Category Archives: Internet Security

Everything You Need to Know About SD-WAN – Spiceworks News and Insights

Written by admin on September 2, 2022 — Leave a Comment

Software-defined WAN or SD-WAN is a virtual wide area network (WAN) that relies on software technologies like internet-based communication tunnels, software-driven network encryption, firewall software, etc. to operate a mid-sized to large-scale computer network spread across locations. This article explains how SD-WAN works, its benefits, and the best SD-WAN solutions in the market.

Software-defined WAN or SD-WAN is defined as a virtual wide area network (WAN) that relies on software technologies like internet-based communication tunnels, software-driven network encryption, firewall software, etc. to operate a mid-sized to large-scale computer network spread across locations.

A software-defined wide area network (SD-WAN) uses software-defined technology and infrastructure. SD-WAN dissociates the networking hardware from the control mechanism and thus streamlines the WANs operation and management. Organizations that use SD-WAN solutions can build higher-performance WANs using inexpensive internet and at significantly lower costs than private WAN connection technologies such as multiprotocol label switching (MPLS).

SD-WAN solutions make it easier for organizations to manage firewalls and routers, upgrade software and firmware, virtual private networks (VPN), and remote clients through a centralized management interface. The centralized management control is used to securely and efficiently route traffic across the WAN directly to trusted providers such as software-as-a-service (SaaS) and infrastructure-as-a-service (IaaS). It also minimizes labor costs by cutting maintenance costs and lowers the cost of equipment.

During the early years, WANs required backhauling of all traffic from branch offices to a data center where they applied advanced security services. Traffic between the source and data centers was based on complex routing protocols such as transmission control protocol (TCP/IP) addresses and control list tables.

Ultimately, it leads to delays resulting in poor application performance, user experience, and huge costs due to expensive bandwidths. Users also had to incur expenses to install MPLS routers at each location. Performing upgrades on firmware or software took longer times due to network complexities. The network architecture was also not optimized for cloud infrastructure. The limitations of traditional WANs drove the change to a better SD-WAN technology that replaced MPLS.

SD-WAN is deployed in an organized way in branch offices and data centers. It is optimized for cloud infrastructure and associates cloud technology with mobile computing. It separates the data plane and control plane of the network. It has a centralized management interface where traffic is managed and monitored. It has a single management portal which reduces complexities and makes it easier to track applications, thus improving performance and operational efficiencies.

By providing lower-cost infrastructure and transport costs, an organization can save. SD-WAN provides end-to-end encryption over the entire network, providing secure connections to its users. Additionally, SD-WAN can prioritize traffic on business-critical applications and route it through the most efficient pathway.

See More: How Does an Edge Network Work and What Does Its Future Hold? AT&Ts Theresa Lanowitz Answers

The main objective of SD-WAN is to connect end-users and the applications, notwithstanding the location of these end-users. SD-WAN drives traffic as per the business requirements of the application. These business requirements vary from the priority of the application to must-enforced security policies or application performance required. Usually, critical mission applications are given the highest priority. The networking approach may vary from MPLS to broadband to 4G LTE.

The SD-WAN architecture separates the control and management functions, applications, and WAN transport services. It has a centralized control plane that stores and manages all the data on the traffic and applications. The centralized control plane monitors and adapts traffic to suit the application demand and delivers the optimum experience.

The following are features of SD-WAN that users should consider before choosing an SD-WAN solution model:

See More: How To Make Networks Ready for Cloud-First Era With SD-WAN

SD-WAN allows organizations and small businesses to securely connect their users to applications by taking advantage of any combination of network services. When choosing the right SD-WAN solution providers, users should consider factors such as security, price, availability of hybrid wide area network (WAN) solutions, and the ease at which they can be deployed. The top 10 SD-WAN solutions include:

Powered by Meraki, Cisco SD-WAN is a scalable, programmable, and open solution that allows users to connect to any application. It offers control, visibility, and real-time analytics to its users. Cisco SD-WAN offers cloud management services and it can also be deployed on-premise. It is integrated with capabilities that allow it to perform optimization of applications, unified communications, multi-cloud services, and security.

Fortinet FortiGate provides a secure networking approach that combines SD-WAN, advanced routing, and next-generation firewall (NGFW) to promote consistent security and network policies and reduce operational costs through automation, self-healing, and deep analytics. This also simplifies wide-area network (WAN) architecture by accelerating network and security convergence. Fortinet FortiGate SD-WAN offers improved multi-cloud application performance through multi-path control, application steering and identification.

Oracle SD-WAN provides users with simplified WAN management services such as SD-WAN, firewall, routing, and WAN optimization. It provides users with high bandwidth and inexpensive internet connections and delivers easy-to-deploy and manages the network. Oracle SD-WAN offers its users reliable, quality, flexible and secure services. With its high availability, users can enjoy faster applications and better networks. It also allows for safer migrations of applications into the public cloud.

Citrix SD-WAN combines cloud-delivered and comprehensive security with SD-WAN, analytics, and secure internet access. It has strong security at the WAN Edge, providing complete protection against all threats. Its Citrix cloud on-ramps feature provides flexible on-ramp options for any cloud access that simplifies multi-cloud transition. Citrix SD-WAN reduces network costs and increases agility.

CenturyLink SD-WAN unifies network management across different network types, creating an agile and responsive wide area network. It enables users access to bandwidth to leverage broadband connections for bandwidth-intensive applications. It provides users with data analytics and reports while offering performance-based application routing. CenturyLink SD-WAN offers a reliable solution that allows users to reduce operating costs for equipment and staff.

Wanify has partnered with VeloCloud to deliver VeloCloud SD-WAN. It manages end-to-end processes and improves network performances by combining multiple connections for its users. It supports network agility and application growth by offering optimized access to cloud applications and data centers. It routes application traffic through efficient routes after gauging the real-time performance of the network. Wanify SD-WAN provides customer support and offers a secure and customizable solution for its clients. It also manages carriers for its users.

See More: What Is a Mesh Network? Meaning, Types Working, and Applications in 2022

Palo Alto Networks offer SD-WAN services through Prisma. It provides networking and security in a single platform. It enables app-defined policies for SD-WAN that eliminate network problems, increase bandwidth, and simplify management for its users. Palo Alto Networks Prims SD-WAN allows users superb control and connection options along with supporting machine learning and automation. It also provides users with router modernization and cloud migration.

Exinda SD-WAN provides businesses with a stable, secure, reliable, and cost-effective solution. It combines and manages up to 12 internet kinds of transport from local service providers. The Exinda SD-WAN network router monitors, detects, and adapts to fluctuations from internet service providers and also monitors traffic changes. It automatically solves network problems, thus avoiding interruptions to internet services and applications.

It allows users to add bandwidths to their networks when they need to increase network capacities. Integrating Exinda SD-WAN and Exinda network orchestrator enhances the ability to accelerate applications to better performance.

Masergy SD-WAN leverages its secure edge network with built-in Fortinet security. It provides clients with end-to-end visibilities and uses artificial intelligence for IT operations (AIOps) to analyze networks and make recommendations to improve reliability. It uses AIOps and shadows IT discovery tools to build overlays to fit networks. It customizes rules to meet network and application requirements. Masergy SD-WAN allows for co-managing with its users to streamline inefficiencies.

Aryaka SD-WAN has a built-in WAN optimization that guarantees application performance for this feature-rich platform. Aryaka SD-WAN service doesnt need the installation of complex appliances or network management software as it is a remote-based cloud system. Users can connect to it through virtual private networks (VPN). Aryaka SD-WAN provides insightful analytics in a secure platform that offers a multi-cloud networking service. It provides reliable throughput, real-time visibility, and single-day deployments for new technology.

See More: What Is Network Management? Definition, Key Components, and Best Practices

The global software-defined wide area network (SD-WAN) market size is expected to increase exponentially from $1.9 billion in 2020 to $8.4 billion by 2025. This figure represents a compound annual growth rate (CGAR) of 34.5%, as per research by MarketsAndMarkets. These figures express an increasing appetite for SD-WAN solutions from enterprises due to a slew of business benefits. These include:

In the recent past, business enterprises and other organizations have embraced advanced technologies to gain an edge against their competitors in the market. However, its adoption has brought on its fair share of problems in the form of cybercrimes.

Most SD-WAN solutions offer basic built-in security features like firewall and VPN functions that improve security for their users. Additionally, users looking for advanced security features can look for SD-WAN solutions offering features to prevent data loss, downtime, and legal liabilities. Popular SD_WAN solutions include next-generation firewalls (NGFW), intrusion prevention systems (IPS), encryption, and sandboxing capabilities.

Users can configure SD-WAN to steer their business traffic through the most efficient route by prioritizing real-time services such as voice over internet protocol (VoIP) and business-critical traffic. SD-WAN, through its flexibility, allows users to vary bandwidth access via any local internet provider to promote increment in speeds to match real-time demand. Varying bandwidth using deduplication and compression also helps in reducing the total cost of ownership (TCO).

SD-WAN allows for bandwidth capacity to be scaled up or down through the direct addition of internet broadband connectivity. A single logical link can be formed when multiple WAN service types, such as direct internet or private multiprotocol label switching (MPLS), are bonded together.

Other optimization techniques that SD-WAN employs to improve network agility include data de-deduplication, data compression, and secure sockets layer (SSL).

According to a 2018 forecast survey by IDC Research, up to two-thirds of respondents expect to save 5-19%, while a quarter expect upwards of 39% savings when using SD-WAN technologies. SD-WAN technology allows for self-managed procedures and automation, which enables organizations to reduce the number of external IT experts required to carry out periodic tests and maintenance, thereby proving to be cost-effective.

SD-WAN aggregates multiple direct-to-internet (DIA) lines for WAN connectivity, thus reducing the overall cost for bandwidth as it requires less network hardware. Organizations can also easily set up new branches online at any location at less time and cost.

As small businesses use more technology solutions such as local, edge, and cloud-based applications, network complexity becomes a common problem. This is due to competition for limited bandwidth, which leads to poor network performance. It might also necessitate hiring more IT specialists on-site to manage local IT infrastructure, leading to increased costs. SD-WAN provides a solution through monitoring and alerting the performance of different data types to ensure enough bandwidth is allocated. Users can configure SD-WAN to prioritize critical traffic through the most efficient path to its destination to improve performance.

SD-WAN is usually managed through a centralized management interface that monitors it and manages traffic. From a single management portal, paths to applications are allocated according to criticality, new sites are provisioned, software and firmware upgrades are performed, and users can flex bandwidth from this point. Using a centralized management plan helps to reduce complexity and makes it easier to track applications and their performances from a single zone.

See More: What Is Network Hardware? Definition, Architecture, Challenges, and Best Practices

Organizations are gradually adopting cloud-based services. SD-WAN enables users to access the cloud remotely without burdening the core network with additional traffic to manage and secure. This may promote cost savings for organizations looking to cut down on office space, equipment and rent as employees can work remotely. The need for additional IT experts to manage and secure data traffic is also minimized.

SD-WAN solutions improve cloud applications performance by emphasizing business-critical applications and allowing them to communicate directly to the internet. SD-WAN guarantees quality and optimizes data, followed by directing network traffic along the most efficient routes.

Even with the gradual increase in the popularity of cloud-based resources, organizations still have to wait for weeks or months to set up new WAN circuits or managed service providers (MSPs). A fully managed cloud-first WAN service could offer cloud-based network offerings comparable with other cloud services through orchestration and automation.

This feature would promote quick turn-up of newer locations globally and services bolstering enterprise flexibility. It would also facilitate troubleshooting and increase the visibility of enterprises.

SD-WAN technologies offer predictive analytics enabling IT specialists to navigate potential outages and mitigate any other potential issues. SD-WAN monitors the system in real time and provides data analytics to determine and predict any problems. This ability helps to reduce resolution time for organizational IT troubleshooting, lowering TCO, and maintaining peak performances at all times. This leads to increased productivity in organizations and decreasing costs, as IT experts are not always required to be on-premises. In case a problem arises, they can quickly identify and fix the issue.

See More: How to Get SD-WAN Security Right?

Software-defined wide area network is a crucial enabler for enterprise digital transformation. It is highly extensible so it can integrate new-age security technologies like SASE with existing network infrastructure. It can also simplify IT operations by paving the way for AIOps alongside network management. Thats why it is vital to understand the working and potential benefits of SD-WAN to prepare for your adoption journey.

Did this article fully inform you about the role of SD-WAN in a modern enterprise? Tell us on Facebook, Twitter, and LinkedIn. Wed love to hear from you!

See more here:
Everything You Need to Know About SD-WAN - Spiceworks News and Insights

How the Pandemic Forced F5 to Flex its Software Side – Entrepreneur

Written by admin on September 2, 2022 — Leave a Comment

Multi-cloud application network and cybersecurity solutions provider F5 (NASDAQ: FFIV) stock has fallen (-35%) for the year. F5 enables organizations and data centers to defend its networks and applications from hackers and bots. The Company has largely pursued a growth by acquisition strategy to enter into and expand footprints in its operating segments. The Company is benefiting from the robust cloud and internet security tailwinds that are also driving growth for its competitors like Palo Alto Networks (NASDAQ: PANW) and Crowdstrike (NASDAQ: CRWD). The pandemic created the global supply chain disruption causing F5 networks to concentrate on its software business to mitigate the backlog in its hardware business. It bolstered its portfolio with Volterra and Threat Shack acquisitions in 2021 to double its total addressable market (TAM) in the cloud and application security segment. Supply chain disruptions have forced the Company to pivot more towards software and away from hardware. This has enabled its software segment to bring in 40% of its total revenues, up from under 24% pre-pandemic in 2019. Its also enabled the Company is generate 72% of its revenues from recurring sources. While the supply volume havent improved, there hasnt been any further deterioration since June 2022. This could set-up for a second half improvements as its suppliers expect to grow additional capacity by the end of 2022.

F5 originally sold application network controllers (ADCs) to data centers, internet service providers, and governments. ADCs allow application management of internet traffic between network devices and servers. Two catalysts forced the Company to transition towards growing its software business through a subscription model. First, the migration to cloud based applications has hurt the demand for on premise ADCs. Secondly, the global supply chain disruption has limited the ability to ship systems despite strong demand. The Company saw 38% growth in software sales that drove 4% revenue growth.

On July 25, 2022, F5 released its fiscal third-quarter earnings report for the quarter ending June 2022. The Company saw earnings-per-share (EPS) of $2.57, excluding non-recurring items, versus consensus analyst estimates of $2.23, beating by $0.34. Revenues rose 3.5% year-over-year (YoY) to $674.49 million beating analyst estimates for $667.81 million. The Company announced an additional $1 billion stock buyback program added to the remaining 272 million buyback program. F5 Networks CEO Francois Locoh-Donou commented, Customers depend on F5 to secure and deliver extraordinary digital experiences that drive their businesses and fuel their brands. Demand for security across all customer verticals fueled sales in our third quarter resulting in 4% total revenue growth despite ongoing semiconductor shortages.

F5 raised its guidance for Q4 2023 EPS of $2.45 to $2.57 verse $2.28 consensus analyst estimates. The Company estimates revenues of $680 million to $700 million versus $690.89 million consensus analyst estimates. Security concerns continue to drive most of its customer engagements fueling demand in both software and hardware as customers add and scale applications.

F5 continues to get wins and gain market share. A major global retailer choose F5 over an existing bot defense provider after a head-to-head three month proof of concept against its existing solution. Its distributed cloud bot solutions proved to be more efficient and convinced the client to deploy F5 for the protection of their apps and customers. F5 enables enterprises to simplify and secure their operations using both traditional and modern architectures. The launch of its new software-as-a-service (SaaS) platform offering in February of its distributed cloud services that enable the delivery of security, multi-cloud networking, and edge computing solutions is gaining traction. The Company is also seeing service providers scale and secure 4G cores and are beginning to move 5G cores into production. F5 is set to grow from software growth drivers and its distributed cloud services SaaS offerings.

Lets analyze FFIV on the daily and weekly time frames through the rifle charts. The weekly rifle chart uptrend has a rising 5-period moving average (MA) at $168.82 followed by the 15-period MA support at $160.89. The weekly 200-period support sits at $166.40. The weekly stochastic is rising towards the 70-band. This would normally be a bullish looking chart if not for the aggressive rug pull that caused shares to collapse straight through the weekly 5-period, 15-period, and 200-period MAs in a single candle to attempt to make a bottom near the $159.93 Fibonacci (fib) level. Bulls will need to protect the market structure low (MSL) buy trigger at the $157.43. The indicators especially the weekly stochastic will update as time goes on. The daily rifle chart is in the downtrend thats testing the 50-period MA support at $160.34. The daily 5-period MA resistance is falling at $164.86 followed by the 15-period MA at $169.16. The daily lower Bollinger Bands (BBs) are testing at $159.87. The daily stochastic has made a full oscillation down through the oversold 20-band. Attractive pullback levels are at the $157.43 weekly MSL trigger, $151.66, $147.54 fib, $142.43, $139.82 fib, $133.04 fib, and the $130.42 fib level.

Read more from the original source:
How the Pandemic Forced F5 to Flex its Software Side - Entrepreneur

Avoiding the Perils of a Connected World: New Best Practices for Risk Mitigation – McMillan LLP

Written by admin on September 2, 2022 — Leave a Comment

August 31, 2022 Business Law Bulletin 3 minute read

On August 25, 2022, the Canadian Center for Cyber Security (CCCS) released updated guidance on risk mitigation when using internet of things (IoT) devices, which provides new and important considerations for business activity.[1]

What is Internet of Things?

IoT refers to the network of everyday web-enabled objects that can connect and exchange information, and are often referred to as smart objects. Items that use the IoT network include not only laptops and smartphones, but also items like personal fitness trackers, TVs, thermostats, connected cars and home surveillance devices. IoT devices use the Internet to send data to the cloud for processing, where it is then shared with other network-connected devices through the use of Bluetooth, Wi-Fi or RFID technology.

Why is this guidance important?

The use of proper security and privacy protection is increasingly important in the context of these devices, with CCCS projecting that by 2025, there will be more than 30 billion IoT connections with an average of four IoT devices per person.

With capabilities to improve workflow and productivity, IoT devices are often used to make routine tasks more efficient and convenient. For example, using a mobile phone payment device attached to a smartphone makes for for a simple, convenient payment method. From an organizational perspective, uses for IoT devices include teleconferencing equipment, voice activated devices, networked security cameras, and corporate mobile phones, among many others.

What are the privacy and security implications of IoT technology?

IoT technology can create incredible upside for companies that wish to leverage the technology to facilitate a more creative, efficient and innovative environment for employees to succeed in their roles, but can also pose a high level of security risk for the business. Organizations that allow employees to bring their own smart devices to work can pose even more risk to security.

Without proper oversight and consideration, IoT devices can leave a business network and data vulnerable to numerous potential threats. Threat actors can take advantage of these vulnerabilities, causing a compromise of internal systems, including unauthorized security access to items like mobile Internet-enabled microphones without consent to listen in on conversations, or maliciously disrupting Internet access.

In a broader context, the security of IoT devices also applies to critical infrastructure used in industrial operations (i.e. mining, energy, transportation or medical) which can pose a broader risk to the public and business community at large.

How can businesses protect against IoT threats?

Organizations must carefully consider the implications of deploying these devices in connection with their businesses. To keep IoT devices secure, the CCCS recommends implementing or updating an organizations plans and policies that identify the security capabilities and possible vulnerabilities of an organizations network. In particular, the updated guidance recommends:

Additionally, the CCCS recommends that organizations remember that IoT devices can help find efficiencies in workflows and processes, but an organization inherits the security issues of any connected device on the network. If used in the workplace, the organization should implement policies to ensure IoT devices are introduced, used, and managed securely. Finally, there should also be policies enforcing appropriate data storage on all devices.

If you have any questions about these guidelines, maintaining compliant privacy and cybersecurity policies, or about privacy and cybersecurity more generally, a member of ourPrivacy & Data Protection Groupwould be happy to assist you.

[1] Canadian Centre for Cyber Security, Internet of Things: CCCS Best Practices for Risk Mitigation (August 25, 2022), available here.

by Robert Piasentin, Kristen Shaw and Hailey Lonsdale (Articled Student)

A Cautionary Note

The foregoing provides only an overview and does not constitute legal advice. Readers are cautioned against making any decisions based on this material alone. Rather, specific legal advice should be obtained.

McMillan LLP 2022

Visit link:
Avoiding the Perils of a Connected World: New Best Practices for Risk Mitigation - McMillan LLP

WISeKey is Implementing PostQuantum Algorithms in its Root of Trust Services and Semiconductors for IoT Security – StreetInsider.com

Written by admin on September 2, 2022 — Leave a Comment

News and research before you hear about it on CNBC and others. Claim your 1-week free trial to StreetInsider Premium here.

WISeKey is Implementing PostQuantum Algorithms in its Root of Trust Services and Semiconductors for IoT Security

Geneva August 31, 2022 WISeKey International Holding Ltd (WISeKey ) (SIX: WIHN, NASDAQ: WKEY), a leading global cybersecurity, Blockchain and IoT company, today announced advances in its Post-Quantum strategy designed to support a new grade of future-proof PKI services.

WISeKey is developing a new range of Trust Services, that will take advantage of the latest developments in post-quantum encryption (PQE) to be applied in real-world applications of digital signatures and encryption using PKI and digital certificates, such as secure communication channels (TLS), enhanced Key Exchanges and email security (S/MIME). These services are currently based in standards that can be improved to be resilient to quantum attacks and offer backwards compatibility with existing counterparts. WISeKey implementation of PQE is done around the concept of hybrid signatures which combine in a single X.509 certificate a conventional signature with a second signature using a PQE algorithm. This approach ensures backwards compatibility and opens a new horizon of cybersecurity services.

Later this year, WISeKey plans to offer a first Root of Trust based in PQE algorithms promoted currently by the NIST as valid candidates, which will be the foundation of a new portfolio of Trust Services and secure several IoT projects on which WISeKey is already working.

Previously WISeKey provided updates on its progress in developing post-quantum resistant algorithms by establishing strategic R&D partnerships with MINES Saint-Etienne Research Institute. WISeKeys R&D group has been working with several NISTs candidates for the MS600X Common Criteria products, such as Crystals-Kyber and Crystals-Dilithium, aiming to develop a complete post-quantum cryptography toolbox to be combined with new PKI-related Trust Services delivered by WISeKey.

These post-quantum cryptography initiatives will play a key role in controlling vulnerability and other risks related to quantum computers technologies which when used by hackers can give them the ability to crack cryptography algorithms, corrupt cybersecurity and compromise global economy by undermining the security foundations of the current financial and governmental services. These initiatives have received tremendous support by many government entities around the world through the sponsoring of public/private R&D projects. In particular, WISeKey is active in key initiatives promoted by French Agency for Cybersecurity (ANSSI), and by the National Cybersecurity Center of Excellence of the US NIST.

WISeKey is, once more, demonstrating a clear focus on playing an active role shaping the future of the internet security. We have a solid approach in developing new products to implement post-quantum encryption technologies, and for this we will be dedicating all the necessary R&D resources, said Carlos Moreira, Founder and CEO of WISeKey.

WISeKeysstrategy to further expand its U.S. operations will also benefit from its recent collaboration with NIST for the NCCoE Trusted IoT Device Network-Layer Onboarding and Lifecycle Management Consortium project. Additional information on this consortium can be found at:http://www.nccoe.nist.gov/projects/trusted-iot-device-network-layer-onboarding-and-lifecycle-management. For this project, WISeKey is working with NIST to define recommended practices for performing trusted network-layer onboarding, which will aid in the implementation and use of trusted onboarding solutions for IoT devices at scale. The WISeKey contributions to the project will be Trust Services for credentials and secure semiconductors to keep the credentials secure. Specifically, WISeKey will offer INeS Certificate Management Service (CMS) for issuing credentials and VaultIC secure semiconductors to provide tamperproof key storage and cryptographic acceleration.

About WISeKeyWISeKey (NASDAQ: WKEY; SIX Swiss Exchange: WIHN) is a leading global cybersecurity company currently deploying large-scale digital identity ecosystems for people and objects using Blockchain, AI, and IoT respecting the Human as the Fulcrum of the Internet. WISeKey microprocessors secure the pervasive computing shaping todays Internet of Everything. WISeKey IoT has an installed base of over 1.6 billion microchips in virtually all IoT sectors (connected cars, smart cities, drones, agricultural sensors, anti-counterfeiting, smart lighting, servers, computers, mobile phones, crypto tokens, etc.). WISeKey is uniquely positioned to be at the leading edge of IoT as our semiconductors produce a huge amount of Big Data that, when analyzed with Artificial Intelligence (AI), can help industrial applications predict the failure of their equipment before it happens.

Our technology is Trusted by the OISTE/WISeKeys Swiss-based cryptographic Root of Trust (RoT) provides secure authentication and identification, in both physical and virtual environments, for the Internet of Things, Blockchain, and Artificial Intelligence. The WISeKey RoT serves as a common trust anchor to ensure the integrity of online transactions among objects and between objects and people. For more information, visitwww.wisekey.com.

Press and investor contacts

Disclaimer:This communication expressly or implicitly contains certain forward-looking statements concerning WISeKey International Holding Ltd and its business. Such statements involve certain known and unknown risks, uncertainties and other factors, which could cause the actual results, financial condition, performance or achievements of WISeKey International Holding Ltd to be materially different from any future results, performance or achievements expressed or implied by such forward-looking statements. WISeKey International Holding Ltd is providing this communication as of this date and does not undertake to update any forward-looking statements contained herein as a result of new information, future events or otherwise.

This press release does not constitute an offer to sell, or a solicitation of an offer to buy, any securities, and it does not constitute an offering prospectus within the meaning of article 652a or article 1156 of the Swiss Code of Obligations or a listing prospectus within the meaning of the listing rules of the SIX Swiss Exchange. Investors must rely on their own evaluation of WISeKey and its securities, including the merits and risks involved. Nothing contained herein is or shall be relied on as, a promise or representation as to the future performance of WISeKey.

Read the original post:
WISeKey is Implementing PostQuantum Algorithms in its Root of Trust Services and Semiconductors for IoT Security - StreetInsider.com

With Billions Stolen from DeFi Platforms in 2022, FBI Asks Users to Tread Cautiously – Spiceworks News and Insights

Written by admin on September 2, 2022 — Leave a Comment

The FBI warned individuals to vet decentralized finance (DeFi) platforms carefully before investing in cryptocurrency. In an advisory released on Monday by the FBIs Internet Crime Complaint Center (IC3), the federal agency highlighted how cybercriminals are making a killing on the DeFi platforms.

IC3 cited the latest report from blockchain analysis company Chainalysis that puts the total value of cryptocurrency stolen in Q1 2022 at $1.3 billion. From January through July 2022 (H1 2022), hackers indirectly ripped off individuals $1.9 billion, 97% of which was through DeFi platforms.

During H1 2021, crypto heists amounted to $1.2 billion, thus signifying an increase of just under 60% YoY this year. A cause of concern indeed. Chainalysis believes there are no indications that the cybercriminal activity against cryptocurrency and DeFi platforms will slow down. The Nomad crypto bridge attack in H2 2022 (August) is a prime example. The incident allowed thousands of regular internet users to steal almost $190 million from the system.

Cryptocurrency Theft Data | Source: Chainalysis

One of the major culprits is security gaps in DeFi protocols which cybercriminals love to exploit. Surja Chatterjea, head of product and alliances at Skybox Security, told Spiceworks, This is the latest urgent reminder that cybercriminals are increasingly targeting known vulnerabilities hiding in plain sight and turning them into backdoors to deploy complex attacks that are increasing at record rates.

DeFi protocols, including that of Nomad and others, offer features such as blockchain interoperability, i.e., the ability to transfer and trade cryptocurrency tokens between multiple blockchain networks like Ethereum, Solana, etc.

Users leverage programs called smart contracts that are used to store crypto assets, and that execute when predetermined conditions are met. Smart contracts are complex and exist across decentralized blockchain networks.

See More: Bad Code Update Lets Hackers Steal $190M From Cryptocurrency Bridge Nomad

However, these DeFi protocols are often vulnerable to bugs and fall prey to malicious actors on the prowl for a quick payoff. If organizations are relying on conventional approaches to vulnerability management, they may only move to patch the highest severity vulnerabilities first based on the Common Vulnerability Scoring System (CVSS), Chatterjea added.

Cybercriminals know this is how many companies handle their cybersecurity, so theyve learned to take advantage of vulnerabilities seen as less critical to carry out their attacks. Skybox Research Lab recently found that new cryptojacking programs were up 75% year-over-year.

As noted by the FBI, vulnerabilities were exploited to carry out a flash loan attack that caused losses of $35 million in one incident, and $3 million in another, going up as much as $320 million.

Vulnerabilities are also the reason behind the most prominent crypto incident, the $620 million heist from Axie Infinitys Ronin Bridge, as well as others, including the $326 million Wormhole heist, the $100 million Harmony heist, the $80 million Fei Protocol heist, and the more recent $190 million Nomad heist, and others.

FBI advised individuals to conduct due diligence of the DeFi platform before investing, which includes considering whether the platform has been audited for its code, smart contracts, and the risk of crowdsourced vulnerability identification.

For companies operating in the DeFi space, Chatterjea advised a proactive approach to vulnerability management and quantifying the economic impact. Proactive approaches to vulnerability management can significantly reduce time and resources spent by threat hunting teams in reactive enterprise-wide searches for indicators of compromise (IoCs) and indicators of attack (IoAs), Chatterjea explained.

A mature risk management program explicitly links vulnerabilities with their associated malware names and types (Cryptocurrency Miner, for example) to improve MTTD/MTTR and drive down breach risk across the enterprise. Organizations should ensure they have solutions in place capable of quantifying the business impact of cyber risks into economic impact, she added.

This will help them identify and prioritize the most critical threats based on the size of financial impact, among other risk analyses such as exposure-based risk scores. Its essential for organizations to increase the maturity of their vulnerability management programs to ensure they can quickly discover if they are impacted by vulnerabilities and how urgent it is to remediate.

Let us know if you enjoyed reading this news on LinkedIn, Twitter, or Facebook. We would love to hear from you!

Read this article:
With Billions Stolen from DeFi Platforms in 2022, FBI Asks Users to Tread Cautiously - Spiceworks News and Insights

PERU AND THE UNITED STATES ADVANCE CRITICAL INTERNET SECURITY AND CONNECTIVITY GOAL – US Embassy in Peru – USEmbassy.gov

Written by admin on August 26, 2022 — Leave a Comment

During a three-day workshop, regulatory and technological approaches to reduce the digital gap, mainly in rural areas, were shared.

The Embassy in partnership with the Ministry of Transportation and Communications (MTC) and the U.S. Trade Law Development Program organized a workshop to discuss regulatory approaches to bridge the digital gap and implement networks of resilient wireless communications for 5G technology.

Held from August 22 to 24, the workshop brought together government and private sector leaders from the United States, Peru, Australia, Bolivia, and Ecuador to discuss their efforts to advance broadband connectivity and bridge the digital gap. Interested parties also discussed the benefits of a diverse and competitive market in the transition to 5G and the importance of open and interoperable telecommunications networks.

The Deputy Minister of Communications of the Ministry of Transports and Communications, Vctor lvarez Herrera, mentioned that broadband Internet is the fundamental basis for the development of information and communication technologies, as well as the transformation towards a digital society and economy.

In that sense, he added that the governments approach is to promote greater coverage, especially rural, to close the digital gap, thus generating a positive socioeconomic impact in the country.

For his part, the Embassys Counselor for Economic Affairs, John Barrett, stated that connecting Peruvians and more people in the region who live in rural areas to the Internet will make a real difference in their lives: improving their health and education, providing greater opportunities for entrepreneurial and small business development, and ultimately unlocking the true potential of our economies.

Under the auspices of the Digital Connectivity and Cybersecurity Partnership (DCCP), the workshop advanced the conversation on the effective use of the universal service fund, best practices in broadband regulation, and expanding 5G provider security and the diversity of providers.

The Rural Broadband Connectivity Workshop boosted Perus efforts to reform legal frameworks to encourage the deployment of secure and interoperable 5G networks. The workshop also encouraged regional and global cooperation in a critical sector to drive economic growth in the region and beyond. This event also laid the groundwork for future collaboration between governments on network security and provider diversity, which are critical components for the universal deployment of broadband services.

Funding for this commitment was made possible by the DCCP, a multi-year approach by the U.S. government to foster an open and competitive internet, secure 5G networks, and promote safe and responsible business opportunities in countries around the world.

Google grows the ambit of Internet security; includes everyone from children to the LGBTQIA+ community – The Financial Express

Written by admin on August 26, 2022 — Leave a Comment

Google rolled out a series of cybersecurity programs, under the second edition of its annual Safer With Google event, which announced the launch of a program for around 1,00,000 developers, information technology (IT) and start-up professionals across the country. Moreover, it unveiled a multilingual user awareness campaign, supported by Minsitry of Electronics and Information Technology (MEITY) and Digital India Corporation, to encourage internet users adopt practices for safer digital transactions, and the first-ever digital safety-focused grants of two million dollars (approximately Rs 16 crore) from Google.org in India to non-profit organisations including Collective Good Foundation, Point Of View, and HelpAge India, to enable groups such as women, micro entrepreneurs, seniors, and LGBTQIA+ community leverage the opportunity of Internet.

According to Sanjay Gupta, vice-president and country head, Google India, as India aims towards becoming a digitally-enabled economy, it is critical that the opportunity of connectivity does not come at the price of online safety. We aim to strengthen our efforts towards immediate imperatives with the support of government, while partnering with the user, the industry, and the social sector. I look forward to launching an outreach for Indias developer ecosystem, and building their capacity in placing cybersecurity at the core of their contribution to the digital economy, he added.

As part of the program, Google revealed that it will be launching a child safety technology toolkit in three Indian languages such as Bengali, Hindi and Tamil, for inviting collaboration with Indian NGOs and organisations. Moreover, it will be giving digital safety training to Central Board of Secondary Education (CBSE) board teachers across the country.

Our aim is to protect our users online safety through an approach, which is also responsive to Indias digital momentum. The focus is on strengthening our defenses against these, through safety enhancements in our products, adapting our policies to prevent misuse of our platforms, and identifying and weeding out threats at the root cause. As we go forward, we antcipate to double-down on these efforts, joining forces with industry bodies, regulators, civil society organizations, and law enforcement agencies to share our technology, insights, and experience, Saikat Mitra, senior director and head of trust and safety, Google APAC, said.

Also Read: Holdings shifted to exchanges by ETH wales prior to Merge

What to Do When Ransomware Meets the Internet of Medical Things – Security Boulevard

Written by admin on August 26, 2022 — Leave a Comment

Vedere Labs recently developed a proof-of-concept (PoC) ransomware for IoT (R4IoT) using as an example attack scenario a hospital network containing IoT devices such as IP cameras, IT workstations and OT in the form of building automation controllers. The goal of R4IoT was to:

This type of attack exploits an increased IoT attack surface and adds a new layer of extortion to common ransomware threats by targeting IoT and OT. We developed the concept based on threat intelligence we collected about the direction that ransomware actors could soon be moving to and the intent of helping organizations prepare for it. In the technical report accompanying the PoC, we describe in detail readily available detection and response actions for an R4IoT attack that serve as a playbook for organizations looking to defend against both current and future threats.

While novel, the R4IoT threat applies to almost every industry and organization nowadays. However, we chose a hospital for our attack scenario because of the diversity of IT, OT, IoT and Internet of Medical Things (IoMT) devices that healthcare delivery organization (HDO) bioengineers and SOC teams must manage. In this blog post, we explore why healthcare organizations would be a perfect target for an R4IoT-like attack, what that attack might look like and, most importantly, what you can do to avoid becoming a victim.

Healthcare was either the most or second-most affected vertical in Vedere Labs recent vulnerability research. That is true whether we look at vulnerabilities we found and disclosed on TCP/IP stacks (Project Memoria), IoT remote management platforms (Access:7) or OT equipment (OT:ICEFALL).

As mentioned above, that distinction is mainly due to the diversity of devices in HDOs. These complex institutions host a broad range of devices that are increasingly interconnected, frequently run legacy software and are often poorly segmented. IT devices process and exchange sensitive data, such as patient health records and financial information. OT and IoT devices are used for diverse functions such as building automation and patient entertainment. Unique to healthcare is the Internet of Medical Things (IoMT) connected medical devices essential to clinical care that can generate and exchange patient data with other devices.

These new connected technologies improve efficiency and quality of care. They also introduce new security risks. Especially since the COVID-19 pandemic, there has been an increase in the number and sophistication of cyberattacks on hospitals. So far, these attacks have been mainly ransomware targeting IT systems. But the increased connectivity and associated vulnerabilities are not restricted to IT devices.

Ransomware attacks on HDOs increased 94% from 2021 to 2022, with 41% of these attacks targeting U.S. institutions. More important than the increase of attacks is their growing sophistication. Three points stand out from recent activity:

Although these characteristics are similar to trends we have observed in other industries and organizations, they point to a changing ransomware landscape where attackers are constantly looking for new ways to gain access to and impact their targets.

The original R4IoT attack, shown in Figure 1, leverages internet-exposed IoT devices (such as IP cameras) for initial access and their connection to corporate assets (such as network video recording and other workstations) for lateral movement. Once the attacker reaches a machine that can communicate with a building automation controller, that device is taken offline by exploiting DoS vulnerabilities.

Figure 1 The original R4IoT scenario

Building automation devices are used in hospitals to control functions such as physical access control, fire alarm systems, lighting and HVAC (heating, ventilation and air conditioning). These functions are not directly connected to patients, but they are critical to delivering patient care.

HVAC systems, for instance, maintain temperature, humidity and air quality throughout a hospital per regulations. Changing some of these parameters can have disastrous consequences: reduced ventilation can increase the spread of airborne diseases such as influenza and COVID-19, and drastic changes in temperature can render operating rooms unusable or spoil biological samples.

So clearly, by taking building automation systems offline, the original R4IoT attack could impact HDOs well beyond data encryption. However, that original scenario stopped short of what singles out healthcare as a target: the clinical network hosting connected medical devices or IoMT, which all too often lacks appropriate segmentation and hosts vulnerable devices. Examples include:

Figure 2 shows a scenario like the original R4IoT, but instead of leveraging a workstation to attack building automation devices, the attacker leverages a doctors workstation to take offline connected medical devices on the clinical network. This obviously has an even greater effect on patient care, since some of these devices are critical to monitor a patients condition, sustain life support, or in some cases enable surgeries and other urgent procedures.

Figure 2 An R4IoT scenario targeting infusion pumps, imaging devices and patient monitors

Several variations of R4IoT attacks are possible in HDOs. Another example would be the attacker gaining access via vulnerable internet-connected patient telemetry devices, moving laterally to an unpatched nurses workstation connected to that telemetry device, then moving to a server hosting patient records, where communication with command-and-control servers is established, and finally attacking either the building automation system or other connected medical devices as in previous scenarios.

There are multiple ways to mitigate the impact of ransomware for IoT and minimize the risk of this threat. Here are three mitigation steps based on the NIST Cybersecurity Framework that could be applied to ransomware attacks:

Implementing the right mitigation requires extensive visibility and enhanced control of all assets in a network. Forescout Continuum Platform helps to achieve that via:

Figure 3 shows several possible mitigation actions enabled by Forescout against R4IoT, such as visibility of vulnerable assets, detection and stopping of malicious communications.Figure 3 Possible mitigations against R4IoT

As a concrete example, Figure 4 shows eyeInspect raising an alert for an RDP brute forcing attack from the IP camera to the NVR workstation, which is the first malicious action the attacker takes after gaining a foothold, to be able to move laterally to the corporate network. Figure 5 then shows an eyeSight policy to block the IP camera on the network switch once the malicious RDP brute forcing is detected. This effectively severs the attackers connection to the network, thus preventing the rest of the attack from ever taking place.

Figure 4 An eyeInspect alert for the RDP bruteforcing attack from the IP camera to the NVR workstation

Figure 5 An eyeSight policy to block the IP camera on the network switch once the malicious RDP brute forcing is detected

Sophisticated ransomware attacks can take healthcare organizations out of action for weeks or even months, as we saw beginning in 2020 with a series of high-profile Ryuk attacks on hospitals. Take this deep dive into defenses based on Ryuk that you can implement now.

The post What to Do When Ransomware Meets the Internet of Medical Things appeared first on Forescout.

*** This is a Security Bloggers Network syndicated blog from Forescout authored by Vedere Labs. Read the original post at: https://www.forescout.com/blog/what-to-do-when-ransomware-meets-the-internet-of-medical-things/

Visit link:
What to Do When Ransomware Meets the Internet of Medical Things - Security Boulevard

Endpoint Protection / Anti-Virus Products Tested for Malware Protection – PR Newswire

Written by admin on August 26, 2022 — Leave a Comment

Six out of the eight products achieved an 'A' rating or higher for blocking malware attacks. Reports are provided to the community for free.

AUSTIN, Texas, Aug. 25, 2022 /PRNewswire/ -- CyberRatings.org, the non-profit entity dedicated to providing transparency on cybersecurity product efficacy, has published results of its Q2 2022 Endpoint Protection Comparative Test.

Focused on endpoint products that feature anti-virus protection, the products tested were Avast Free Antivirus, AVG AntiVirus Free, ESET Internet Security, McAfee Total Protection, Norton 360, Microsoft Defender, Sophos Home Premium and Trend Micro Maximum Security.

Endpoint Protection / AV products were tested for how much and how quickly they block a malware attack.

"The bad guys are getting bolder and malware / ransomware campaigns continue to get more sophisticated," said Vikram Phatak, CEO of CyberRatings.org. "Most infections occur in the first few hours after a new campaign is launched. The time it takes for a security product to block the attack matters a lot," adds Phatak. "That is why we tested not only how much malware a product blocks, but how quickly it blocks an attack."

Over 40,000 live tests were performed on each product, providing a 0.49% margin of error. Trend Micro Maximum Security offered the most protection, blocking 97.97% of malware. Sophos Home Premium provided the second-highest protection, blocking 97.47%, followed by Microsoft Defender at 97.13%. Sophos was the quickest to add protection for previously unblocked malware, closely followed by Trend Micro.

With more businesses embracing remote work, a user's protection is likely limited to the web browser and their endpoint protection product. Therefore, it's important to be informed about which products are performing as advertised.

The Comparative Test Reports provide metrics for products blocking malware over time, average time a product added protection and average time it took a product to add protection.

The test was funded by CyberRatings.org and no vendor paid to be in or out of the test. As a service to the community, CyberRatings.org is providing these reports for free.

The following endpoint protection/anti-virus products were tested:

Additional Resources

About CyberRatings.org

CyberRatings.org is a non-profit 501(c)6 entity dedicated to quantifying cyber risk and providing transparency on cybersecurity product efficacy through testing and ratings programs. To become a member,visitwww.cyberratings.org

SOURCE CyberRatings.org

Making a Secure Internet of Things a Reality: 5 Steps to Get Started – Security Boulevard

Written by admin on August 26, 2022 — Leave a Comment

Contact Sales[emailprotected]+1-216-931-0465

The Internet of Things (IoT) holds enormous promise.

First, theres the promise to have an even greater impact than the launch of the internet, providing universal connectivity and ongoing innovation from real-time data. Were already seeing this in action.

Second, is the promise of even greater security than traditional IT environments, where humans and manual processes are typically the weakest link. We still have progress to make on this front.

Weve now learned that breaches within machine-controlled networks are exponentially more disruptive, opening the door for device misuse, data compromise, and a host of other destructive actions.

But the promise of greater security is still viable. It requires us to learn from past experiences and build a solid foundation across the IoT ecosystem that prioritizes security from the very beginning. Heres a look at whats at stake.

The stakes for getting IoT security right have never been higher. The introduction of the Industrial IoT (IIoT) brings incredible potential to sectors like automotive, healthcare, energy, and aerospace, but the cost of a breach in these domains is irrevocably high.

Consider the case of healthcare: A typical healthcare delivery organization has 20,000 connected medical devices. Any systems that store personal information and medical records are high targets for identity thieves. Even more alarmingly, the wrong party gaining control over medical equipment could have fatal consequences. In 2017, the FDA recalled 465,000 pacemakers after discovering security flaws that could allow hackers to drain device batteries or send malicious instructions to modify a patients heartbeat.

Meanwhile, connected vehicles are another increasingly popular IIoT use case that carries equally significant risks. Since 2015, weve seen numerous attacks in which third parties accessed a vehicle remotely and took action like turning off the transmission while driving or adjusting the speed of the car. Attacks like these could seriously harm not only those in the vehicle, but those around them as well.

Too often, IoT devices use static passwords or shared keys, which create serious risk because a compromise to one device can affect all devices. Instead, each device needs its own unique digital certificate.

Using unique credentials on each device not only minimizes the impact should one device become compromised, but it also allows for more secure ongoing communications. It enables organizations to validate each device on its own, send secure messages and updates to a single device, and authenticate any data that comes in from a particular device.

The Internet of Things (IoT) holds enormous promise.

Second, is the promise of even greater security than traditional IT environments, where humans and manual processes are typically the weakest link. We still have progress to make on this front.

Weve now learned that breaches within machine-controlled networks are exponentially more disruptive, opening the door for device misuse, data compromise, and a host of other destructive actions.

The Internet of Things (IoT) holds enormous promise.

Second, is the promise of even greater security than traditional IT environments, where humans and manual processes are typically the weakest link. We still have progress to make on this front.

Weve now learned that breaches within machine-controlled networks are exponentially more disruptive, opening the door for device misuse, data compromise, and a host of other destructive actions.

The Internet of Things (IoT) holds enormous promise.

Second, is the promise of even greater security than traditional IT environments, where humans and manual processes are typically the weakest link. We still have progress to make on this front.

Weve now learned that breaches within machine-controlled networks are exponentially more disruptive, opening the door for device misuse, data compromise, and a host of other destructive actions.

Get actionable insights from 1,200+ IT and security professionals on the next frontier for IAM strategy machine identities.

Read the Report

Get actionable insights from 1,200+ IT and security professionals on the next frontier for IAM strategy machine identities.

Read the Report

Read the original here:
Making a Secure Internet of Things a Reality: 5 Steps to Get Started - Security Boulevard

Cloud Hosting

Category Archives: Internet Security

Everything You Need to Know About SD-WAN – Spiceworks News and Insights

How the Pandemic Forced F5 to Flex its Software Side – Entrepreneur

Avoiding the Perils of a Connected World: New Best Practices for Risk Mitigation – McMillan LLP

WISeKey is Implementing PostQuantum Algorithms in its Root of Trust Services and Semiconductors for IoT Security – StreetInsider.com

With Billions Stolen from DeFi Platforms in 2022, FBI Asks Users to Tread Cautiously – Spiceworks News and Insights

PERU AND THE UNITED STATES ADVANCE CRITICAL INTERNET SECURITY AND CONNECTIVITY GOAL – US Embassy in Peru – USEmbassy.gov

Google grows the ambit of Internet security; includes everyone from children to the LGBTQIA+ community – The Financial Express

What to Do When Ransomware Meets the Internet of Medical Things – Security Boulevard

Endpoint Protection / Anti-Virus Products Tested for Malware Protection – PR Newswire

Making a Secure Internet of Things a Reality: 5 Steps to Get Started – Security Boulevard

Recent Posts

Categories

Archives

Media Sites

Pages

Site admin