It was a relatively quiet week with all eyes were on the US Election and the risk of cyber-attacks on the vote.
In other news, WSO2 launched new versions of its WSO2 API Manager and WSO2 API Platform for Kubernetes (WSO2 APK). They can be downloaded from WSO2 API Manager 4.4 Documentation, WSO2 APK 1.2 Documentation, and WSO2 API Gateway.
Bluevoyant released its latest State of Supply Chain Defence annual report. Organisations continue to struggle with cyber risk in their supply chains despite a shift from passive to active approaches.
The company is seeing more organisations now actively operating Third-Party Risk Management (TPRM) programmes. This has led to a shift from awareness to enforcement and compliance. The goal is to reduce risk and strengthen supply chains.
FBI
Kavon Kerrick Robinson and Christopher Anthony Hilaire, 27, have been sentenced to prison for identity theft and retail fraud. The two men bought stolen credit card data from the dark web using cryptocurrency. They then used that data to purchase goods from several retailers. Those goods were either resold or returned for cash refunds.
U.S. Attorney Michael F. Easley, Jr said, “Retail return frauds, including double-dipping schemes like this one, cost retailers billions of dollars in losses every year.
“These schemes drive prices higher for the rest of us and harm everyday consumers whose credit card information is stolen to facilitate the scheme. We are proud to partner with the NC Retail Merchants Association to raise awareness of these scams and bring them to a stop.”
National Cyber Security Centre
The NCSC has issued guidance to businesses on how to avoid malvertising. It says that of the 1.1 trillion ads delivered in 2023, 2.86 billion were classified as a security threat. Ads on UK websites were more than twice the global average. Those adverts push malware to users’ machines, leaving them open to scammers.
It wants businesses to be more vigilant about the digital advertising they take and to focus on knowing more about the advertiser. That step alone will reduce the number of false ads that are displayed. It also says businesses should employ strong cybersecurity practices and only use data from reputable sources. The guidance can be found here.
Qualys
Qualys announced its financial results for the third quarter ended September 30, 2024. It saw reported revenues of $153.9 million and net income under United States Generally Accepted Accounting Principles (“U.S. GAAP”) of $46.2 million.
“Q3 was another strong quarter of rapid innovation for Qualys, reflecting our ongoing commitment to technology leadership, cybersecurity transformation, and successful outcomes for customers,” said Sumedh Thakar, Qualys’ president and CEO.
ThreatHunter
ThreatHunter.ai has been listed at number 48 on the MSSP Alert, top 250 MSSP list for 2024. It is a significant milestone for the veteran-owned business that has been self-funded over the last 17 years.
James McMurry, CEO of ThreatHunter.ai, remarked, “This is more than just a number – it’s a statement of who we are and what we stand for. Breaking into the top 50 isn’t by chance. It’s the outcome of a team united by a singular focus: staying one step ahead of cyber adversaries.
“At ThreatHunter.ai, we’re not waiting for threats to reveal themselves – we’re tracking them down, neutralizing them before they ever have a chance to strike. This ranking speaks volumes about our commitment to proactive, intelligence-driven security.”