Greetings, from Cloudbric.
Here’s the latest from Cloudbric: for January 1st to January 31st.
1.Technology Developments
*Cryptobric App Update
→ Identity Authentication Enhancement (Travel Rule Compliance) : 20% complete (estimated time of completion: end of 2022 1Q)
- Travel Rule regulation — Technical review in progress
→ v3.0 SWG(Secure Web Gateway) SMS Phishing detection (estimated time of completion: end of 2022 2Q)
- Technical review complete
- Development scope review complete
- Service planning and database upgrade in progress
*Cloudbric Labs Threat DB database upgrade
(cyber threat information data platform based on blockchain technology)
→ Malicious IP (Hacker IP) DB update: 60% complete (estimated time of completion: end of 2022 2Q)
- Technical review complete
- Development scope review complete
- KISA’s C-TAS (Cyber Threat Analysis & Sharing) system integration complete
- Service development in progress
→ Phishing URL database upgrade: 30% complete (estimated time of completion: end of 2022 2Q)
- Technical review complete
- Development scope review complete
- KISA’s C-TAS (Cyber Threat Analysis & Sharing) system integration complete
- Service development in progress
→ Hacker wallet database upgrade: 20% complete (estimated time of completion: end of 2022 2Q)
- Technical review complete
- Development scope review complete
- Service development in progress
*Cloudbric WMS(WAF Managed Service) Update
→ for AWS update: 30% complete (estimated time of completion: 2022 2Q)
- Technical review in progress
- Frontend UI planning in progress
→ for Azure Service launch: 60% complete (estimated time of completion: 2022 1Q)
- Technical review in progress
- Detection ruleset (policy) development complete
- Detection ruleset security performance check in progress
*Cloudbric CDN Service launch
→ CDN Setting and dashboard development: 80% complete (estimated time of completion: 2022 1Q)
- Technical review completed
- Frontend UI planning completed
- Service development completed
- Integration testing in progress
*SDP(Software Defined Perimeter) Agent Development
(ZTNA-based Next-Gen Security Solution)
→ SDP Agent Development : 5% complete (estimated time of completion: 2022 4Q)
- SDP Agent Technical review in progress
2. Security News
- KP Snacks hit with ransomware attack — ZDNet
British food producer KP Snacks was hit with a ransomware attack on Friday, January 28. The Conti ransomware group added KP Snacks to its victim leak site, threatening to leak information stolen from them. Because of the attack, deliveries from the company to leading superstores are reportedly being delayed or canceled altogether. Supply shortage issues can last until the end of March. - Thousands of Malicious npm Packages Threaten Web Apps — Threatpost
More than 1,300 malicious packages have been identified in the most oft-downloaded JavaScript package repository used by developers, npm, in the last six months — a rapid increase that showcases how npm has become a launchpad for a range of nefarious activities. - Business services provider Morley discloses ransomware incident — Bleeping Computer
Morley Companies Inc. disclosed a data breach after suffering a ransomware attack on August 1st, 2021, allowing threat actors to steal data before encrypting files. The company determined that the threat actors stole the personal information of 521,046 individuals during the attack, including data for Morley’s employees, contractors, and clients.