a separate ongoing probe into whether Apple is doing enough to allow iPhone users to easily change web browsers, and other cases involving Google and Meta.
Ted Miracco, CEO, Approov had this to say:
“Apple is likely to continue its public relations efforts to highlight the changes it has made and to argue that its practices are in line with the DMA. This includes claims that over 99% of developers would pay the same or less in fees under the new business terms. However on MacBooks, developers can distribute software directly to users without going through Apple, avoiding any fees. The 30% fee on iPhone apps is Apple’s commission for distribution through their App Store platform. This allegedly covers costs like payment processing, hosting, and review processes, yet all of these functions are safely completed by alternative solutions on the MacBook. In the end, while regulations like the DMA and DMCC aim to foster competition and fairness, the intrinsic culture of Apple and its pursuit of market dominance will ensure that the primary efforts will be at circumventing regulatory frameworks in their quest for growth.”
No wonder Apple isn’t bringing Apple Intelligence to the EU when it starts rolling out. They can’t afford to get into fights with the EU that will likely be never ending. Though the cynic in me says that’s retaliation for stuff like this. It will be interesting to see how this fight plays out because Google and Microsoft have gone up against the EU and lost. thus you have to wonder if Apple will be next.
It’s officially summer and the warm weather is here to stay. According to The Weather Network’s summer forecast, most of Canada will see warmer-than-normal temperatures and fewer rainy days than the typical summer, and more sunshine than normal during the upcoming season.
To kick off the start of summer, Samsung has come up with a list of tech essentials to make the most of your time outside.
You can check out some other tech that fits into your summer plans at Samsung.ca.
Last week the US banned Kaspersky saying that it’s a national security risk. At the time, I could not find a response from the Russian software company. But clearly I didn’t look hard enough because now I have. Here’s what they said in part:
Kaspersky is aware of the decision of the Department of the Treasury’s Office of Foreign Assets Control (OFAC) to place members of the company’s executive and senior leadership team on the sanctions list. The current step will not affect the company’s resilience as neither Kaspersky nor its subsidiary companies nor its CEO were designated by the OFAC.
We regard the move as unjustified and baseless, being a continuation of recent U.S. government decisions based on the present geopolitical climate and theoretical concerns, rather than on a comprehensive evaluation of the integrity of company’s products and operations. Neither Kaspersky nor its management team has any ties to any government, and we consider the allegations quoted by the OFAC as pure speculation, which lacks concrete evidence of a threat posed to U.S. national security. None of the listed members have any ties to the Russian military and intelligence authorities or have anything to do with the Russian government’s cyber intelligence objectives.
John Gunn, CEO, Token had this to say:
Banning the use of Kaspersky software is a prudent and informed action. Kaspersky’s majority owner and CEO is a Russian national who lives in Russia and is subject to the jurisdiction of the Russian government. People who don’t do what Putin wants have a bad habit of falling out of windows. The code for many mature security applications is so complex that finding a designed-in vulnerability would be very challenging, and a “clean” version today could be updated to a malicious version at any time. Operating on a promise of trust from a country that is attacking us constantly would be bad strategy.
Here’s the thing. If you can’t trust the tools that you use to defend yourself against attackers, you shouldn’t use them. Which is why this ban makes sense despite the fact that some will find this as an over reaction by the US government. Will this ban make you stop using Kaspersky products? Sound off in the comments with your thoughts.
You might recall that thousands of car dealerships have been shut down by their SaaS provider CDK Global not being available to them. Now BleepingComputer is reporting that a ransomware group called BlackSuit is apparently responsible for all of this:
The BlackSuit ransomware gang is behind CDK Global’s massive IT outage and disruption to car dealerships across North America, according to multiple sources familiar with the matter.
The same sources, who provided information on condition of anonymity, told BleepingComputer that CDK is currently negotiating with the ransomware gang to receive a decryptor and not leak stolen data.
While BleepingComputer is the first to report that BlackSuit is behind the attack, the news that CDK is negotiating with threat actors was revealed by Bloomberg yesterday.
If this is true and CDK Global is actually in negotiations with BlackSuit, then that’s bad. I’ve been consistent in saying that threat actors should never profit from their crimes. So by extension, negotiating with threat actors is bad. I guess we’ll find out if this is true or not if dealerships across the US are suddenly able to conduct business normally in the coming days.
Remember when Elon Musk told advertisers to “go f**k yourselves” when said advertisers decided to stop advertising on Twitter? If not, this will help. Well I am going to go out on a limb and suggest that this is making Elon hurt. Specifically in the bank account. Which is why Elon has been in Cannes this week to walk this back:
Elon Musk on Wednesday tried to walk back remarks lashing out at advertisers fleeing his X social media platform.
At the Cannes Lions advertising festival in Cannes, France, Musk was asked by WPP CEO Mark Read what he meant by telling advertisers threatening to pull ads from the platform late last year to “go f— yourself.”
Musk said it was meant as a general point on free speech rather than a comment to the wider advertising industry.
“It wasn’t to advertisers as a whole,” Musk said. “It was with respect to freedom of speech, I think it is important to have a global free speech platform, where people from a wider range of opinions can voice their views.”
“In some cases, there were advertisers who were insisting on censorship,” Musk said. “At the end of the day … if we have to make a choice between censorship and losing money, [or] censorship and money, or free speech and losing money, we’re going to choose the second.”
“We’re going to support free speech rather than agree to be censored for money which I think is the right moral decision,” he added.
The fact is that Elon is scrambling for cash because real advertisers have been replaced by porn and AliExpress ads. Clearly advertisers that pay Twitter’s bills are not coming back and he’s trying to thread the needle so to speak between getting those advertisers back while keeping his Nazi, racist, homophobic, and other scumbag friends happy. All to get money into his bank account. I am hoping that advertisers don’t fall for this and continue to avoid Twitter because Elon needs to pay for his behaviour. Literally.
Remember the Change Healthcare hack? It’s now gotten worse. According to TechCrunch, American’s medical records have been leaked:
In a statement Thursday, Change Healthcare said it has begun the process of notifying affected individuals whose information was stolen during the cyberattack.
The health tech giant, owned by U.S. insurance conglomerate UnitedHealth Group, processes patient insurance and billing for thousands of hospitals, pharmacies and medical practices across the U.S. healthcare sector. As such, the company has access to massive amounts of health information on about a third of all Americans.
The cyberattack prompted the company to shut down its systems, resulting in outages and delays to thousands of healthcare providers who rely on Change, and affecting countless patients who could not obtain prescriptions or had medical care or procedures delayed.
Change said in its latest statement that it “cannot confirm exactly” what data was stolen about each individual, and that the information may vary from person to person.
The affected information includes personal information, such as names and addresses, dates of birth, phone numbers and email addresses, as well as government identity documents, such as Social Security numbers, driver’s licenses and passport numbers.
The data also includes medical records and health information, such as diagnoses, medications, test results, medications, imaging, and care and treatment plans, said Change. The hackers stole health insurance information, including plan and policy details, as well as billing, claims and payment information, which Change said includes financial and banking information.
This is bad. This is really bad. This illustrates what can happen when an organization doesn’t properly secure their network. In short, people suffer. And in this case a whole lot of people are going to suffer because their personal information is out there. Change Healthcare really needs to be taken to the woodshed over this and be made an example of to show that this is unacceptable and companies need to do much better.
CISA warns chemical facilities of data exfiltration after CISA tool breach
Posted in Commentary with tags CISA on June 25, 2024 by itnerdIn notification letters dated June 20, 2024, CISA warned participants in the Chemical Facility Anti-Terrorism Standards (CFATS) program that sensitive data may have been exfiltrated after its Chemical Security Assessment Tool (CSAT) was breached by a malicious actor.
CFATS is a program that regulates high-risk chemical facilities to ensure security measures are in place to reduce the risk of certain hazardous chemicals being weaponized. Any facility that manufactures, uses, stores, or distributes certain levels of chemicals of interest is required to report to CISA via the CSAT.
CISA said on January 26th it identified potentially malicious activity within the CSAT Ivanti Connect Secure appliance and immediately took the system offline. The investigation revealed that a bad actor installed an advanced webshell on the Ivanti device capable of executing malicious commands or writing files to the underlying system.
Information accessed includes:
No exfiltration of data from CSAT beyond the Ivanti device was identified. CISA added that all data held in CSAT was encrypted and information from each application had additional security controls limiting the likelihood of lateral access.
Evan Dornbush, former NSA cybersecurity expert, said:
“Intrusions like these remind us that turning on logging is often not enough, that robust measures including analysis of network traffic and other forms of defense in depth continue to be the best practices for a strong defensive posture against the adversary”
While the CISA’s investigation did not result in any evidence of exfiltration of data or
lateral movement, this is still bad. Hopefully the CISA gets an handle on this as this isn’t a good look.
Leave a comment »