Posted in Commentary with tags IBM on March 29, 2023 by itnerd
Security researchers with Rapid7 have disclosed threat actors are exploiting a critical vulnerability in an IBM file-exchange application to install ransomware on servers. The IBM Aspera Faspex critical vulnerability, tracked at CVE-2022-47986, was patched by IBM in January.
Sylvain Cortes, VP of Strategy at Hackuity had this comment:
“It is unsettling to note that for the same vulnerability (CVE-2022-47986) many cyber security companies have their own information that remains fragmented. It is important to be able to unify this information from several vendors in order to maximize its defense operations and trigger the right response. Solutions that aggregate vulnerability-related data from vulnerability scanners, EDRs or even service practices provide organizations with the critical visibility they depend on.”
This reminds me of the GoAnywhere file transfer solution vulnerability that has led to multiple organizations being pwned by the Cl0p ransomware group. Except that we haven’t seen threat exploit this to the same degree that Cl0p has. If you use IBM Aspera, you should be applying these patches ASAP, assuming you haven’t already so this doesn’t turn into another GoAnywhere situation.
Posted in Commentary with tags IBM on February 22, 2023 by itnerd
According to IBM, ransomware prevention saw massive improvements in 2022, while ransomware time to deploy (TTD) dopped by 94%, just two findings derived from billions of datapoints collected in 2022 from network and endpoint devices by IBM and reported on in their “X-Force Threat Intelligence Index 2023.” This is a wide-ranging report with excellent stats:
27% – Percentage of attacks included extortion – 30% aimed at manufacturing
21% – Share of incidents that saw backdoors deployed – the top action on objective
17% – Ransomware’s share of attacks (down from 21% in 2021)
41% – Percentage of incidents involving phishing for initial access
26% – Exploited public-facing applications
100% – Increase in the number of thread hijacking attempts per month
Top impacts 2022
21% – Extortion
19% – Data theft
11% – Credential harvesting
11% – Data leak
9% – Brand reputation
This is a bit of mixed bag. But at least the fact that ransomware is being stopped is good news.
Morten Gammelgaard, EMEA, co-founder of BullWall had this to say:
“It is excellent news that ransomware prevention is improving, if for no other reason than it diverts cybercriminals away from executing attacks to developing new tactics, which they will. With extortion, data theft, data leaks and brand reputation being the top 4 out of 5 ways ransomware impacted organizations in 2022, organizations cannot rely solely on prevention and need to also consider active defense/containment strategies to catch the attacks that bypass prevention-based tools. When an active attack is unable to encrypt or exfiltrate data, organizations are given time to respond, eliminating 80% of the potential impact to their business.”
David Maynor, Senior Director of Threat Intelligence at Cybrary followed up with this:
“There are three kinds of lies: lies, damn lies, and ransomware stats. For the last couple of months depending on who you ask ransomware attacks and becoming less of a problem or they are increasing. If your risk model is based on arbitrary thresholds like at 20% we don’t address it but we take it seriously at 21% of attacks seen…you have already lost and a ransomware actor is probably watching you read this.”
Hopefully when this report comes out in 2024, we see more ransomware being stopped which means by extension that ransomware is less profitable for the people behind ransomware.
Posted in Commentary with tags IBM on January 26, 2023 by itnerd
The tech layoffs continue with IBM being the latest company to lay staff off. They announced yesterday that nearly 4000 had gotten the axe:
Chief Financial Officer James Kavanaugh told Reuters that the company was still “committed to hiring for client-facing research and development”.
The layoffs — related to the spinoff of its Kyndryl business and a part of AI unit Watson Health — will cause a $300 million charge in the January-March period, IBM said.
But here’s the really bad part about this. Investors don’t think the cuts went far enough:
Shares of the company fell 2% in extended trading, erasing earlier gains on the largely upbeat results. Analysts said news of the job cuts and free cash flow miss was behind the drop.
“It seems as if the market is disappointed by the size of its announced job cuts, which only amounted to 1.5% of its workforce,” said Jesse Cohen, senior analyst at Investing.com.
“Investors were hoping for deeper cost-cutting measures.”
If that is true it really is a sad commentary on the times that we live in. Having people lose their jobs shouldn’t be seen as a sport where the biggest job cuts announced by a company wins. But clearly that’s how Wall Street sees things. And that’s sad.
Posted in Commentary with tags IBM on July 27, 2022 by itnerd
IBM has released the annual ‘Cost of a Data Breach’ report, conducted by Ponemon Institute, which found that the cost of a data breach in 2022 totaled $4.35 Million, an increase of 2.6% since last year’s total of $4.24 Million.
Sanjay Raja, VP of Product, Gurucul had this comment:
“The follow-up attack effect, as described, is a significant problem as the playbooks and solutions provided to security operations teams are overly broad and lack the necessary context and response actions for proper remediation. For example, shutting down a user or application or adding a firewall block rule or quarantining a network segment to negate an attack is not a sustainable remediation step to protect an organization on an ongoing basis. It starts with a proper threat detection, investigation and response solution. Current SIEMs and XDR solutions lack the variety of data, telemetry and combined analytics to not only identify an attack campaign and even detect variants on previously successful attacks, but also provide the necessary context, accuracy and validation of the attack to build both a precise and complete response that can be trusted. This is an even greater challenge when current solutions cannot handle complex hybrid multi-cloud architectures leading to significant blind spots and false positives at the very start of the security analyst journey.”
What’s worse than the economic cost is the repetitional damage that can happen. And that’s a dollar amount that you can’t calculate. Thus companies need to make sure that they don’t become the next headline.
Posted in Commentary with tags IBM on June 9, 2020 by itnerd
A bombshell dropped earlier today from IBM who announced that they are getting out of the facial recognition business. This news came via IBM CEO Arvind Krishna in a letter to Congress today. Here’s the reasons why:
IBMno longer offers general purpose IBM facial recognition or analysis software. IBM firmly opposes and will not condone uses of any technology, including facial recognition technology offered by other vendors, for mass surveillance, racial profiling, violations of basic human rights and freedoms, or any purpose which is not consistent with our values and Principles of Trust and Transparency. We believe now is the time to begin a national dialogue on whether and how facial recognition technology should be employed by domestic law enforcement agencies.
Artificial Intelligence is a powerful tool that can help law enforcement keep citizens safe. But vendors and users of Al systems have a shared responsibility to ensure that Al is tested for bias, particularity when used in law enforcement, and that such bias testing is audited and reported.
Finally, national policy also should encourage and advance uses of technology that bring greater transparency and accountability to policing, such as body cameras and modern data analytics techniques.
Clearly this is related to the protests tied to the death of George Floyd at the hands of police. Companies like IBM are clearly re-evaluating their relationships with police agencies and making adjustments. However, I would say that into this void other companies will step in. Clearview AI who appear not to have the same moral standards as IBM is likely to fill this void. Which means that this tech will still be out there.
IBM has decided to drop $34 billion to acquire Red Hat who are one of the leaders, if not the leader in the enterprise Linux space. According to a joint statement, IBM will pay cash to buy all shares in Red Hat at $190 each. Given that shares of Red Hat were at $116.68 on Friday, that’s one hell of a premium that IBM has to pay to score this company. Red Hat will become a unit of IBM’s Hybrid Cloud division, with Red Hat CEO Jim Whitehurst joining IBM’s senior management team and reporting to CEO Ginni Rometty. So clearly there’s a cloud related play here.
Trust me, this deal is going to get a lot of attention in a lot of places. Most notably in Redmond Washington.
Posted in Commentary with tags GM, IBM on October 26, 2016 by itnerd
General Motors and IBM today announced a partnership to bring the power of OnStar and IBM Watson together to create OnStar Go, the auto industry’s first cognitive mobility platform. Starting in early 2017, OnStar is expected to give millions of GM drivers the ability to connect and interact with their favorite brands. The platform will deliver personalized content through the dashboard and other digital channels supported by the OnStar Go ecosystem to make the most of time spent in the car.
Combining OnStar’s industry leading vehicle connectivity and data capabilities with IBM Watson APIs will create experiences that allow drivers and passengers to achieve greater levels of efficiency and safety. These experiences could include avoiding traffic when you’re low on fuel, then activating a fuel pump and paying from the dash; ordering a cup of coffee on the go; or getting news and in-vehicle entertainment tailored to your personality and location in real time.
The GM/IBM partnership will expand the existing OnStar AtYourService offers and deals platform by launching new capabilities supported by OnStar Go with IBM Watson. These capabilities will be available in more than two million 4G LTE connected vehicles and millions of GM vehicle brand app-enabled mobile devices in the U.S. by the end of 2017.
With the customer’s consent, Watson will learn the driver’s preferences, apply machine learning and sift through data to recognize patterns in their decisions and habits. This information will allow brand and marketing professionals working with IBM and OnStar to deliver individualized location-based interactions that directly impact their target audiences. Companies in retail, fuel, hospitality, media and entertainment, restaurants and travel and transportation and more can use OnStar Go to build individualized mobile, in-vehicle experiences for a growing population of connected drivers that opt-in.
The new cognitive mobility platform enables brands to design Watson-enabled consumer experiences. Examples of potential uses include:
OnStar Go taps Watson Personality Insights and Watson Conversation APIs to remind a working father to pick up diapers and formula at the pharmacy a few miles before his exit, so he won’t have to leave the house again once he gets home.
The platform employs Watson Tradeoff Analytics to give a traveling foodie dining recommendations from celebrity chefs when driving in a new city.
Watson Retrieve and Rank, used by OnStar Go, lets the driver know that their order is ready for pickup at a nearby retail store and one of the store’s employees will load their purchases into the car.
“IBM and GM are changing the whole notion of where valuable, daily rituals occur. The combination of IBM Watson and industry-leading OnStar connectivity will enable vehicles with intelligent branded skills and services to empower drivers and passengers,” said Paul Papas, Global Leader, IBM iX. “Simply put, OnStar Go with IBM Watson transforms time wasted in the car into time well spent.”
ExxonMobil, Glympse, iHeartRadio, Mastercard and Parkopedia are the first brands to join the platform.
ExxonMobil will use the cognitive mobility platform to help drivers quickly locate Exxon and Mobil retail fuel stations, recommend the best fuel and lubricant product for their vehicle, and authorize fuel payment from inside the vehicle. Consumers can even pay for a car wash or, when away from their car, get notified when they are low on fuel.
As a location technology partner in the cognitive mobility platform, Glympse enables consumers and businesses to manage customized real-time location sharing with anyone on any device.
iHeartRadio will use Watson insights from OnStar Go to curate personalized experiences that leverage on-air personalities and local content from radio stations across the U.S. Drivers will be invited to share information from their calendars, social graph, location, music preferences and more, to create dynamic and locally relevant entertainment experiences only available through the power of radio.
Mastercard will enable drivers and passengers to safely make simple, secure and seamless payments for goods and services from the comfort of their cars. By integrating the security of Mastercard tokenization platform — Mastercard Digital Enablement Service (MDES) — and Masterpass digital payment service within OnStar Go, Mastercard will enable consumers to complete transactions using credit or debit cards stored in their Masterpass wallets.
Parkopedia will provide detailed parking spot information — including opening hours and up-to-date prices as well as booking and payment capabilities. Drivers find, reserve and pay for parking all at the click of a button.
The cognitive mobility platform was designed and developed by IBM iX in conjunction with OnStar, using iX’s expertise in experience and mobile design. iX is also working with GM to design OnStar’s intuitive, touch screen interfaces for consumers on the go. The Weather Company, an IBM Company, will provide rich weather and location data to support personalized targeting and warnings about driving conditions.
GM began the connected vehicle revolution 20 years ago with the launch of OnStar and has more connected vehicles on the road than any other automaker. By the end of 2016, GM expects to have 12 million OnStar connected vehicles on the road worldwide.
Posted in Commentary with tags IBM on October 31, 2015 by itnerd
IBM today announced that it has entered into a definitive agreement to acquire The Weather Company’s B2B, mobile and cloud-based web properties. This includes WSI, weather.com, Weather Underground and The Weather Company brand. The TV segment – The Weather Channel – will not be acquired by IBM, but will license weather forecast data and analytics from IBM under a long-term contract. The combination of technology and expertise from the two companies will serve as the foundation for the new Watson IoT Unit and Watson IoT Cloud platform, building on a $3B commitment made by IBM in March 2015 to invest in related offerings and services.
Some interesting related information:
The Weather Company’s data platform hosts the fourth-most used mobile app in the U.S.
Cloud-based service handles 26 billion requests a day.
IBM ramps up new Watson IoT unit with powerful cloud platform for cognitive business.
Upon closing, IBM will acquire The Weather Company product and technology assets that include the world’s leading meteorological data science experts, precision forecasting capabilities and a high-volume cloud platform that ingests, processes, analyzes and distributes enormous data sets at scale in real time. The company’s sophisticated models analyze data from three billion weather forecast reference points, more than 40 million smartphones and 50,000 airplane flights per day, allowing it to offer a broad range of data-driven products and services to more than 5000 clients in the media, aviation, energy, insurance and government industries.
As I type this, BlackBerry stock is down 8% on the news that Apple and IBM are going to join forces exclusive partnership that will see them teaming up to “transform enterprise mobility” through a series of new business apps and services for iOS devices. But it doesn’t end there. This partnership also includes the following:
IBM will begin selling iOS devices to its corporate customers
More than 100 industry-specific native apps that are built from the ground up for the iPhone and the iPad will be created. They will start to appear in the fall.
IBM will provide cloud services optimized for iOS with capabilities like device management, security, analytics, and mobile integration.
My take on this is that is groundbreaking and affects more than BlackBerry. Anyone in the enterprise mobility management space such as Mobile Iron, SOTI, and AirWatch should take note as well as this partnership has the potential to allow Apple and IBM to take over the enterprise mobility management space. Thus you can fully expect anyone in that space to respond in some way, shape or form shortly.
Posted in Commentary with tags IBM, Sun on April 5, 2009 by itnerd
The New York Times is reporting that the proposed merger between IBM and Sun Microsystems is apparently dead because IBM has pulled the $7 billion offer off the table:
After the legal review, I.B.M. shaved its offer Saturday from $9.55 a share, the offer on the table late last week, to $9.40 a share, said one person familiar with the talks. The offer was presented to Sun’s board on Saturday, and it balked. The Sun board did not reject the offer outright, but wanted certain guarantees that the I.B.M. side considered “onerous,” according to that person.
Sun said it would no longer abide by its exclusive negotiating agreement with I.B.M., a second person familiar with the discussions said. On Sunday, I.B.M.’s board decided to withdraw the offer.
The question is, where does Sun go from here? Does it try to make a deal with somebody else? Will customers be scared away from buying Sun product? It’s hard to say. Maybe IBM will come back to the table and get a deal done at a lower price? Perhaps Sun will beg IBM to come back to the table as they’ve been basically shopping themselves around for some time.
We’ll see what the next move is in this game…. If there is one.
Rapid7 Says That An IBM Aspera Vulnerability Has Been Used To Install Ransomware
Posted in Commentary with tags IBM on March 29, 2023 by itnerdSecurity researchers with Rapid7 have disclosed threat actors are exploiting a critical vulnerability in an IBM file-exchange application to install ransomware on servers. The IBM Aspera Faspex critical vulnerability, tracked at CVE-2022-47986, was patched by IBM in January.
Sylvain Cortes, VP of Strategy at Hackuity had this comment:
“It is unsettling to note that for the same vulnerability (CVE-2022-47986) many cyber security companies have their own information that remains fragmented. It is important to be able to unify this information from several vendors in order to maximize its defense operations and trigger the right response. Solutions that aggregate vulnerability-related data from vulnerability scanners, EDRs or even service practices provide organizations with the critical visibility they depend on.”
This reminds me of the GoAnywhere file transfer solution vulnerability that has led to multiple organizations being pwned by the Cl0p ransomware group. Except that we haven’t seen threat exploit this to the same degree that Cl0p has. If you use IBM Aspera, you should be applying these patches ASAP, assuming you haven’t already so this doesn’t turn into another GoAnywhere situation.
Leave a comment »