PLATFORM SECURITY

Anxinsec proposed a protection solution for advanced threats to defend against 0-day exploits and fileless attacks

Anxinsec | August 30, 2021

In the Beijing Cyber Security Conference 2021 from August 26th to 28th, Anxinsec was invited to attend along with more than 200 top domestic and international cyber security experts. During the conference, Anxinsec, a pioneer and leader in memory protection, presented a novel solution to prevent advanced threats.

Recently, the world witnessed the rise of massive ransomware attacks, such as the SolarWinds attack or the Kaseya supply chain attack. These kinds of advanced threats are usually deliberate attempts by professional hacking organizations performing long-term infiltration strikes with the ultimate goal of destroying or stealing data in order to achieve a political or economic result. The rise of massive attacks have raised the alarm for the global cyber security defense system and proved that the current endpoint security isn't enough against today's advanced threats.

Today's advanced threat happened in memory and kernel space are increasingly common. In May 2020, Google engineers counted 912 security flaws with high and critical levels in Chrome since 2015 and found that 70% were memory-level vulnerabilities. Microsoft security engineer said at the 2019 Israel Cyber Security Conference, 70% of the vulnerabilities fixed in Microsoft's products in the past 12 years are memory security flaws.

With the growing trend of threat actors moving lower in the stack into hardware and firmware, 0-day vulnerability exploits and files attacks account for a large proportion of the prevailing attack methods today. These attacks are extremely destructive and less visible with the current EDR techniques. Chinese cyber security start-up Anxinsec provides a novel solution to this rising threat. Through implementing hardware virtualization technology, it lowers the line of defence from the application level to system and hardware level. The Anxinsec memory protection solution based on CPU instruction and memory set can effectively prevent the risk of data breaches and tampering at the memory level.

Meanwhile, Anxinsec has a strong expert service team, can provide industry-leading security consulting, penetration testing, security maintenance, security operations and emergency response services. One of the main services the company provides in UAE is security expert service. Other services include enterprise mobility management (EMM), which includes mobile device management, mobile application lifecycle management, building enterprise mobile security framework, and unified endpoint management.

Spotlight

Best-of-breed security solutions have long been the most-effective choices for securing enterprise and telco networks. However, that approach has resulted in the deployment of a disparate set of products for firewall, intrusion detection, antivirus, vulnerability analysis and other network-centric security functions. That has led to gaps in protection and a high cost of ownership because of the need for multiple management consoles and a lack of integration. According to Gartner, the rise of network security platforms will enable best-ofbreed security solutions to blur the lines between firewalls, network-based intrusion detection and vulnerability scanning, as well as other network-centric security technologies.

Spotlight

Best-of-breed security solutions have long been the most-effective choices for securing enterprise and telco networks. However, that approach has resulted in the deployment of a disparate set of products for firewall, intrusion detection, antivirus, vulnerability analysis and other network-centric security functions. That has led to gaps in protection and a high cost of ownership because of the need for multiple management consoles and a lack of integration. According to Gartner, the rise of network security platforms will enable best-ofbreed security solutions to blur the lines between firewalls, network-based intrusion detection and vulnerability scanning, as well as other network-centric security technologies.

Related News

DATA SECURITY

GM Sectec and SecurityScorecard Bolster Design Partnership

SecurityScorecard | March 17, 2022

SecurityScorecard, the leader in security ratings, and GM Sectec, a leader in cyber protection laser-focused on the payments industry, today announced a design partnership to expedite the global growth and acceptance of security ratings in more than 55 countries across the globe. GM Sectec's network of over 50,000 clients and end users across the world now has quick insight into the security posture of suppliers and business partners, as well as the capacity to conduct self-assessments, thanks to the relationship with SecurityScorecard. COVID-19 has contributed in greater usage of digital tools and data generation, with the World Bank estimating that by the end of the year, yearly total Internet traffic will have climbed by 50% from 2020, reaching 4.8 zettabytes. The article emphasizes how businesses are more interconnected, as well as how rising digitalization has pushed the global population onto a new path of cyber dangers and assaults. In comparison to other insurable risks, the rapid increase in ransomware highlights the speed and scope of cyber risk. Ransomware attacks have climbed by 150% in the last year, with total ransoms paid up by 311% 2. Insurance providers had a record high loss ratio of 67% 3 as a result of the huge increase in frequency and severity. "Enhancing our existing alliance with SecurityScorecard, supports organizations anywhere in the world in hardening their security posture and achieving the adoption of secure technologies and practices. Organizations need to understand their true cyber risk and be able to respond quickly and efficiently to strengthen their position." Héctor Guillermo Martínez, president of GM Sectec SecurityScorecard is the industry's top platform for security evaluations, with thousands of firms using it throughout the world. Vendor risk management, self-monitoring, board reporting, cybersecurity insurance underwriting, and M&A due diligence have all seen increased use cases as the firm has grown. Aleksandr Yampolskiy, CEO and co-founder of SecurityScorecard said that "Organizations look to SecurityScorecard to transform the way they understand, mitigate, and communicate cybersecurity risk. Partnering with GM Sectec delivers value to organizations around the world by providing clearer visibility to their cyber postures and dramatically improving their ability to communicate, mitigate and respond to risks." GM Sectec has over 50,000 clients and users throughout the globe, as well as four Critical Incident Response and Replication Centers (CIRRCs), three in the US and one in Mexico, that provide managed detection and security services to its customers 24 hours a day, seven days a week, 365 days a year. SOC 2 Type 2 Service Organization, TMA Certified, authorized to use CERT, PCI Qualified Security Assessor, PCI Approved Scanning Vendor, PCI Point-to-Point-Encryption (P2PE), PCI PIN, PCI PFI, UL Listed, Visa Preferred Partner in Cybersecurity, and FIRST Incident Response team member are just a few of the certifications the company has received.

Read More

SOFTWARE SECURITY

On QingCloud Marketplace, Aurora Mobile Launched JG Verification Service

Aurora Mobile | February 21, 2022

Aurora Mobile Limited, a prominent mobile developer service provider in China, said that it had formed a relationship with QingCloud Technologies Corp. ("QingCloud"). As a result, the Company will make its verification service ("JVerification") available on the QingCloud Marketplace, a one-stop trading platform for cloud-based apps and services. JVerification will provide encrypted user registration and login, 2-step security verification, and other multi-factor authentication and identity verification services and will be securely integrated into QingCloud's hybrid ecosystem. "third-party registration and login," "Verification code registration and login," and "account password registration and login" are now the most popular methods for app registration and login. Unfortunately, these procedures are time-consuming since they require users to continually enter one-time verification codes given to their mobile phones or navigate between different interfaces to log in. At the same time, these verification methods are frequently vulnerable to cybersecurity flaws, hacking, and data leaks. As a result, developers must secure apps for both Android and iOS platforms using various verification techniques, resulting in a poor user experience. JVerification has integrated its gateway certification with China's three major telecom carriers to address this issue, covering up to 99.9% of mobile consumers. JVerification-enabled apps allow users to log in with a single click without inputting their phone numbers, passwords, or verification codes. Instead, users need to complete the registration and login process, which begins with launching the app, selecting registration and login, and then selecting one-click login using their local phone numbers. To enable the one-click registration and login feature in their apps, developers need to incorporate the JVerification SDK. Furthermore, because the one-click registration and login function is based on local phone numbers, the verification procedure is secured and conducted directly through local telecom carriers. This system reduces the hazards of SMS hijacking and data leaks and ensures user and developer information security. JVerification has become the top choice of more and more users in the 5G era as an efficient, convenient, and secure one-click verification service. In addition, it continues to allow apps to improve user conversion and traffic value. JVerification will be formally launched on the QingCloud Marketplace due to this partnership and will benefit from QingCloud's solid reputation, powerful ecosystem resources, and extensive operating systems. QingCloud Marketplace, as part of QingCloud's open ecosystem, has collaborated with ecosystem partners to provide customers with a wide range of high-quality vertical apps and has grown to become one of the most critical enterprise platforms for customers in industries such as finance, energy, transportation, education, medical care, and other Internet services. Aurora Mobile will continue to promote close collaboration with QingCloud in the future, leveraging its technological advantages to extend its product offerings, empowering developers and organizations to undertake high-quality operations, long-term development, and effective monetization. Furthermore, with more proactive partners in China, the company gradually establishes a complete and innovative ecosystem.

Read More

DATA SECURITY

EclecticIQ, CyberSecurity Malaysia, and Syntx Signed MOU to Improve Malaysia's Cybersecurity Posture

EclecticIQ | January 27, 2022

At a virtual ceremony, the government agency providing specialized cybersecurity services, CyberSecurity Malaysia (CSM), a leading global threat intelligence, hunting, and response technology provider, EclecticIQ, and a Malaysian cybersecurity company, Syntx, signed a Memorandum of Understanding (MOU). The three organizations have committed to engaging in various activities targeted at enhancing Malaysia's and Southeast Asia's cybersecurity postures to address escalating threats. Expanding the use of cyber threat intelligence (CTI), a type of cybersecurity that focuses on gathering and evaluating information about current and possible attacks, is one of the main objectives. Chief executive officer for CyberSecurity Malaysia, Dato' Ts. Dr. Haji Amirudin Bin Abdul Wahab FASc, said, "CSM is pleased to work with an international industry player and partner with a local SME that have the same shared core beliefs to empower prudent cybersecurity practices. It is timely to forge this strategic collaboration that will drive higher awareness and adoption of cyber threat intelligence in Malaysia." The three organizations plan to collaborate on a joint research publication on a CTI topic relevant to the region, support the creation of a centralized CTI knowledge base, and provide practical guidance on the use of CTI methods through case studies, including lessons learned from CSM's deployment of the EclecticIQ Threat Intelligence Platform. All actions will align with the Malaysia Cyber Security Strategy 2020-2024 and will support it. "As a global leader in threat intelligence technology, we advocate for a safer world through collaboration. Building strong partnerships in the fight against cyber threats is an important part of that advocacy. This memorandum will further strengthen collaboration and represent an important milestone in our efforts to empower Malaysia and the entire Southeast Asia region with tools and technologies to enhance cyber situational awareness. In addition, we are honored by the confidence placed in EclecticIQ by the Malaysian government and our partner Syntx." CEO and founder of EclecticIQ, Joep Gommers Chief executive officer for Syntx Sdn Bhd, Fadzril Azhar, stated"Syntx is honored to be a part of this collaboration, which manifests the trust placed in us by both parties and provides significant encouragement for us to work harder. We are committed to grow more local capabilities and capacities in cybersecurity, especially around cyber threat intelligence."

Read More