Tag Archive for: zerotrust

Intertrust Adds Security for IoT Devices in Zero-Trust Architectures to Intertrust Platform

/in


SAN FRANCISCO, April 7, 2022 /PRNewswire/ — Intertrust, a leading provider in trusted distributed computing, today announced the company is extending its flagship Intertrust Platform™ with the addition of advanced, scalable authentication capabilities to protect and manage IoT devices and data in zero trust environments.

Announced in 2020, Intertrust Platform provides enterprises with secure interoperability that allows diverse data management systems to interoperate as one. With Intertrust Platform, enterprises are able to leverage diverse data management systems from leading data platforms, cloud service providers, and other vendors to choose best of breed technology. This helps avoid vendor lock-in and provides scalability when dealing with competitors and partners in complex legal and security environments. Apps such as AI that run on top of Intertrust Platform also benefit from secure access to governed data.

Intertrust’s new edge-to-cloud capabilities allow enterprises to connect IoT devices securely to their cloud services using highly scalable secure device authentication architecture with application protection technology that shields devices running at the endpoint from malicious attack. These devices relay trusted data to Intertrust Platform’s data operations layer, even if the data travels through untrusted networks. Control software then processes and sends authorization signals to these devices in a trusted fashion. Intertrust Platform provides an additional “single pane of glass” device management capability that allows enterprises to choose devices from multiple vendors that run with consistent and reliable security.

“Intertrust Platform enables enterprise customers to run interoperable services and devices in the face of growing threats and complex regulatory frameworks,” said Talal G. Shamoon, CEO, Intertrust. “With the addition of edge-to-cloud security for IoT devices in zero trust networks to Intertrust Platform, customers now have a comprehensive, secure and scalable platform that interoperates with best of breed data services, AI, and IoT devices in one consistent data operations and device management system,” added Shamoon.

Intertrust’s technologies…

Source…

International agreements, cyberespionage, and international tensions. New US DoD zero-trust office. State and local cybersecurity in the US.

/in


At a glance.

  • US joins the Paris Call.
  • FBI warns of Iranian cyberespionage.
  • Recent DPRK cyberespionage.
  • Ransomware and Financial Stability Act (H.R.5936) introduced into the US House.
  • The US Department of Defense will stand up an office to promote zero-trust implementation.
  • Reaction to the effects of the US infrastructure bill on state and local governments.
  • Rising tension in Eastern Europe can be expected to prompt a higher offensive cyber optempo.

US joins Paris Call.

US Vice President Kamala Harris has announced that American has joined the Paris Call for Trust and Security in Cyberspace, an eighty-country collaboration focused on advancing global cybersecurity efforts. Axios notes that Former President Trump refused to allow the US to support the Paris Call, and the shift demonstrates the Biden administration’s dedication to strengthening international cyberrelations. Security Week adds that the White House released a statement explaining the new partnership “includes working with like minded countries to attribute and hold accountable States that engage in destructive, disruptive, and destabilizing cyber activity.”

FBI alert warns Iranian hacker is hunting for data.

The US Federal Bureau of Investigation (FBI) is warning that a cybercriminal tied to Iran is looking to get his hands on bulk data from countries all over the world including the US, the Record by Recorded Future reports. He’s not targeting any particular industry, but is instead trawling the dark web for any data that could be leveraged to “conduct their own cyber operations against US organizations,” the FBI’s statement explains. The alert details techniques deployed by the threat actor in the past, such as enabling Remote Desktop Protocol (RDP) on target devices, or creating an RDP-scanning botnet using a network of compromised WordPress sites. To protect themselves, businesses who have suffered past data exposures are being advised to ensure compromised data can’t be abused for a future attack. FBI guidance includes patching previously compromised systems, resetting passwords, and safeguarding all systems exposed to the internet.

Kimsuky sets its sights on South Korean think tanks.

A North Korean threat…

Source…

How to prevent ransomware attacks with a zero-trust security model

/in


Ransomware attacks are rampant, with thousands taking place every single day. Learn how a zero-trust security model can protect your organization.

Ransomware

Image: kaptnali, Getty Images/iStockphoto

Ransomware attacks take place 4,000 times worldwide every day. The process is fairly straightforward—malware infects a target computer, and an attacker encrypts valuable data then sends the victim a notification demanding a ransom payment to release access to it. It’s a gamble: If the ransom is paid there is no guarantee the attacker will release the data.

SEE: Security incident response policy (TechRepublic Premium)

It’s worth pointing out this is a real phenomenon which actually locks up targeted data; it’s not the same as a random email from a stranger stating they “have gained access to your devices, which you use for internet browsing” and “after that, I have started tracking your internet activities” whereby they proceed to accuse you of engaging in unsavory online behavior which they threaten to expose unless you send them Bitcoin. Those are safe to ignore. Ransomware cannot be ignored.

TechRepublic has offered many tips on combatting ransomware as well as strategies for being proactive about it. However, there is a zero-trust model to cybersecurity that can also help businesses stay secure.

Duncan Greatwood, CEO of Xage, a zero-trust security company, pointed out that a ransomware attack can be much more damaging than just preventing access to valuable data. That’s an inconvenience and a potential disruption to business operations, but when an energy or utility grid is compromised, this can lead to blackouts, gridlocks and—when safety mechanisms are breached—the release of toxic chemicals, oil spills, fires or explosions.

Furthermore, Greatwood pointed out, wealthy countries and businesses are prime targets for ransomware attacks. “The higher the expectation for service reliability, quality and trust, the more likely the business will be a target of the attack. For these companies the impact due to loss of revenue and…

Source…

Why email needs a zero-trust security model | 2020-11-25

/in


Why email needs a zero-trust security model | 2020-11-25 | Security Magazine




Source…