The Threat Actors Behind The Questrade And Wealthsimple Phishing Campaign Are Now Going After TD Customers

Posted in Commentary with tags on November 3, 2025 by itnerd

I have been tracking a threat actor who has used first Questrade and then Wealthsimple as part of a large scale phishing campaign that is being carried out via email. Well, my honeypot, which is a computer that I have set up to capture emails and be a target for hackers so that I can gather intel on what the bad guys are up to, have caught a new twist in this campaign. This time the threat actors are using TD bank to perpetrate their scam. This popped up in my honeypot a few minutes ago:

Now I won’t go down the rabbit hole on how the campaign works as I have done this in the first part my research. But I will note that these threat actors are getting sloppy. The quality of this email is not as good as the other ones which makes me wonder how effective this will be. Having said that, the fact that these threat actors are still trying and are shifting tactics implies that they must be having some level of success. Your task is to make sure that you’re not part of whatever success they are having. Thus this is another email that you should instantly delete if you get it.

Leave a comment »

Invi Grid Completes Google’s ISV Startup Springboard Program

Posted in Commentary with tags on November 3, 2025 by itnerd

Invi Grid announces that its Invi Grid Intelligent Cloud platform is now available on Google Cloud Marketplace. This move follows Invi Grid’s completion of the Google Cloud ISV Startup Springboard program, deepening its collaboration with Google Cloud.

Built from the ground up for secure-by-design cloud, Invi Grid automates day-zero cloud and AI infrastructure provisioning, enabling developers and operations teams to innovate freely while governance, compliance, cost control, and security are handled automatically. The platform helps ensure that both cloud and AI workloads are deployed securely, efficiently, and in full compliance from the very start.

With Invi Grid now available on Google Cloud Marketplace, organizations can gain streamlined access to enterprise-grade cloud and AI infrastructure that keeps pace with digital transformation, mitigates risk and boosts agility.

With this development, businesses and teams can:

  • Accelerate Secure Cloud Provisioning: Quickly deploy secure, well-architected cloud environments, allowing teams to focus on innovation.
  • Automate Security and Compliance Policies: Enforce security and compliance automatically from day zero, reducing risks and manual effort.
  • Unify Cloud Management with a No-Code Platform: Manage cloud operations across teams in a single, streamlined platform.

Customers reported that Invi Grid accelerated their cloud development with day-zero security and saved months of a skilled DevOps engineer’s work. They valued Invi Grid as a partner, a differentiator that supports their innovation and growth while helping to ensure oversight and governance that is critical to building trust with customers.

Invi Grid was selected to participate in the Google Cloud ISV Startup Springboard program to help accelerate growth and innovation for Google Cloud customers. To highlight the collaboration, Google Cloud released a video showcasing how Invi Grid accelerates secure cloud and AI deployment on Google Cloud, making it easier for companies to go to market and win customer confidence.

For more information on how to use Invi Grid to help ensure you are compliant on day zero of your cloud journey and beyond, explore Invi Grid’s offering on Google Cloud Marketplace.

Leave a comment »

Bulwark: A Dark Web Tool that Bypasses Modern Antivirus and EDR Solutions

Posted in Commentary with tags on November 3, 2025 by itnerd

Bulwark is a new tool being marketed on the dark web as being capable of bypassing modern antivirus and EDR solutions, which constitute one of the main lines of defense for most organizations.

In a new in-depth whitepaper, SOCRadar researchers have dived into this tool, including how it came to be, what its capabilities are — such as advanced obfuscation, real-time evasion — and more. 

Bulwark began appearing in Telegram channels in July, showcasing its capabilities and promising an effective bypass for any EDR or antivirus solution. During continuous hunting activities, SOCRadar’s research team detected an announcement referencing a platform called Database.forum, where this tool was listed. At the time, that database was not indexed by mainstream search engines and formed part of the Deep Web, and has recently been added to the Dark Web as well; over the following days, its popularity grew, and it later became discoverable via traditional search engines.

To understand how Bulwark came to be, it is necessary to go through Database.forum which is a portal run by affiliates and developers where various tools of different kinds are advertised and indexed. Many of these tools are related to threat actors or capabilities that can be used by them.

For full details, the whitepaper can be downloaded at this landing page, or viewed in full at this link: https://socradar.io/wp-content/uploads/2025/10/Bulwark-Whitepaper.pdf

Leave a comment »

October was a record month for ransomware group Qilin – 200 attacks recorded 

Posted in Commentary with tags on November 3, 2025 by itnerd

According to Ransomlooker, a tool developed by Cybernews that tracks ransomware attacks, October was a record month for notorious ransomware gang Qilin – 200 attacks were recorded during the month. Attacks by Qilin have been steadily growing throughout all of 2025, but October’s spike is unprecedented. 

Key insights:

  • Qilin claimed 200 ransomware attacks in October, 2025, by far the most ever carried out by the group in one month.
  • Attacks more than doubled compared to September, when 84 attacks were recorded.
  • Qilin is already responsible for 723 attacks in 2025 (as of November 3rd, 2025).
  • Qilin’s October victims include Israel’s 4th largest hospital, Shamir Medical Center, a large pharmacy benefit manager MedImpact, and Texas electric cooperatives.
  • In 2024, Qilin claimed 181 attacks. In 2023, there were 45, and in 2022, the gang claimed just 5 attacks.

Notorious for targeting hospitals and the manufacturing sector, the Qilin gang – once known as Agenda – first appeared on the ransomware circuit in 2022. However, its dark leak site claims it began operating in 2021.

Qilin has moved into the number one position as the most active ransomware gang in the past 12 months, aggressively outperforming ransomware rivals Cl0p Play, INC Ransom, and Akira.

Known for using a ransomware-as-a-service (RaaS) business model, the cybercriminal outfit often uses double extortion tactics on its victims, demanding a ransom for decryption and then a second payout to guarantee it will not leak the stolen files on the dark web after the fact.

Here’s a screenshot from the Ransomlooker tool, showing just how active Qilin has become in October compared to previous months:

Leave a comment »

Obsidi to Launch Groundbreaking AI Leadership White Paper at BFUTR 2025 Executive Mainstage

Posted in Commentary with tags on November 3, 2025 by itnerd

Obsidi® will unveil its new executive white paper, Reprogramming the Enterprise: AI’s Reinvention of Technology, Talent and Leadership, at the BFUTR Executive Mainstage on November 6, 2025, in Toronto.

Built on private, closed-door interviews with more than 50 C-suite leaders from across North America, the white paper reveals the real strategies, challenges, and leadership moves shaping market winners in the AI-first decade.

Key findings include:

● The Six-Month Skills Cliff – the deadline leaders are quietly setting for employees to integrate AI into their work or risk role elimination.

● The Barbell Workforce – why the “average performer” tier is disappearing, replaced by senior architects and AI-augmented juniors.

● Two-Speed Organizations – the operational model allowing innovation and mission-critical systems to run in parallel.

● Owning the AI Moat – why proprietary data, prompts, and workflows are more defensible than AI models themselves.

● 72% of executives believe their AI transformation plans are at risk before they begin — with talent and culture gaps cited as the top barrier.

Event Details:

What: BFUTR 2025 – Executive Mainstage & White Paper Launch

When: November 6, 2025

Where: The International center

Website: https://bfutr.com

Leave a comment »

Black-led startups secure record $400,000 at DMZ’s largest Black Innovation Summit to date

Posted in Commentary with tags on October 31, 2025 by itnerd

Toronto Metropolitan University’s DMZ held its fifth annual Black Innovation Summit, where 10 Black-led tech startups from across Canada pitched their businesses for the chance to secure over $300,000 CAD in funding to accelerate their growth — a total that ultimately surpassed expectations, reaching $400,000 CAD awarded by the end of the event.

DMZ’s largest Black Innovation Summit to date, the event gathered over 400 guests from the Black entrepreneurial community. Designed to bring together the Black tech ecosystem and celebrate Black excellence, this year’s theme, ‘Black Means Business,’ underscored a powerful message: investing in Black founders is not only the right thing to do, it is a strategic imperative that fuels economic growth and the startup economy. According to a recent report by the BDC, Black entrepreneurs remain underrepresented in Canada’s business landscape yet demonstrate strong export potential and optimism for growth, clear indicators of untapped economic opportunity. The Summit put capital behind this conviction, awarding the most in its history.

The Summit featured a powerful lineup of speakers, including successful Black entrepreneurs such as Frank Baylis, Canadian businessman and Executive Chairman of Baylis Medical Technologies, and award-winning artist, entrepreneur and DMZ Advisory Council member Keshia Chanté and The Honourable Graham McGregor, Minister of Citizenship and Multiculturalism for the Government of Ontario. The day brought together entrepreneurs, investors, corporate leaders and government to celebrate Black-led innovation, culminating in a startup pitch competition exclusively for Black founders.

DMZ Ventures, Tribe Network, and Capital M Ventures led this year’s investments and grants were made possible by DMZ and the Black Founders Network. The investment funds are now proceeding to finalize investment terms. 

  • OutreachGenius, a solution that provides AI-powered agents to answer sales calls and revive cold prospects for home-service businesses, received 200,000 CAD in investment commitments. 
  • Happly.AI, a platform that helps startups find and secure funding, received 75,000 CAD in investment commitments and a $50,000 CAD grant. 
  • Kiwi Charge, a solution that provides autonomous charging units for electric vehicles in buildings that lack a charging infrastructure through a charging-as-a-service model, received a $30,000 CAD grant. 
  • Cellect Laboratories, nanotech-powered products for women to screen for HPV and cervical cancer, received a $20,000 CAD grant. 

The Black Innovation Summit also recognized exceptional Black-identifying young entrepreneurs through its Youth Entrepreneurship Award. The Honourable Graham McGregor, Minister of Citizenship and Multiculturalism from the Government of Ontario, joined the Summit to present the awards. Five outstanding young entrepreneurs shared a $25,000 pool in youth grants:

  • Daniel Martinovic, Nodalli 
  • Samira Mohamed, Stardoe Studio
  • Merveille Mukoko, Yekola
  • Chevon Riley, NORM 
  • Alexis Stackhouse, Global Elevation Network 

The Ontario Government, a longstanding partner of DMZ’s Black Innovation Programs, invested $16.5 million in over 65 Black-focused programs earlier this year, including renewed support for DMZ’s programs.

DMZ is proud to have brought the Summit to life in collaboration with presenting partners Scotiabank and the Government of Ontario; contributing partners Black Founders Network, CapitalM Ventures, DCCM Foundation, DMZ Ventures, Humi by Employment Hero, Torys LLP and Tribe; and community partners Black Entrepreneurship Alliance, Black Women Talk Tech, Brampton Innovation District, Founders Connect, Futurpreneur, LBIH, Nobellum, Rep Matters and Startup Ecosystem Canada.

The annual Black Innovation Summit serves as the marquee event for DMZ’s Black Innovation Programs (BIP), which were launched in 2019. A first-of-its-kind initiative in Canada, DMZ’s Black Innovation Programs were created to increase the number of Black-led startups in the tech ecosystem and break the cycle of inequity. To date, DMZ has supported over 2,500  Black-identifying founders and has distributed over $3 million in grants and services.

Black founders in DMZ’s Black Innovation Programs receive additional opportunities and specialized support, such as free legal services, subsidized hiring grants, professional development opportunities, mentorship, a peer network, exclusive events, and connections to investors dedicated to supporting Black-led innovation—on top of the standard programming all DMZ founders receive.

Black founders seeking hands-on, tailored support to take their businesses to the next level can learn more about DMZ’s Black Innovation Programs at dmz.to/bip.

Leave a comment »

Surfshark protects against phishing attacks with the email scam checker

Posted in Commentary with tags on October 31, 2025 by itnerd

Surfshark has launched the email scam checker to help protect against email phishing attacks. This on-demand solution aims to provide users with an additional security layer against sophisticated scams, considering the alarming statistic of 3.4 billion phishing emails sent daily and 1.5 million new phishing websites created every month.

The email scam checker, a new feature of the Surfshark Chrome browser extension, offers a robust security layer against drastically increasing email phishing attacks. This tool helps improve users’ online security by allowing them to check suspicious emails and get notified about fraud and phishing attempts.

By identifying malicious attachments and links, Surfshark’s email scam checker significantly reduces the risk of potential fraud and malware infections on users’ devices. Using AI-driven technology, the new feature rapidly detects phishing attempts, safeguarding users’ sensitive data with increased accuracy. With the email scam checker, users can browse the internet with greater confidence and safety, having a powerful ally to combat email scam threats whenever needed.

This advanced protection is crucial because email phishing scams are a growing threat, becoming increasingly sophisticated and harder to detect. With the rapid advancement of AI tools, scammers are constantly evolving their tactics, making fraudulent emails more convincing and the problem harder to control.

The email scam checker is now available on the Surfshark Chrome browser extension for Gmail users with a Surfshark One or One+ subscription.

Leave a comment »

Wealthsimple Customers Are Also Targets Of The Questrade Phishing Threat Actors

Posted in Commentary with tags on October 30, 2025 by itnerd

After posting this story about an ongoing large scale Questrade phishing campaign, I checked my honeypot and discovered that the same threat actors behind this campaign are also going after Wealthsimple customers. That’s evidenced by this phishing email:

Now this email is extremely similar to the one that was being used in the Questrade campaign. And walking through the phishing scam, I found the website that was created was of similar quality as the one behind the Questrade campaign. I say was because it has been taken down by its host which appears to be based in China. While that suggests that the threat actors are Chinese, it is possible that the threat actors are from someplace else and are using a Chinese web host for cover. The emails are very similar as well which seems to point to the fact that these are the same threat actors are behind both campaigns.

My honeypot has received these emails as recently as 4 hours ago. So this is clearly an ongoing campaign that will likely evolve. Thus keep your head on a swivel to ensure that you don’t fall victim to one of these campaigns.

1 Comment »

Kaizen raises $21 million to re-build government’s digital front door

Posted in Commentary with tags on October 30, 2025 by itnerd

America’s public institutions were once legendary examples for how governments ought to engage their citizens. While these services are critical to maintaining the Country’s social fabric, the technologies that facilitate them are known for being slow, hard to use, and multiple generations behind our expectations. Kaizen is changing that for America’s public agencies, one digital roadblock at a time. The company announced a $21 million funding to accelerate its mission to restore public faith in government services through beautifully designed, modern e-government solutions.

The Series A funding round was led by NEA with participation from 776, Accel, Andreessen Horowitz, and Carpenter Capital. This follows an $11m seed co-led by Accel and Andreessen Horowitz’s American Dynamism practice. To date, Kaizen has raised $35 million.

Kaizen is specifically focused on modernizing “resident services” — the essential public-facing institutions that deliver constituent services and facilitate high-volume, e-commerce–style transactions. Common examples include parks & recreation, transit, DMVs, hunting and fishing licenses, utility billing, courts management, passport renewals, social security, tax filing, and more. These services span all levels of government, including city, county, state, and federal agencies. 

Across the Country, these agencies rely on clunky systems and long-term contracts that charge tax-payers billions in service charges and junk fees. Kaizen offers an alternative: a unified commerce and purchase platform that lets governments launch essential services to their communities in weeks. On the back-end, Kaizen gives administrators powerful digital building blocks to create service offerings, manage operations, and process payments. On the front-end, Kaizen serves a branded and hyper-configurable purchase experience for the constituent simple. The result is a consumer-grade experience for residents to access, enjoy, and explore their public services – and a way for governments to build a stronger bond with the communities they serve.

The timing for Kaizen couldn’t be better. Across the country, governments are investing billions to modernize outdated digital systems and make public services as intuitive as the private-sector apps people use every day. The federal government recently instituted a new National Design Office, tasked with leading a $10 billion modernization effort to overhaul more than 25,000 government portals  Kaizen is building the resident-first technology that embodies this new era of accessible, human-centered government.

For founders Nikhil Reddy and KJ Shah, the company’s mission is deeply personal. Reddy, an early engineer at defense-tech pioneer Anduril, saw firsthand how modern software can power critical operations with speed and precision. Shah, who began his career in M&A and was exposed to public-sector technology companies at William Blair, witnessed how legacy software and fragmented tools were holding government agencies back. Together, they founded Kaizen to help power a new era for these kinds of public services. “For decades, public servants have been forced to use stagnant software built through acquisitions, not product innovation. Our agencies need and deserve a platform built natively and designed to grow with them,” said Shah.

The results are already clear. In Maryland, Kaizen launched a new day-pass system for state parks in less than 60 days, a month ahead of schedule. On the Fourth of July weekend, the parks hit full capacity with no major check-in delays for the first time in years. Virtually overnight, seven-mile traffic jams were eliminated, visitor satisfaction soared, and the state saved hundreds of thousands of dollars in overtime costs.  The impact even extended beyond human experience: park leadership reported a resurgence of wildlife thanks to the newfound peace and predictability of daily entry. 

Since the start of 2024, Kaizen’s customer base has grown 10x, and ARR has jumped 9x YoY. The company now works with more than 50 agencies across 17 states. In the last eight weeks alone, Kaizen has announced partnerships with Maricopa County, AZ, San Bernardino County, CA, Suffolk County, NY, and the Cherokee Nation, America’s largest tribal organization. The team of 30 will expand to 50 by early next year as Kaizen prepares to expand to Federal agencies and net-new verticals like DMVs, courts management, and licensing.

Kaizen’s long-term vision is to become the technology prime that builds beautiful, effective, and ever-improving interfaces for civic institutions. These constructs empower our democracy, and usable, trustworthy interfaces are necessary for their continued success of our social fabric in America.

Leave a comment »

EY Canada deploys its FlexiGenAI platform on TELUS’ Sovereign AI Factory

Posted in Commentary with tags on October 30, 2025 by itnerd

TELUS and Ernst & Young LLP (EY Canada) today announced that EY’s advanced agentic AI platform, FlexiGenAI, has been deployed on TELUS’ Sovereign AI Factory – Canada’s first operational, fully sovereign AI infrastructure facility. This implementation offers government agencies and Canadian businesses the ability to harness leading-edge agentic AI capabilities for critical workloads while storing sensitive data securely within national borders and under Canadian control.

EY’s FlexiGenAI is a next-generation agentic AI platform that helps organizations move from AI experimentation to enterprise-scale impact. Designed to make advanced AI more accessible without requiring technical expertise, FlexiGenAI allows users to build and deploy AI solutions while incorporating built-in oversight features, audit trails and privacy controls that meet the stringent requirements of public sector environments. The platform leverages NVIDIA’s latest accelerated computing in TELUS’ high-performance, Canadian-controlled Sovereign AI Factory to deliver enterprise-grade capabilities with enhanced security and performance specifically designed for government and business-critical workloads. This solves a fundamental challenge facing Canadian organizations today: accessing cutting-edge AI capabilities without compromising on data sovereignty or regulatory compliance.

TELUS’ Sovereign AI Factory enables organizations to leverage the complete AI development lifecycle – from building new models to customizing existing ones for specific applications and deploying them in operations. Powered by 99 per cent renewable energy, the TELUS AI Factory operates as one of the world’s most sustainable AI-ready data centres while using significantly less electricity to power AI computing workloads than industry standards.

Leave a comment »

« Older Entries
Newer Entries »