Certero Launches Global Partner Program

Posted in Commentary with tags on March 15, 2024 by itnerd

 Certero, a leader in IT asset management, software asset management, SaaS optimization, and cloud FinOps solutions, announced a new Partner Program to support channel partners. This initiative is designed to help partners and their customers manage technology costs effectively, especially in a changing market and economic climate. The program aims to transform technology asset management and reduce overspending.

The program offers a straightforward structure with incentives, intending to generate new revenue opportunities for channel partners. Josh Shields, with nearly 20 years of experience in channel operations, has been appointed as the new Director of Strategic & Channel Partnerships to oversee this initiative.

Recent Certero Highlights:

  •     Increased solution-scope to tackle Shadow IT, SaaS optimization
  •     Revitalized ‘ITAM’ for modern IT infrastructure
  •     Significant investment in Cloud FinOps technology
  •     Technology-Led Services introduces live data into ITAM / SAM Services
  •     An Oracle Gold Partner, Certero earns additional Oracle Third-Party Tool Vendor Verification for Java, on top of Database & Fusion Middleware.
  •     Consistently Gartner Peer Insights’ highest-rated major SAM vendor across every pre-sales, implementation, solution and on-going support categories.

The Partner Program includes three levels of partnership: Connect, for transactional relationships; Advance, for strategic collaborations without a services capability; and Elite, for partners with their service delivery capabilities. This structure offers flexibility and support for partners at different engagement levels.

Certero is committed to a collaborative, customer-led, and partner-focused approach, promising a supportive onboarding process, expert-led training, and a partnership aimed at long-term success. The program is open to new partners looking to deliver value to customers through Certero’s advanced technology solutions.

Leave a comment »

McDonald’s Facing Some Sort Of GLOBAL IT Outage

Posted in Commentary with tags on March 15, 2024 by itnerd

Today is not a good day for McDonald’s as there is news that they have some sort of IT issue is crippling the fast food chain worldwide:

System failures at McDonald’s were reported worldwide Friday, shuttering some restaurants for hours and leading to social media complaints from customers, in what the fast food chain called a “technology outage” that was being fixed.

Chicago-based McDonald’s Corp. said the problems were not related to a cybersecurity attack, without giving more details on what caused them.

“We are aware of a technology outage, which impacted our restaurants; the issue is now being resolved,” the burger giant said in a statement. “We thank customers for their patience and apologize for any inconvenience this may have caused.”

That’s not a very reassuring statement and it’s kind of vague. It makes me wonder what the issue is. And for the record, the fact that they say it’s not a cybersecurity incident doesn’t mean that it isn’t one and they either don’t know or don’t want to admit to it. Hopefully whatever the cause of this, the fast food chain is transparent about what actually is the cause.

Meanwhile on Twitter:

https://twitter.com/moonlitempire/status/1768584337400951282

The repetitional damage to McDonald’s because people can’t get their Big Macs is going to be huge.

Leave a comment »

Canadian Government Has Been Conducting A National Security Review Of TikTok

Posted in Commentary with tags on March 14, 2024 by itnerd

Hot off the heels of the US House Of Representatives passing a bill to potentially ban TikTok, come the news that the Canadian Government has been doing a national security review of TikTok:

The federal Liberals ordered a national security review of popular video app TikTok in September 2023 but did not disclose it publicly.

“This is still an ongoing case. We can’t comment further because of the confidentiality provisions of the Investment Canada Act,” a spokesperson for Industry Minister Francois-Philippe Champagne said.

“Our government has never hesitated to (take) action, when necessary, if a case under review is found to be injurious to Canada’s national security.”

The revelation comes after the U.S. House of Representatives passed a bill Wednesday to ban TikTok unless its China-based owner sells its stake in the business.

That’s interesting. I have a comment from Ken Westin, Field CISO, Panther Labs relative to what the US has done. But is likely applicable to Canada as well:

I fear the bill to ban TikTok is mostly political grandstanding close to an election year feeding off of xenophobic rhetoric against China. That’s not to say the fear of the Chinese government accessing TikTok data isn’t real, but one has to wonder what value this data has, as the platform isn’t a place where documents or sensitive PII is stored. If the real intent is on protecting the data of US citizens, then it seems there should be a more robust set of legislation around the collection, sharing and selling of personal data in general. China can and probably has purchased data on US citizens from the same data brokers US companies buy it from. There is also a wealth of data often from data breaches available in underground forums that is free or cheap to access. It seems it would be better for us to focus on the real source of the problem, regarding private data access as well as bolstering cybersecurity to protect intellectual property from foreign powers which is what we’ve seen China and the nation state actors target in the past. 

I’ve gone on record multiple times as saying that TikTok needs to be banned because if we’re having this much discussion about it, it’s likely not a good thing. Or put another way, if there’s smoke there’s fire. Hopefully this whole episode leads to consumers on both sides of the border being better protected from adversaries like China.

Leave a comment »

HHS Opens Investigation Into Change Healthcare Hack

Posted in Commentary with tags on March 14, 2024 by itnerd

The thing with cyberattacks is that they come in two parts. The first is that you get pwned. The second is that authorities often want to investigate you to see if you did or didn’t do something that led to the attack. Change Healthcare is into the second part after being pwned a few weeks ago. Here’s what HHS had to say:

Given the unprecedented magnitude of this cyberattack, and in the best interest of patients and health care providers, OCR is initiating an investigation into this incident. OCR’s investigation of Change Healthcare and UHG will focus on whether a breach of protected health information occurred and Change Healthcare’s and UHG’s compliance with the HIPAA Rules.

Ken Westin, Field CISO, Panther Labs had this to say:

I hope the investigation focuses on lessons learned and what both healthcare and government can do in partnership to both reduce the threat, as well as increase resilience to these types of attacks. If the goal of the investigation is to be punitive and seek fault to levy fines, I fear it would send the wrong message to the healthcare industry and will result in less collaboration and openness about these high impact security incidents. In my experience, healthcare IT and security departments are often underfunded and under resourced compared to other industries while at the same time dealing with unique challenges while having to navigate strict regulatory compliance frameworks. The best way to better secure the healthcare industry is through open dialogue and collaboration across the industry and with government resources. 

I for one will be interested to see what comes of this investigation given how much disruption that it has caused. I am sure that there will be other interested parties interested in the outcome as well. Having said that, I am sure that Change Healthcare and its parent UHG will find this investigation a couple steps below a proctology exam. Which is good because all the facts of this attack need to come out.

Leave a comment »

Multiple Fortinet FortiWLM Vulnerablities, Indicators Of Compromise Documented By Horizon3.ai

Posted in Commentary with tags on March 14, 2024 by itnerd

Horizon3.ai this morning published “Fortinet FortiWLM Deep-Dive, IOCs, and the Almost Story of the “Forti Forty” disclosing several vulnerabilities effecting the #Fortinet #FortiWLM (Wireless LAN Manager). The vulnerabilities span from command injection, SQL injection, to file reads. While most were patched late last year, 2 remained unpatched as of March 13, 2024, after 307 days from Horizon3.ai’s initial report.

This blog details several of the issues discovered in the FortiWLM that have since been patched:

  1. CVE-2023-34993 – Multiple Unauthenticated Command Injections – PSIRT-23-140
  2. CVE-2023-34991 – Unauthenticated SQL Injection – PSIRT-23-142
  3. CVE-2023-42783 – Unauthenticated Arbitrary File Read – PSIRT-23-143
  4. CVE-2023-48782 – Authenticated Command Injection – PSIRT-23-450

Additionally two vulnerabilities that have not received patches leading to appliance compromise:

  1. Unauthenticated Limited Log File Read – Allows retrieval of arbitrary log files which contain administrator session ID tokens
  2. Static Session ID Vulnerability – Session IDs do not change between sessions for users. Chained with the above issue allows trivial compromise of the device.

This morning’s blog post includes paths to remote code execution and indicators of compromise. 

Leave a comment »

Launching today: Reddit Free-Form Ads

Posted in Commentary with tags on March 14, 2024 by itnerd

Reddit has launched free-form ads, a unique-to-Reddit ad format with a “free form” layout that empowers advertisers to share in-depth information and maximize community engagement. It’s their most native format yet, which means it’s designed to look and feel similar to the ways Reddit users engage with each other on the platform. 

In early testing with brands like Philadelphia cream cheese Canada and Starbucks Canada, they’ve seen free-form ads outperform all other ad types in average click-through rate (CTR) by 28%, as well as increased community engagement when comments are enabled. 

You can have a look at their blog post for more information.

Leave a comment »

US Intelligence Cites Global Conflict, Unprecedented Capabilities As Greatest Cyber Threat

Posted in Commentary with tags on March 14, 2024 by itnerd

According to the Office of the Director of National Intelligence’s (ODNI) 2024 Annual Assessment of the US Intelligence Community, accelerating competition between nation-states, regional conflicts with far-reaching impact, and non-state threat actors with unprecedented capabilities are three of the main cyber threats the US intelligence community (IC) will face over the next few months.

After examining all threats, including cyber threats, the report finds China to be the most prevalent and persistent cyber threat to US government, private-sector, and critical infrastructure networks.

In cyberspace, the ODNI expects Russia, Iran and North Korea to maintain thier intent to target critical infrastructure, undermine US political processes, and amplify discord in in the Middle East and other regions. Threat actors originating from these countries will likely leverage existing and potential, international crises to conduct offensive cyber operations against the US and its allies.

The report assesses that these transnational issues also pose a serious threat to the US in the way of competition over disruptive technology, digital authoritarianism, and transnational repression.

The ODNI observed three trends increasing the cybercrime threat to the US and its allies:

  • The emergence of inexpensive and anonymizing online infrastructure
  • The growing profitability of ransomware, which has led to the proliferation, decentralization, and specialization of cyber-criminal activity
  • Absent cooperative law enforcement that provide cybercriminals a permissive environment limiting the efficacy of any law enforcement operations

Dave Ratner, CEO, HYAS had this comment:

   “Given the trends stated by the ODNI, it’s vital that organizations immediately re-assess their security-in-depth strategy and implement cyber resiliency approaches. It’s clear that the risks are growing, the threats are real, and the onslaught of attacks will only increase. Ensuring that organizations are capable of seeing the digital exhaust and tell-tale signs of a breach in real-time is the only way that they will be able to have the confidence to drive operational resiliency across the entire business.”

What’s clear from this is that cyber threats are not going away. Thus every organization needs to put in the time and effort to make sure that they are fully secure. Otherwise one of these threat actors are going to make them very miserable.

Leave a comment »

Nikon Releases Firmware Version 5.00 for the Nikon Z 9 Full-frame Mirrorless Camera

Posted in Commentary with tags on March 13, 2024 by itnerd

Nikon has released of firmware version 5.00 for its flagship full-frame/FX-format mirrorless camera, the Nikon Z 9.

Firmware version 5.00 is the fourth major update since the release of the Z 9 and increases usability for sports photography by expanding the Auto Capture and High-Speed Frame Capture+ functions. Portrait photography is also enhanced for more effective capture of the images photographers want, with the Skin Softening and Portrait Impression Balance functions, and Rich Tone Portrait Picture Control that enables rendering of details of the subject’s complexion with rich tones. Furthermore, the evolution of the Z 9 continues with improved operability achieved in response to feedback from professionals requesting increased speed and efficiency.

Nikon will continuously meet users’ needs through firmware updates that expand the functionality of its cameras.

Primary features of firmware version 5.00 for the Z 9

•   Expanded functions for sports photography

  • A reserve function that lets users specify the shooting start date/time and duration in advance has been added to Auto Capture. This helps to reduce battery consumption for more efficient shooting, even when the camera must be positioned and configured well before it will actually be used. Auto Capture flexibility has also been increased to allow users to shoot using the DX crop (24×16) image area, and also adds the addition of an [Airplanes] AF subject-detection mode, plus the display of a yellow frame when the camera is in standby for shooting.
  • In addition, a low-speed [C15] item has been added to High-Speed Frame Capture+ options for increased usability with continuous shooting. What’s more, frequency presets for common LED lighting and signboards have been added to the High-Frequency Flicker Reduction function, making it easier to choose the optimal shutter speed and efficiently reduce the effects of high-frequency flicker.

•   Enhanced portrait functions

  • A Rich Tone Portrait Picture Control suitable for creating base images in situations that require retouching, such as wedding and studio photography, has been added. Also, a variety of functions designed to improve portrait photography, including Portrait Impression Balance and Skin Softening have been incorporated. Further, Nikon offers NIKKOR Z lenses including the NIKKOR Z 50mm f/1.2 S, NIKKOR Z 85mm f/1.2 S, and NIKKOR Z 135mm f/1.8 S Plena, all of which support the capture of portraits that accurately express the user’s intent.
  • Overall convenience has been increased with the ability to use the continuous LED light of the Profoto A10 as an AF-assist illuminator and the addition of a [Prefer focus point (face priority)] option for frame advance when reviewing images displayed with playback zoom enabled.

•   Other features added for enhanced operability

  • When [Extended menu banks] is enabled, users can now manage the shooting modes for photo mode and video mode, which were previously linked, separately.
  • Visibility is improved with an option that allows the user to adjust the width of the focus point border.
  • Manual focusing is now possible with maximum aperture live view in manual focus mode.
  • A function that allows the user to cancel zoom when focus mode is set to manual focus and the view through the lens is zoomed in by pressing the shutter-release button halfway has been added.
  • High-Res Zoom operability has been improved, and the AF-area brackets display colour when the subject is in focus has been changed from red to green.
  • The number of functions that can be assigned to custom controls has been increased, as has the number of controls that can be customized.
  • The addition of a [Customize retouch options] item allows the user to choose the functions displayed in the retouch menu.
  • [Loop playback][Wait before playback], and [Auto series playback speed] options have been added for playback of a series of images captured with a burst of continuous shooting.
  • Playback speed for all videos can now be specified in advance from the i menu ([Original speed][1/2× speed][1/4× speed]).
  • Wi-Fi station mode has been added to enable connection to SnapBridge without occupying the entire Wi-Fi connection on a smartphone.

Nikon SnapBridge Update
Nikon SnapBridge is Nikon’s companion Android and iOS app that connects to your camera to automatically download photos and videos and remotely activate the shutter. Now with Ver.2.11.0, SnapBridge adds new functions such as Easy Shooting Setup, which allows users to configure camera shooting settings suited to a particular scene or subject directly from a user’s smart device.

The new Easy Shooting Setup function can be used by tapping [Easy Shooting Setup] in the SnapBridge camera tab, selecting a main subject or situation, and deciding output parameters, such as having a soft out-of-focus background or motion blur. It allows even those who are unsure about camera functions and terms to easily create camera shooting settings that achieve desired results. Settings are applied the moment they’re sent to the camera, allowing users to immediately begin capturing their vision. Easy Shooting Setup also provides tips for available scenes and subjects such as people, landscapes and pets to help users better achieve the intended results. Furthermore, favourite shooting settings can be assigned to one of the user setting positions.

Supported operating systems
Android™ (version 10 or later), iOS (version 15.7 or later)

Cameras that support Ver.2.11.0’s Easy Shooting Setup:
Nikon Z f, Nikon Z 5, Nikon Z fc, Nikon Z 50, and Nikon Z 30

The NX Ready app available in some regions will be discontinued with the release of SnapBridge Ver.2.11.0.

Leave a comment »

OVHcloud Opens New Data Centre and Invests $145 Million in the Toronto Area

Posted in Commentary with tags on March 13, 2024 by itnerd

OVHcloud continues its international expansion with the opening of a second Canadian site (the Group’s 42nd data centre), supported by a long-term investment of CAD 145 million. Located in Cambridge, Ontario, the OVHcloud data centre is in the heart of one of North America’s most dynamic innovation clusters, providing trusted cloud solutions meeting the heightened demands of Canadian businesses in terms of performance, resilience, and data governance.

A global player and European leader in cloud computing, OVHcloud has been established in Canada since 2011, where it employs 250 people and operates 90,000 servers hosted in one of the industry’s most eco-responsible data centres, located on Montreal’s South Shore. OVHcloud is opening its first site in Ontario, supported by a CAD 145 million investment over the next 8 years, to support the growth and needs of its customers within a framework of extended trust. Dedicated to the development of its new data centre and to the industrial innovations that are the hallmark of the trusted cloud leader, this investment includes, in its first phase, the hiring of a number of qualified talents.

Located in the Ascent TOR1 hyperscale development, this new data centre has a surface area of 1,000 m2, a capacity of 10,000 servers and 2MW of power. More than just a data centre, it embodies the technological know-how that has earned OVHcloud its reputation for operational excellence and energy efficiency. Its vertically integrated model (OVHcloud builds its own servers, up to 600 a week in its Beauharnois plant) and the industrial scale-up of its water-cooling technology are major assets in guaranteeing an optimal performance-price ratio and a controlled environmental footprint, in line with the expectations of businesses that want to exercise full control over their digital assets. 

Giving companies greater control over their digital journey


In this age of hybrid and multi-cloud strategies, the arrival of OVHcloud in the Toronto area offers a real alternative for companies wishing to diversify and consolidate their cloud infrastructure, based on trusted solutions that meet a variety of requirements.

Reduced visibility of the macro-economic context calls for optimization of cloud spending, and OVHcloud meets this challenge with a pricing model that is predictable, has no hidden costs, charges no egress fees, and includes both inbound and outbound traffic.  

Guaranteeing enhanced resilience, thanks to a multi-site footprint, this new data centre is particularly well-suited to companies requiring a second, geographically-distant Canadian data centre to deploy their backup or disaster recovery solution. They can rely on the robustness of OVHcloud’s own network, connected to several points of presence (PoPs) in Montréal and Toronto, and more than 40 worldwide.

It will also meet the growing demands of highly regulated industries, increasingly intransigent about data sovereignty. Public services, healthcare, financial services, professional services, or telecommunications can count on OVHcloud’s exemplary level of compliance with the highest industry certifications (ISO 27001-017-018, SOC 2 Type 2, CSA Star), as well as the total immunity of its solutions to extraterritorial legislation, such as the US Cloud Act.

An evolving portfolio 


To meet these requirements, a varied and competitive range of solutions is now available in the Cambridge data centre:

  • Scale and High Grade dedicated servers, designed for complex infrastructures and optimized for mission-critical workloads. Powered by the latest AMD and Intel processors, they meet the new challenges of hyper-convergence, storage and AI, without compromising on performance and availability. 
  • A complete Object Storage solution compatible with the S3 API, as effective for platform modernization as for data backup.
  • Network and connectivity options such as Additional IP for application flexibility, and Load Balancer for efficient load balancing across multiple data centres. Ascent TOR data centre has ultra low latency to the greater Toronto region.
  • The OVHcloud Connect solution, which enables 100% private and highly resilient interconnection (SLA of 99.99%) of its on-prem infrastructure with the OVHcloud network.
  • And, of course, emblematic (and free) OVHcloud services, such as the vRack private network, which connects services between several OVHcloud data centres, or Anti-DDoS to protect infrastructures against computer attacks.

In 2024, the Private Cloud solution leveraging VMware by Broadcom will be added, offering an additional option for companies wishing to boost their level of resilience by activating Veeam or Zerto virtualized solutions in a 100% dedicated environment.

Building a sustainable digital ecosystem


In a move towards regional integration similar to what it has been doing in Quebec for over 10 years, OVHcloud is committed to stimulating innovation and helping to build a trusted digital ecosystem in the Waterloo region – which includes the cities of Waterloo, Cambridge and Kitchener. This region is the entrepreneurial heart of the country, and together with Toronto forms an internationally renowned innovation corridor, the 2nd largest technology hub in North America after Silicon Valley, and one of the world’s Top 20 startup ecosystems.

As such, start-ups’ appetite for cloud computing will naturally find refuge in the dedicated startup program that OVHcloud makes available to support innovation. Open to all, it offers selected startups up to $100,000 in infrastructure credits and personalized support based on open, reversible and interoperable cloud solutions.

Finally, OVHcloud’s commitment to sustainability is reflected positively in Ontario, which is over 90% powered by low-carbon energy sources. Its integrated industrial model and proprietary liquid cooling technology have enabled it to achieve some of the best energy efficiency ratings in the industry. OVHcloud is also the only cloud provider to offer its customers the opportunity to measure the carbon footprint of their cloud services, thanks to a carbon calculator that analyzes the entire lifecycle of their infrastructure, from manufacturing to operation (scope 1-2-3).

Leave a comment »

BEWARE: Bell Is Being Used In A Phone #Scam Related To Fibe Internet

Posted in Commentary with tags , on March 13, 2024 by itnerd

I just got a scam phone call that everyone should be aware of. How do I know it was a scam phone call? Well, first of all I got a call from a local area code. When I picked up, I heard a message saying that Bell Canada had just completed their upgrades to fibre and I was being offered an upgraded and faster “router” at no charge. This was a red flag for me as I know that Bell has suspended their fibre rollout because they’re upset with the CRTC. Besides that, I already have Bell fibre optic Internet. So unless I have missed something, there should be no reason why they would be contacting me to swap out my “router”. More likely they would wait for my HH4000 to die. Then I would call in to get a replacement which would likely be the Gigahub. The other thing that got my attention about this message was the call quality was horrendously bad. The message was full of static and at times I could barely understand it. No telco would ever have a message that is that bad.

The message asked me to press one to get my delivery date. Now given everything that I have explained above, what I should have done is hang up. But as proven multiple times on this blog, I want to dig in further. So I pressed one and quickly got a male with an Indian accent. That’s another red flag as the last time I checked, Bell outsources to the Philippines. Again the quality of the call was so bad that I could barely make out what he was saying, and eventually the call disconnected.

Now while I was 99% sure that I was being scammed, I wanted to confirm it with Bell. Which is why I served up this Tweet to them:

While I was waiting for them to respond to this, I decided to look up the number that the phone call came from. I traced it back to the fax line of an electrical company in Markham Ontario. Thus confirming that the call didn’t come from Bell as calls from Bell typically pop up at as your local area code followed by the digits 310-2355. Though if a Bell tech is calling you, that will not be the case as they use their cell phones. And if you’ve called a tech, you’ll be expecting their call. So, why are they spoofing a local number? It’s to encourage you to answer the call because so many of us won’t answer calls from long distance numbers that we don’t know.

Bell got back to me on Twitter to confirm what I already knew:

Though they didn’t come out and say it, it was a scam call. Clearly there’s a threat actor out there who is using Bell to perpetrate a new scam. I wasn’t able to play along to figure out what their game is. But if they do call back, I’ll go into the weeds and let you know about it. But in the meantime, if you get one of these calls, do yourself a favour and hang up.

13 Comments »

« Older Entries
Newer Entries »