Connect with us
European Gaming Congress 2024

Artificial Intelligence

IBM Report: Identity Comes Under Attack, Straining Enterprises’ Recovery Time from Breaches

Published

on

ibm-report:-identity-comes-under-attack,-straining-enterprises’-recovery-time-from-breaches

-71% spike in cyberattacks caused by exploiting identity – 50% AI market share milestone to trigger a cyber problem – Nearly 70% of attacks globally targeted critical infrastructure in 2023 – Europe feels brunt of cyberattacks, making up 32% of global incidents
CAMBRIDGE, Mass., Feb. 21, 2024 /PRNewswire/ — IBM (NYSE: IBM) today released the 2024 X-Force Threat Intelligence Index highlighting an emerging global identity crisis as cybercriminals double down on exploiting user identities to compromise enterprises worldwide. According to IBM X-Force, IBM Consulting’s offensive and defensive security services arm, in 2023, cybercriminals saw more opportunities to “log in” versus hack into corporate networks through valid accounts – making this tactic a preferred weapon of choice for threat actors.

The X-Force Threat Intelligence Index is based on insights and observations from monitoring over 150 billion security events per day in more than 130 countries. In addition, data is gathered and analyzed from multiple sources within IBM, including IBM X-Force Threat Intelligence, Incident Response, X-Force Red, IBM Managed Security Services, and data provided from Red Hat Insights and Intezer , which contributed to the 2024 report.
Some of the key highlights include:
Attacks on critical infrastructure reveal industry “faux pas.” In nearly 85% of attacks on critical sectors, compromise could have been mitigated with patching, multi-factor authentication, or least-privilege principals – indicating that what the security industry historically described as “basic security” may be harder to achieve than portrayed.Ransomware groups pivot to leaner business model. Ransomware attacks on enterprises saw a nearly 12% drop last year, as larger organizations opt against paying and decrypting, in favor of rebuilding their infrastructure. With this growing pushback likely to impact adversaries’ revenue expectations from encryption-based extortion, groups that previously specialized in ransomware were observed pivoting to infostealers.ROI from attacks on generative AI not there – yet. X-Force analysis projects that when a single generative AI technology approaches 50% market share or when the market consolidates to three or less technologies, it could trigger at-scale attacks against these platforms.”While ‘security fundamentals’ doesn’t get as many head turns as ‘AI-engineered attacks,’ it remains that enterprises’ biggest security problem boils down to the basic and known – not the novel and unknown” said Charles Henderson, Global Managing Partner, IBM Consulting, and Head of IBM X-Force. “Identity is being used against enterprises time and time again, a problem that will worsen as adversaries invest in AI to optimize the tactic.”
A Global Identity Crisis Poised to Worsen
Exploiting valid accounts has become the path of least resistance for cybercriminals, with billions of compromised credentials accessible on the Dark Web today. In 2023, X-Force saw attackers increasingly invest in operations to obtain users’ identities – with a 266% uptick in infostealing malware, designed to steal personal identifiable information like emails, social media and messaging app credentials, banking details, crypto wallet data and more.
This “easy entry” for attackers is one that’s harder to detect, eliciting a costly response from enterprises. According to X-Force, major incidents caused by attackers using valid accounts were associated to nearly 200% more complex response measures by security teams than the average incident – with defenders needing to distinguish between legitimate and malicious user activity on the network. In fact, IBM’s 2023 Cost of a Data Breach Report found that breaches caused by stolen or compromised credentials required roughly 11 months to detect and recover from – the longest response lifecycle than any other infection vector.
This wide reach into users’ online activity was evident in the FBI and European law enforcement’s April 2023 takedown of a global cybercrime forum that collected the login details of more than 80 million user accounts. Identity-based threats will likely continue to grow as adversaries leverage generative AI to optimize their attacks. Already in 2023, X-Force observed over 800,000 posts on AI and GPT across Dark Web forums, reaffirming these innovations have caught cybercriminals attention and interest.
Adversaries “Log into” Critical Infrastructure Networks
Worldwide, nearly 70% of attacks that X-Force responded to were against critical infrastructure organizations, an alarming finding highlighting that cybercriminals are wagering on these high value targets’ need for uptime to advance their objectives.
Nearly 85% of attacks that X-Force responded to on this sector were caused by exploiting public-facing applications, phishing emails, and the use of valid accounts.  The latter poses an increased risk to the sector, with DHS CISA stating that the majority of successful attacks on government agencies, critical infrastructure organizations and state-level government bodies in 2022 involved the use of valid accounts. This highlights the need for these organizations to frequently stress test their environments for potential exposures and develop incident response plans.
Generative AI – The Next Big Frontier to Secure
For cybercriminals to see ROI from their campaigns, the technologies they target must be ubiquitous across most organizations worldwide. Just as past technological enablers fostered cybercriminal activities – as observed with ransomware and Windows Server’s market dominance, BEC scams and Microsoft 365 dominance or cryptojacking and the Infrastructure-as-a-Service market consolidation – this pattern will most likely extend across AI.
X-Force assesses that once generative AI market dominance is established – where a single technology approaches 50% market share or when the market consolidates to three or less technologies – it could trigger the maturity of AI as an attack surface, mobilizing further investment in new tools from cybercriminals. Although generative AI is currently in its pre-mass market stage, it’s paramount that enterprises secure their AI models before cybercriminals scale their activity. Enterprises should also recognize that their existing underlying infrastructure is a gateway to their AI models that doesn’t require novel tactics from attackers to target – highlighting the need for a holistic approach to security in the age of generative AI, as outlined in the IBM Framework for Securing Generative AI.
Additional findings:
Europe – adversaries’ preferred target — Nearly one in three attacks observed worldwide targeted Europe, with the region also experiencing the most ransomware attacks globally (26%).Where did all the phish go? Despite remaining a top infection vector, phishing attacks saw a 44% decrease in volume from 2022. But with AI poised to optimize this attack and X-Force research indicating that AI can speed up attacks by nearly two days, the infection vector will remain a preferred choice for cybercriminals.Everyone is vulnerable – Red Hat Insights found that 92% of customers have at least one CVE with known exploits unaddressed in their environment at the time of scanning, while 80% of the top ten vulnerabilities detected across systems in 2023 were given a ‘High’ or ‘Critical’ CVSS base severity score.”Kerberoasting” pays off – X-Force observed a 100% increase in “kerberoasting” attacks, wherein attackers attempt to impersonate users to escalate privileges by abusing Microsoft Active Directory tickets.Security misconfigurations – X-Force Red penetration testing engagements indicate that security misconfigurations accounted for 30% of total exposures identified, observing more than 140 ways that attackers can exploit misconfigurations.Additional Resources
Download a copy of the 2024 X-Force Threat Intelligence Index.Read more about the report’s top findings in this IBM Security Intelligence blog.Sign up for the 2024 IBM X-Force Threat Intelligence webinar on Thursday, March 7th at 11:00 am ET.Connect with the IBM X-Force team for a personalized review of the findings.Media Contact Georgia Prassinos IBM [email protected]
Photo – https://mma.prnewswire.com/media/2343602/IBM_x_force_Threat_Intelligence_Index_2024.jpgLogo – https://mma.prnewswire.com/media/95470/ibm_logo.jpg

View original content:https://www.prnewswire.co.uk/news-releases/ibm-report-identity-comes-under-attack-straining-enterprises-recovery-time-from-breaches-302066473.html

Continue Reading
Advertisement

Artificial Intelligence

CYRISMA, a leading Risk Management Platform for MSPs, secures $7 million Growth Equity Financing led by Blueprint Equity

Published

on

cyrisma,-a-leading-risk-management-platform-for-msps,-secures-$7-million-growth-equity-financing-led-by-blueprint-equity

ROCHESTER, N.Y., Oct. 9, 2024 /PRNewswire/ — CYRISMA, an all-in-one risk management platform, announced its Series A financing today. Led by Blueprint Equity, with participation from SaaS Venture and Golden Ventures, the funding will accelerate CYRISMA’s platform development, fuel customer success, and expand sales and marketing initiatives.

CYRISMA accelerates security programs for MSPs by providing a cost-effective, all-in-one solution to identify, prioritize, and remediate vulnerabilities, track compliance requirements, and manage AI security risk.
“In partnering with Blueprint Equity, we are excited to leverage their expertise and resources to further enhance our platform and support our customers,” said Liam Downward, co-founder and CPO of CYRISMA. “This investment will allow us to continue delivering an affordable and comprehensive risk management solution, empowering MSPs to protect their clients effectively. Additionally, it enables us to enter into new markets, expanding our reach and increasing brand awareness.”
Blueprint Equity’s Sheldon Lewis, who will join CYRISMA’s Board of Directors, commented, “With the rise of security threats for SMBs, there’s been an increasing number of businesses outsourcing their cybersecurity to MSPs. This has accelerated demand in the market for strong, multi-tenant cybersecurity solutions for MSPs to best serve their clients.” He added, “We were drawn to the breadth of the CYRISMA platform and their strong customer satisfaction. Oliver Downward, CEO, Liam, and the team have an unparalleled insight into the MSP market, and we’re honored to partner with CYRISMA during their next phase of growth.”
About CYRISMA
CYRISMA is an all-in-one risk management platform for Managed Service Providers. With the rise in security threats and demand for cybersecurity services, CYRISMA provides MSPs with an effective, all-in-one solution to manage their cybersecurity initiatives for clients in a multi-tenant platform. To schedule a demo of CYRISMA, please visit https://www.cyrisma.com/.
About Blueprint Equity
Blueprint Equity provides expansion capital to high-growth, capital-efficient enterprise software and technology-enabled services businesses worldwide. Blueprint has $275 million of assets under management and is based in La Jolla, CA. For more information, please visit www.onblueprint.com.
Media Contact:Oliver [email protected]

View original content:https://www.prnewswire.co.uk/news-releases/cyrisma-a-leading-risk-management-platform-for-msps-secures-7-million-growth-equity-financing-led-by-blueprint-equity-302271854.html

Continue Reading

Artificial Intelligence

Centivax Selects Global CDMO BioCina to Initiate cGMP Manufacturing of Revolutionary Universal Influenza Vaccine

Published

on

centivax-selects-global-cdmo-biocina-to-initiate-cgmp-manufacturing-of-revolutionary-universal-influenza-vaccine

ADELAIDE, South Australia, Oct. 9, 2024 /PRNewswire/ — BioCina Pty Ltd., a global end-to-end biologics Contract Development and Manufacturing Organization (CDMO), announced a new partnership with Centivax, Inc., for a project involving cell line development, cell banking and plasmid DNA manufacture. Centivax is developing Cent-Flu, a universal influenza vaccine, consisting of a proprietary multivalent mixture of 22 unique mRNA transcripts delivered as a lipid nanoparticle (LNP) encapsulated mRNA vaccine. In vivo, the vaccine has been demonstrated to convey protection against current, past, and future influenza strains. BioCina will provide proven expertise in the selection of optimal plasmid manufacturing cell lines, Master Cell Bank (MCB) and plasmid manufacturing, to support Centivax’s progression to First-in-Human clinical trials.

 BioCina’s Chief Executive Officer, Mark W. Womack stated, “We’re privileged to support Centivax’s breakthrough approach to sustained flu prevention and we couldn’t be more excited to be their partner of choice to initiate cGMP manufacturing, thus advancing the journey to bring such an important vaccine to market. This is a tremendous opportunity for the BioCina Team to leverage our world-class capabilities in cell line development, cell banking, and cGMP plasmid production.”
Centivax’s Chief Executive Officer, Jacob Glanville, said, “We are thrilled to announce BioCina as our Master Cell Bank manufacturing partner for the first phase of manufacturing our universal influenza vaccine. BioCina’s exemplary expertise and track record in mRNA/LNP MCB, combined with their state-of-the-art facilities, aligns perfectly with Centivax’s commitment to innovation and quality. This partnership enables us to leverage BioCina’s expertise to ensure the highest standards of vaccine production. Together, we’re taking a significant step forward in bringing our universal influenza vaccine to market, with the goal of providing broad, lasting protection against the disease on a global scale.”
About BioCinaBioCina is a global end-to-end biologics Contract Development and Manufacturing Organisation (CDMO), offering highest-quality, cost-effective cell line, process, analytical and formulation development, and cGMP clinical & commercial manufacturing for the microbial, pDNA and mRNA modalities. BioCina’s first facility in Adelaide, South Australia has a rich history of developing and manufacturing both clinical and commercial drug substance, backed by most critical SME’s having an average tenure of 15+ years at the site. BioCina boasts an elite quality record having successfully passed regulatory inspections by the US FDA, EMA, TGA and Health Canada. Through a partnership with NovaCina, BioCina offers clients a highest-quality fill-and-finish solution. BioCina is proud to have clients globally, including the U.S., Europe, and the Asia Pacific. Australia offers one of the most attractive tax incentives globally (up to 48.5% cash refund), and one of the world’s premier trial networks, making it an ideal destination for biologics companies looking to invest in scaling-up and manufacturing products. Visit https://biocina.com.
About CentivaxCentivax is a universal vaccine platform technology company founded and led by experts in vaccinology, vaccine regulatory affairs, immunology, and computational bioengineering. The universal vaccine platform intellectual property has demonstrated unprecedented breadth of protection against influenza and coronaviruses. The platform delivers ultra-broad neutralizing titers, HAI titers and in-vivo protection in ferrets, pigs, rats, mice and human immune organoids. Development of the Centivax platform has been financially supported by the Global Health Investment Corporation (GHIC) BARDA venture arm, NFX, BLUE KNIGHT™ J&J/BARDA program, the Bill and Melinda Gates Foundation, the National Institute of Health (NIH), the Naval Medical Research Center, the Walter Reed Army Institute of Research, the Medical Technology Enterprise Consortium, the Department of Defense, and the National Institute for Innovation in Manufacturing Biopharmaceuticals. Centivax is on a mission to accelerate the world’s transition to a post-pathogen humanity.
Media [email protected] 
Photo – https://mma.prnewswire.com/media/2526553/BioCina_Centivax_partnership_image.jpg

View original content:https://www.prnewswire.co.uk/news-releases/centivax-selects-global-cdmo-biocina-to-initiate-cgmp-manufacturing-of-revolutionary-universal-influenza-vaccine-302271200.html

Continue Reading

Artificial Intelligence

Hyperview Revolutionizes Data Center Management with Advanced DCIM Suite

Published

on

hyperview-revolutionizes-data-center-management-with-advanced-dcim-suite

New Carbon Footprint Reporting Delivers Unmatched Insights, Optimizing Sustainability and Performance
VANCOUVER, British Columbia, Oct. 9, 2024 /PRNewswire/ — Hyperview, the leading cloud-based data center infrastructure management (DCIM) platform, today unveiled a suite of groundbreaking features set to transform data center management through detailed measurement and comprehensive sustainability tools.

At the heart of this is Hyperview’s new carbon footprint reporting system, providing granular insights that surpass traditional location-based methods. The initial offering provides location and rack-level carbon footprint reporting, with future releases set to include carbon footprint reporting down to the asset level. This phased approach enables a level of detailed analysis previously unseen in the industry, allowing for more informed, impactful operational decisions. By offering a holistic view of a data center’s environmental impact, from equipment performance to overall energy consumption, Hyperview is setting a new standard for sustainability management in the digital infrastructure sector.
“The timing of this release is crucial”, says President and CEO Jad Jebara. “As the data center industry faces mounting pressure to address its environmental impact. Data centers currently consume 1.5% of the global energy supply and emit 59 million metric tonnes of CO2 annually. Without significant intervention, experts project this consumption could skyrocket to 8% by 2030. Hyperview’s solutions enable targeted reduction strategies, addressing inefficiencies in IT equipment management and providing detailed emissions analysis.”
Key Highlights:
Phased Reporting Implementation: Initial offering includes location and rack-level carbon footprint reporting, with asset-level insights coming in future releases.Asset-Level Analysis: Enables impactful decision-making through detailed equipment, material, and power data.Predictive Capabilities: Offers current data and future predictions, surpassing competitors’ reliance on historical information.Cost-Effective Solution: Eliminates need for additional professional services through automated data collection and presentation.Regulatory Compliance: Assists in navigating evolving regulations (SB 253, CSRD, EED) while improving ESG performance.Comprehensive Sustainability Tools:Carbon footprint tracking and managementUnlocking stranded power and cooling capacityMonitoring energy usage efficiency and kilowatt hours at rack-levelSetting rack-level thresholds for power and temperatureMonitoring temperature, Delta-T, and humidity”Hyperview’s precision in digital infrastructure management is akin to diagnosing a specific medical condition rather than broadly identifying an illness,” continues Jebara “While competitors might broadly identify issues, Hyperview pinpoints specific causes, enabling our clients to make targeted improvements, significantly reducing their carbon footprint and operational costs.”
These features allow clients to gain a detailed understanding of their energy consumption and identify areas for improvement, contributing to significant carbon footprint reductions. The platform’s detailed data helps clients understand their current situation and make accurate future predictions.
With this advanced DCIM suite, Hyperview reaffirms its position as a leader in data center management solutions, offering unparalleled tools for sustainability, efficiency, and regulatory compliance. As the industry evolves, Hyperview remains at the forefront, driving innovation and enabling data centers to meet the challenges of tomorrow.
To experience Hyperview’s Carbon Footprint Reporting firsthand, schedule a demonstration at https://www.hyperviewhq.com/carbon-footprint/
About Hyperview
Hyperview is the leading cloud-based data center infrastructure management (DCIM) platform that empowers enterprises to optimize capacity, reduce power and energy consumption, lower costs, and avoid outages. The powerful and easy-to-use platform includes Asset Management, Energy Management, Power and Environmental Monitoring, Capacity Planning, and 3D Visualization. Learn more at www.hyperviewhq.com. 
Image – https://mma.prnewswire.com/media/2526680/Hyperview.jpg

View original content:https://www.prnewswire.co.uk/news-releases/hyperview-revolutionizes-data-center-management-with-advanced-dcim-suite-302271667.html

Continue Reading
Advertisement
Advertisement

Latest News

Trending