Remember The Okta Hack Where They Explained It Only Impacted 1% Of Customers? It Was Actually 100% Of Customers.

Posted in Commentary with tags on November 29, 2023 by itnerd

Okta has released a new statement in relation to that hack that they had a while ago. At the time, they said it only affected 1% of customers. Well, that statement that I referred to one sentence ago says something different:

We have determined that the threat actor ran and downloaded a report that contained the names and email addresses of all Okta customer support system users. All Okta Workforce Identity Cloud (WIC) and Customer Identity Solution (CIS) customers are impacted except customers in our FedRamp High and DoD IL4 environments (these environments use a separate support system NOT accessed by the threat actor). The Auth0/CIC support case management system was also not impacted by this incident. 

The threat actor ran a report on September 28, 2023 at 15:06 UTC that contained the following fields for each user in Okta’s customer support system: 

Created DateLast LoginFull NameUsernameEmail
Company NameUser TypeAddress[Date of] Last Password Change or ResetRole: Name
Role: DescriptionPhoneMobileTime ZoneSAML Federation ID

The majority of the fields in the report are blank and the report does not include user credentials or sensitive personal data. For 99.6% of users in the report, the only contact information recorded is full name and email address. 

Okta has around 18,000 customers according to the company’s website. So that’s a major problem for Okta. And an equally major problem for any Okta customer. And the fact that there’s no credentials in this report that the threat actors ran is irrelevant. A threat actor could still use this information to launch phishing attacks against any Okta customer to pwn them. Even if only 1% of those customers get pwned via a phishing attack or some other attack, it’s 1% too many.

Now to be fair, Okta does suggest the following mitigations be implemented ASAP:

We recommend all customers immediately take the following actions to defend against potential attacks that target their Okta administrators.  

  • Multi-Factor Authentication (MFA): We strongly recommend all Okta customers secure admin access using MFA at a minimum. We also strongly encourage customers to enroll administrative users in phishing resistant authenticators (such as Okta Verify FastPass, FIDO2 WebAuthn, or PIV/CAC Smart Cards) and to enforce phishing resistance for access to all administrative applications. Please refer to product documentation to enable MFA for the admin console (Classic or OIE).
  • Admin Session Binding: As communicated in the Security Incident RCA, customers can now enable an Early Access feature in Okta that requires admins to reauthenticate if their session is reused from an IP address with a different ASN (Autonomous System Number). Okta strongly recommends customers enable this feature to further secure admin sessions.
  • Admin Session Timeout: To align with NIST AAL3 guidelines and increase the security posture of every customer, Okta is introducing Admin Console timeouts that will be set to a default of 12-hour session duration and a 15-minute idle time. Customers will have the option to edit these settings. This will be available as an Early Access feature starting November 29th for preview orgs and December 4th for production orgs. The feature will be available for all production orgs by January 8th, 2024. An email was sent to all Super Admins regarding this change on November 27th, and a copy of that communication can be found in the Knowledge Base article: Admin Session Lifetime/Idle Timeout Security Enhancements.
  • Phishing Awareness: In addition, Okta customers should be vigilant of phishing attempts that target their employees and especially wary of social engineering attempts that target their IT Help Desks and related service providers. We recommend Okta customers implement our industry-leading, phishing-resistant methods for enrollment, authentication, and recovery. Please see Okta Solutions for Phishing Resistance for more information on protecting your organization from phishing. We also strongly recommend that customers review their IT Help Desk verification processes and ensure that appropriate checks, such as visual verification, are performed before performing high risk actions such as password or factor resets on privileged accounts.

While all of this is good advice, it doesn’t change the fact that this event really reflects poorly on Okta and I am not sure how any Okta customer could ever trust the company again. Which means that Okta really has to explain why customers should trust them going forward. And they need to do it fast.

Leave a comment »

Mujjo’s Leather Cases Named A Top Pick By Wirecutter

Posted in Commentary with tags on November 29, 2023 by itnerd

As many of you know, Apple stopped making leather cases for the iPhone 15 because of the environmental impact. Instead, they’ve gone to making what they call “FineWoven” cases. I’ve already had my say on that, but what do you do if you want a quality leather case. According to Wirecutter, you go out and get a Mujjo case:

Apple no longer makes a leather case for iPhones, but Mujjo’s leather case comes closest to the look and feel once offered by Apple. Mujjo’s case is made of high-quality leather and has a microfiber lining and clicky metal buttons. It also delivers solid all-around protection.

You can read the full review here. And here are links to some of Mujjo’s cases:

Leave a comment »

Guest Post: Internet Use Lowers Death Risk In Adults Aged 50 And Above

Posted in Commentary with tags on November 29, 2023 by itnerd

A new study reveals some unexpected health benefits of internet usage, especially for older adult populations.

According to the data presented by the Atlas VPN team, internet users aged 50 and older have a 33% lower risk of death than non-users. Engaging with new social connections and maintaining existing ones through the internet reduces social isolation and depressive symptoms, thereby decreasing the risks of death.

Additionally, older adults who use the internet have a 19% lower risk of a stroke than those who do not. Internet use among individuals aged 50 and above is also associated with a 17% lower risk of diabetes.

Utilizing web resources on maintaining diet, activity, and routine health screenings allows users to better monitor and safeguard their health.

Cybersecurity writer at Atlas VPN, Vilius Kardelis, shares his thoughts on internet usage for older adults:

“Increasing internet access for older adults appears as a promising approach to reduce risks of cardiovascular diseases and premature mortality mediated by relieving depressive symptoms. But societies must ensure underprivileged older citizens share the connectivity perks while remaining aware of risks such as internet addiction.”

Results vary by region

While the internet use strongly protects the over-50 population, the degree of risk reduction differs across the four regions analyzed.

Older adults who use the internet in China are 30% less likely to get diabetes or have a stroke than non-users. In addition, they have a 44% lower risk of mortality.

Mexicans aged 50 and above who use the internet have an 8% lower risk of diabetes, 1% lower odds of stroke, and a 9% lower risk of death.

Internet users in the US have a 42% lower risk of death than non-users. Besides that, they also have a 13% lower odds of diabetes and a 16% lower risk of stroke. On the other hand, Europeans who use the internet have a 40% lower risk of mortality, 25% lower odds of stroke, and 14% lower risk of diabetes.

To read the full article, head over to: https://atlasvpn.com/blog/internet-use-lowers-death-risk-in-adults-aged-50-and-above

internet-use-lowers-death-risk-in-adults-aged-50-and-above

1 Comment »

Technology’s Growing Impact On Canada’s Workforce And Economy Detailed In New CompTIA Report

Posted in Commentary with tags on November 29, 2023 by itnerd

Nearly 300,000 technology jobs have been created in Canada over the past six years, with more employment growth projected in 2023, according to a report from CompTIA, the nonprofit association for the information technology (IT) industry and workforce.

Net tech employment reached an estimated 1,352,210 workers in 2022 and is projected to grow by 1.3% this year, to nearly 1.4 million workers, CompTIA’s “State of the Tech Workforce Canada” reveals. All provinces are projected to see an increase in tech employment this year, with nearly 60% of growth in the Toronto, Montreal and Vancouver metro areas.

Software engineers and designers, IT support and network technicians, database analysts and administrators, and computer and information system managers are the occupations in highest demand, CompTIA’s examination of employer job postings shows. Nearly one-fourth of job postings were for positions in emerging technologies. Slightly more than half of tech job postings in 2022 specified a required level of work experience, with the remaining 40% unspecified.

The Toronto metropolitan area has the highest concentration of technology workers as a percentage of its overall workforce (10.3%), well above the national benchmark (6.6%). Vancouver (8.6%), Montreal (8.5%) and Calgary (6.9%) also are above the national rate.           

The tech industry – nearly 55,000 business establishments – delivers a direct economic impact estimated at $113.4 billion CAD, approximately 5.5% of the overall Canadian economy, an increase from $104.6 billion CAD in the prior year. There are also downstream indirect benefits, such as the employment multiplier effect of technology ecosystems. The estimated median annual wage for a technology worker in Canada is $88,233 (CAD), which is 48% higher than the median national wage for all occupations.

CompTIA’s “State of the Tech Workforce Canada” provides an in-depth look at employment, economic impact, technology trends, salaries, hiring activity and more across the provinces and metropolitan areas of Canada. The report draws upon a number of data sources including Lightcast, Canadian government statistics (StatsCan), CompTIA and others. The full report is available at https://www.comptia.org/content/research/comptia-state-of-tech-workforce-canada.

Leave a comment »

Sales +11% On ‘Cyber Weekend’ In Canada, Topping Black Friday Says Salesforce

Posted in Commentary with tags on November 28, 2023 by itnerd

Salesforce’s annual Cyber Week Recap Report going live later this evening which analyzes shopping data from over one and a half billion shoppers globally.

Canadians played a game of ‘discount chicken’, patiently waiting for the best deals of the week – retailers experienced the biggest surge Saturday and Sunday as sales jumped 11% YoY. While Cyber Monday sales grew 4% YoY, as of 4 pm ET sales were still only showing 1% growth indicating last minute shopping into the evening hours.

Global online Cyber Week sales totalled US$298 billion, up 6% YoY from ($281 billion in 2022). Growth was driven primarily by order volume, rather than inflation, signaling increased consumer demand for the first time in over five quarters. 

Canadian Cyber Week Data (by day): 

  • Friday: +2% YoY sales growth / 25% average discount
  • Saturday + Sunday: +11% YoY sales growth / 26% average discount
  • Monday (as of 4 p.m EST): +4% YoY sales growth / 25% average discount
  • Cyber Week (Friday-Monday): +5% sales growth YoY

Global Cyber Week Insights: 

  • AI wins over shoppers: AI influenced US$51 billion in online sales in areas including targeted offers, product recommendations, and generative AI-powered chat services.
  • Consumers shopped mostly on mobile: Mobile phones accounted for a record-breaking 80% of Cyber Week ecommerce traffic, up from 76% in 2022. Given this, social traffic on mobile was a critical acquisition channel – representing 10% of all referrals to retailer websites.
  • Discounts rose to meet pent-up demand: After lackluster deals earlier in the holiday season, discount rates rose to 27% globally on average throughout Cyber Week — representing the best deals of the holiday season. Verticals with the highest global discount rates were:
    • Makeup (38%)
    • General Apparel (33%)
    • Skincare (33%)
    • Active Apparel (32%)

You can view full global data available here

Leave a comment »

Ransomware Actors Are On Full Attack Mode

Posted in Commentary with tags on November 28, 2023 by itnerd

If there was any doubt that ransomware actors are in full attack mode, here are just some of my top recent fire drills:

May as well disconnect from the internet on holidays as it seems that you’re likely to get pwned.

Emily Phelps, Director, Cyware offered up this comment:

   “Cybercriminals are largely opportunistic, seeking the path of least resistance to execute an attack. They know that holidays can be a prime time to take advantage of potentially decreased defenses. Before the holidays, consider security awareness training and increase authentication and access controls. Patch and update systems and ensure incident response and recovery plans are current. Communicate with partners and vendors to ensure they are also maintaining strong security practices during the holiday season. Vigilance is critical year-round, and organizations must take additional steps before the holidays to safeguard against opportunistic threat actors. “

Stephen Gates, Principal Security SME, Horizon3.ai had this comment:

   “In the context of recent headlines about massive data breaches, disruption of life-saving medical services, and successful ransomware attacks against government, healthcare, finance, education, and so on, it’s a clear indication that organizations of all sizes and across all industries are losing the battle against their adversaries. From a simple, high-level observation, never in history have so many organizations – and the public at large – been impacted by the current onslaught of recent criminal activity. At this point, most would agree that the layer upon layer of cyber defenses commonly deployed to protect everyone are simply not working.

   “Almost all organizations today have no idea where their truly exploitable vulnerabilities exist, and due to this fact, it is supercharging attacker campaigns. If organizations cannot find that hidden chink in their armor, that crack in their layered walls of defense, that blind spot they didn’t even know existed, they will never be able to adequately defend themselves against a purposeful attacker with nothing but time on their side – and money on their mind. It’s time to go on the offensive and attack yourself with the same tactics, techniques, and procedures attackers use so you can see your networks through the eyes of an attacker – before they do.”


David Ratner, CEO, HYAS Infosec follows with this:

   “Attacks on critical infrastructure don’t only cause reputational and financial damage but have the ability to impact human life as well.  It’s vital that critical infrastructure providers everywhere follow the guidance of CISA and others and implement appropriate solutions for operational resiliency and business continuity — this is the only way they can ensure continual service, have the confidence to operate their businesses, and ultimately protect human lives.

   “All too often bad actors leave themselves hidden backdoors to continue to exploit an organization even after restoration and cleanup. It’s why service-assurance and continual monitoring post cleanup is so important. The best way to accomplish this is with visibility into the various traffic streams coming out of the enterprise, to properly identify bad actors communicating with their malware via command-and-control and shut it down before damage ensues.”

The fact that there are this many ransomware events shows just how out of control ransomware actors are. Clearly something needs to be done or else there’s going to be no hope for any of us.

Leave a comment »

Cisco Launches New Business Performance Insight & Visibility For Modern Applications on AWS

Posted in Commentary with tags on November 28, 2023 by itnerd

Cisco today announced new business metrics in Cisco Cloud Observability. Powered by the Cisco Observability Platform to enhance business context for modern applications running on Amazon Web Services (AWS). This latest release also supports integration with AWS services and application performance monitoring (APM) correlation and provides end-to-end visibility into the performance of cloud native applications.   

Traditional application monitoring tools only provide visibility of application and infrastructure performance metrics. This leaves teams— including ITOps, DevOps and SREs— managing modern applications without clear sight into the relationship between application performance and critical business KPIs such as customer conversion rates and real-time impact on business revenue.  

As a result, these teams are unable to make prioritizations based on business impact.  

Cisco’s latest innovations in full-stack observability deliver teams with the enhanced business context they need to manage modern applications and protect revenue, customer experiences and brand reputation, bridging the gap between business goals and IT. 

This new capability empowers users with:  

  • Support for multiple business metrics within a business transaction.   
  • Easy identification of business transactions configured with business metrics for troubleshooting.  
  • User-friendly configuration interface that enables users to preview business transaction attributes for accuracy and set up mission-critical metric alerts.   
  • Advanced KPI visualization including baseline performance and a historical analysis trend line, to easily identify when business performance is abnormal.    
  • Data segmentation by selected attribute values for quick visibility of customer segments being affected most. 

Supporting integration with more AWS services, DevOps teams can also now observe AWS Lambda functions as an entity within Cisco Cloud Observability APM pages, helping them to understand the functions’ contribution to an application, correlate their performance to overall user experience and quickly troubleshoot unexpected behaviour.   

Cisco also announced support for 10 additional AWS services that are now pre-integrated with Cisco Cloud Observability. By tying together applications, business transactions, business metrics and expanded support for AWS infrastructure services, application owners can gain deep cross-domain visibility across the full stack. 

Business metrics for Cisco Cloud Observability is now available. For more information, register for their upcoming webinar here

Leave a comment »

Sage Construction Management Launches 

Posted in Commentary with tags on November 28, 2023 by itnerd

 Sage, the leader in accounting, financial, HR and payroll technology for small and mid-sized businesses (SMBs), today announces the launch of Sage Construction Management in Canada. Sage is expanding its construction cloud suite with the addition of cloud pre-construction and project management capabilities to its industry-leading construction portfolio.

Sage Construction Management is built for collaboration and mobility so that field, office, and external teams can share real-time project information to make quick, informed decisions.  The solution is offered with Sage Intacct Construction Financials as an end-to-end suite that enables operational and finance teams to align and work together for improved job profitability.

Sage is also offering the Construction Essentials package, which includes Sage Construction Management and Sage Intacct Construction Financials, as an end-to-end suite at a cost-effective price for growing contractors. In addition, Sage Construction Management is available as a standalone preconstruction and project management solution that can easily integrate with other accounting solutions, providing businesses the power and flexibility to choose the right mix of solutions that best meets their needs.                 

Sage exists to knock down barriers so everyone can thrive, starting with the millions of small- and mid-sized businesses served by them, their partners, and accountants. Customers trust their finance, HR, and payroll software to make work and money flow. By digitizing business processes and relationships with customers, suppliers, employees, banks, and governments, their digital network connects SMBs, removing friction and delivering insights. Knocking down barriers also means we all use our time, technology, and experience to tackle digital inequality, economic inequality, and the climate crisis. To learn more, visit sage.com/en-ca/            

Leave a comment »

Is Rogers About To Increase Upstream Speeds For Their Internet Offering In Ontario?

Posted in Commentary with tags on November 28, 2023 by itnerd

A reader tipped me off to the fact that Rogers appears to be on the verge of increasing their upload speeds in parts of Ontario. The reader in question pointed me to this document on CRTC website (Warning: ZIP File) which has a Microsoft Word file that contains this text:

  1. On November 1, 2023, Rogers Communications Canada Inc. (“Rogers”) is announcing new available upload speeds for customers in certain areas of Ontario. Pursuant to paragraph 209 of Telecom Decision 2006-77, Rogers hereby files TN 81 updating the available services:
    • 50Mbps Upload (U) / 50Mbps Download (D)
    • 150Mbps Upload (U) / 150Mbps Download (D)
    • 150Mbps Upload (U) / 500 Mbps Download (D)
    • 150Mbps Upload (U) / 1,500 Mbps Download (D)
  2. These speeds are only available in certain areas of the network where Rogers has invested in the capability to provide these upload speeds.  Services with higher upload speed will be available in areas where network augmentation has occurred and will replace the corresponding lower upload speed service. As there is no change to the download speed available Rogers is not proposing a change to the tariff rates for these services.

Now I did have a look at Rogers press release website and didn’t see an announcement regarding this. I also had a look at their Twitter account and didn’t see anything there either. So I have to wonder if Rogers hit some sort of snag when it comes to rolling these new upload speeds out, or they simply chose not to announce it. Either way, it’s clear that Rogers is up to something. Though, the cynic in me is also thinking that these speeds still don’t match what Bell has to offer. And that still leaves Rogers at a competitive disadvantage relative to Bell. Still, I suppose any speed increase is a good one. Whenever it arrives.

Leave a comment »

Some Brands Have Stopped Interacting With Followers On Twitter Entirely

Posted in Commentary with tags on November 28, 2023 by itnerd

Since it came to light that Elon Musk is an antisemite that supports antisemitism on Twitter, brands such as IBM and Apple have paused advertising on Twitter. But according to CNN, some ads are going one step further, they’ve stopped interacting with followers on Twitter entirely:

In recent days, a number of prominent media brands have not only paused their paid marketing campaigns on the embattled Elon Musk-owned social platform, but have ceased posting on it altogether, going silent on the once essential site that sought to be the world’s “digital town square.”

The flagship accounts belonging to Disney, Paramount, Lionsgate, Sony Pictures, Universal, and Warner Bros. Discovery (CNN’s parent company) have not posted on the platform in roughly 10 days, following Musk’s disturbing endorsement of an antisemitic conspiracy theory, which he still has not apologized for.

None of the studios commented on the record when CNN reached out for comment. But people familiar with the social media strategies of Paramount and WBD confirmed under the condition of anonymity that it’s no coincidence: the companies have made the active decision to stop posting under certain handles on X due to concerns, including brand safety.

The blackout on X extends beyond these companies’ corporate accounts, in some cases. For instance, the most high profile accounts affiliated with Disney have gone dark on X, such as @StarWars, @Pixar, and @MarvelStudios, which were previously posting multiple times a day on the platform to their millions of followers. Instead, these brands have switched over to the Meta-owned rival Threads, where they have started actively posting.

Here’s the thing. If enough brands stop posting to Twitter and instead post to other platforms such as Threads, people will follow and Twitter becomes less relevant. That in turn makes other advertisers say “why is my brand on Twitter as there’s less people here”? And they’ll go to where the people are. Which will make Twitter even less relevant. Ultimately, it will end with Twitter being driven into extinction and Elon Musk looking like the loser that he is for paying $44 billion for a company and running it into the ground due to his on ineptitude. Frankly that’s what he deserves given his behaviour over the last year.

1 Comment »

« Older Entries
Newer Entries »