Tag Archive for: November

Managed Security Services Provider (MSSP) Market News: 15 November 2023

/in


Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Security Partnership: Cloud Range, a cyber range-as-a-service solution provider, is partnering with Washington Technology Solutions (WaTech) to engage in incident response training to enhance the state of Washington’s cyber readiness and prepare practitioners to detect and remediate threats. WaTech operates the state’s core technology services, providing strategic and comprehensive information security to protect state networks from increasing cyber threats while serving state agencies, county, city and tribal governments, and public-benefit nonprofits.

2. Zero Trust Security Certification: The Cloud Security Alliance (CSA), an organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, is offering the Certificate of Competence in Zero Trust (CCZT). CSA created the CCZT to help security professionals build knowledge to drive the definition, implementation and management of zero trust.

3. Leadership Move: Adlumin, a managed detection and response (MDR) provider, has hired Jessvin Thomas as its first chief product officer. With more than two decades of cybersecurity experience at organizations, including Barracuda Networks, Optiv and Blackstone Group, Thomas will lead Adlumin’s product and services teams to continue developing innovative offerings that solve critical security needs.

4. New Security Center Debuts: Living Security, a specialist in human risk management, has launched the Human Risk Operations Center (HROC), fueled by Living Security’s Unify Platform….

Source…

Visit by Minister for Foreign Affairs Dr Vivian Balakrishnan to the Cook Islands for the 52nd Pacific Islands Forum Leaders Meeting, 9 to 11 November 2023

/in


Minister for Foreign Affairs Dr Vivian Balakrishnan visited Cook Islands from 9 to 11 November 2023 to attend the 52nd Pacific Islands Forum (PIF) Leaders Meeting, marking the first time that Singapore participated in the PIF Leaders Meeting as a Dialogue Partner.

 

Minister Balakrishnan delivered remarks at the 2050 Pacific Prosperity High-Level Thematic Dialogue on 10 November 2023. He highlighted that Singapore viewed relations with the PIF as strategic. As fellow Small Island Developing States, Singapore and the Pacific Islands share a commitment to tackling global challenges, particularly the existential issue of climate change. Over the past 30 years, Singapore has shared our development experience with more than 5,800 Pacific officials under the Singapore Cooperation Programme.

 

Minister Balakrishnan announced the launch of a three-year customised technical assistance package for the Pacific named the “Singapore-Pacific Resilience and Knowledge Sharing” (SPARKS) package. The SPARKS package comprises courses in climate resilience, cybersecurity and international law. These courses will support the Pacific’s capacity building efforts in priority areas under the PIF’s 2050 Strategy for the Blue Pacific Continent, the blueprint for charting the region’s future. The transcript of Minister Balakrishnan’s remarks and a factsheet on the SPARKS package are at Annexes A and B.

 

During his visit, Minister Balakrishnan met several leaders from the Pacific, including PIF Chair and Cook Islands Prime Minister Mark Brown, Fiji Prime Minister Sitiveni Rabuka, French Polynesia President Moetai Brotherson, Kiribati President Taneti Maamau, New Caledonia President Louis Mapou, Tonga Prime Minister Siaosi Sovaleni, Palau Minister of State for Foreign Affairs Gustav Aitaro, Solomon Islands Minister for Foreign Affairs and External Trade Jeremiah Manele, and PIF Secretary General Henry Puna. Minister Balakrishnan had good discussions with these leaders on the Pacific’s priorities as well as how Singapore can work with them both bilaterally and multilaterally.

 

.    .    .    .    .

 

 

MINISTRY OF FOREIGN AFFAIRS

SINGAPORE

11 NOVEMBER…

Source…

Email Security News Round-Up [November 2022]

/in


Email security issues plague every single business because it’s an easy point of failure for scammers and hackers to exploit. Your business is vulnerable to cyberattacks if you don’t take the necessary steps to secure your email domain and IT infrastructure. 

When it comes to cybersecurity, it seems the news headlines are never ending, and this month was no different.

Keep reading for more on the latest cybersecurity and email security news.

We kick off our monthly email security news round-up with the story of a new and dangerous phishing campaign.

On November 17th, security experts at Armorblox reported a credential phishing attack targeting 22,000 students. The campaign exploited and impersonated the popular social media platform Instagram to trick students from national educational institutions.

The threat actors made the phishing email look like it originates from Instagram Support; with the sender’s name, Instagram handle, and email address all matching legitimate Instagram credentials. 

The email phishing campaign used social engineering tactics and a false sense of urgency indicating that the victim’s Insta account was breached. It included a malicious link that redirected users to a fake landing page with Instagram branding and details around the “unusual login attempt” detected, with a ‘This Wasn’t Me’ button.

Upon clicking the button, victims were then redirected to another fake landing web page to enter their sensitive account details. By doing so, they unknowingly handed over their credentials to the bad actors.

Surprisingly, this email attack bypassed native Microsoft email security controls and email authentication checks with the domain “instagramsupport.net” when the official Instagram domain ends with “.com.”

A Chinese-based cybercriminal group has been exploiting the popularity and trust of famous international brands with a large-scale phishing campaign since 2019.

Banking, retail, travel, and energy have been among the various business industries that the threat actors exploit with 42,000 imposter domains reportedly registered. Victims are tricked into spreading the campaign via Whatsapp with the promise of financial rewards or…

Source…

GRIT Ransomware Report: November 2022

/in


Report written by Drew Schmitt and Nic Finn

In November, GRIT observed 22 active groups accounting for 166 victims. Continuing their trend from previous months, Lockbit’s claimed victims fell by a massive margin, dropping 41% from their October haul. November represents Lockbit’s slowest month this year, falling even lower than they did during their June to July lull when switching from Lockbit2 to Lockbit3. Lockbit wasn’t alone in their slowdown, as eight other groups also saw at least a 40% decrease in reported victims. 

GRIT began tracking four additional groups this month, including Royal and MedusaLocker, who immediately jumped into the top five groups based on total reported victims. These four groups accounted for 43 reported victims in November. An additional six groups with no activity in October showed a minor resurgence, accounting for 26 victims in November. 

In addition to having less reported victims, November also saw less countries and industries targeted. Specifically, 33 industries were impacted this month compared to 36 in October. Similarly, 38 countries were impacted in November compared to 40 countries in October. These slight decreases suggest that there were no significant changes to targeting this month. While there were some shifts in the order of the most targeted industries, the most noteworthy changes included the Legal industry shifting into the top 10, knocking Government organizations off the list, and the Construction industry dropping from third place to tenth. In terms of countries targeted, GRIT noted that India and UAE were among the top ten victimized nations, pushing Spain and Australia out of the top ten.

GRIT’s data in this report includes updated insights into threat actor activity from October obtained from recently published leak sites that included historically compromised victims. The addition of this dataset had slight impacts to victim trends and statistics from previous months; however, it did not have significant impacts on trends or findings from previous reports.

Based on sources monitored by GRIT, there was a 12.6% decrease in the total number of victims from October to November….

Source…