New 'trust' tool improves online experience and helps tackle digital fraud.

PURCHASE, N.Y., and REDMOND, Wash., April 25, 2022 /PRNewswire/ -- Mastercard on Monday announced the launch of an enhanced identity solution designed to improve the online shopping experience and tackle digital fraud in a new collaboration with Microsoft Corp.

"This builds on our commitment of working across the industry to provide advanced technologies that enable trust."

Mastercard has directly addressed these needs by enhancing its **Digital Transaction Insights** solution with next-generation authentication and real-time decisioning intelligence capabilities. The solution pairs Mastercard's network insights with the merchant's own data to confirm the consumer is who they claim to be, providing financial institutions with the additional intelligence needed to optimize their authorization decisions and approve more genuine transactions. Digital Transaction Insights is used across a wide range of online checkout instances, from click-to-pay functionality and wearables to digital wallets and in-app purchases. Now more than ever, delivering a frictionless shopping experience is critical as retailers look to shift window shopping and price comparison visits to confirmed sales. And, while consumers enjoy the convenience of shopping online, fraudsters also seek to develop new methods to use these same channels for ill-gotten gains. One of the growing types of digital fraud is first-party fraud, where a legitimate purchase is made online but later disputed. First-party fraud is estimated to be a $50 billion global issue.

Ajay Bhalla, president, Cyber and Intelligence at Mastercard, said, "Shopping online should be simple, quick and secure. But that isn't always the case. We're committed to developing advanced identity and fraud technology to help enhance the real-time intelligence we provide to financial institutions around the globe. This builds on our longstanding commitment of working across the industry to provide advanced technologies that enable trust, and help build a safe and thriving digital ecosystem for all."

Microsoft will be the first partner to share its insights and integrate with the new Digital Transaction Insights solution across several lines of business. Building on a long history of cross-collaboration, Microsoft's Dynamics 365 Fraud Protection's proprietary risk assessment, which leverages adaptive AI to assist in real-time fraud detection by identifying risky behaviors across purchase, account and in-store activities, has been integrated with Mastercard's Digital Transaction Insights to better enable real-time intelligence sharing in an easily consumable and actionable format. This will enable issuers to enhance their decision-making processes for authorizations, chargebacks and refunds. Moreover, organizations can improve transaction acceptance rates with insights that help them balance profitability and revenue opportunities against fraud loss and checkout friction.

Charles Lamanna, corporate vice president of Business Applications and Platforms at Microsoft, said, "We are excited to partner with Mastercard to leverage our cloud-native, cutting-edge fraud assessment tools to empower issuers and merchants to prevent more fraud and approve more genuine users. This partnership lays the foundation for the future of global fraud prevention where data silos are no longer a barrier to security."

Digital Transaction Insights is enabled by EMV 3-D Secure and Mastercard Identity Check, a global authentication solution built on the enhanced industry standard. Both elements support GDPR requirements and other related regulations. In 2021 alone, Mastercard Identity Check delivered a 14% uplift in transaction approval rates across billions of transactions.

**Additional resources**

For more information about Microsoft Security solutions, visit Microsoft Security. Bookmark the Security blog to keep up with expert coverage on security matters. Also, follow @msftsecurity for the latest news and updates on cybersecurity.

**About Mastercard (NYSE: MA)**

Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. www.mastercard.com

**About Microsoft**

Microsoft (Nasdaq "MSFT" @microsoft) enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more.

SOURCE Microsoft Corp.

Mastercard Launches Next-Generation Identity Technology with Microsoft

Plugin Settings Update vulnerability in ShortPixel's ShortPixel Adaptive Images plugin <= 3.3.1 at WordPress allows an attacker with a low user role like a subscriber or higher to change the plugin settings.

CVE-2022-29417: ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization

An ecosystem of native and third-party integrations provides visibility and control across the entire attack surface.

**DALLAS, April 25, 2022** – Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, announced the launch of Trend Micro One, a unified cybersecurity platform with a growing list of ecosystem technology partners that enables customers to better understand, communicate, and lower their cyber risk.

Organizations are battling on all fronts to face mounting cyber risks from their complex and growing attack surface with stretched teams and siloed security products. The unified security platform approach delivers a continuous lifecycle of risk and threat assessment with attack surface discovery, cyber risk analysis, and threat mitigation and response.

**Inaugural partners of the Trend Micro One technology ecosystem include:** Bit Discovery, Google Cloud, Microsoft, Okta, Palo Alto Networks, ServiceNow, Slack, Qualys, Rapid7, Splunk, and Tenable.

Kevin Simzer, COO of Trend Micro, shared, "We are so proud that ecosystem partners and even some competitors value integrating into our platform. Collectively we help enterprises fight the bad guys known as cybercriminals. Alone we are strong, but together our industry is unstoppable in helping customers eliminate security gaps anywhere, identify internal and external enterprise assets, and take critical steps to mitigate them."

According to Gartner®, "vendors are increasingly acquiring or developing these adjacent technologies and integrating them into a single platform. The benefits are best realized when this integration minimizes consoles and configuration planes and reuses components (e.g., endpoint agents) and information.\[1\]"

"We all know that digital transformation is table stakes for the post-pandemic enterprise. But this comes with additional risks: a bigger target for threat actors to aim at and more visibility and security coverage gaps for them to hide in," said Jeremiah Grossman, CEO of Bit Discovery. "Trend Micro’s approach stands out from the crowd — notably with its blend of multiple sources of asset and risk visibility, including external attack surface visibility powered by Bit Discovery. Trend Micro’s platform helps customers quickly get a prioritized and comprehensive understanding of their attack surface.”

As a unified platform, Trend Micro One delivers powerful risk assessment capabilities, but the ecosystem partners extend that to make it the most complete in the industry. Joint customers benefit from truly connected visibility, better detection and response capabilities, and comprehensive protection across security layers and systems.

Trend Micro One supports this approach by enabling customers to:

*   **Discover the attack surface:** Identify, monitor, and profile cyber assets in customers’ environments.
*   **Understand and continuously assess risk:** Analyze risk exposure, the status of vulnerabilities, the configuration of security controls, and types of threat activity.
*   **Effectively mitigate risk:** Ensure the right preventative controls and take swift action to mitigate risk and remediate attacks across the enterprise by leveraging Trend Micro's threat and risk intelligence.

**_To find out more about the Trend Micro One platform, please visit:_** **_https://www.trendmicro.com/en\_us/business/products/one-platform.html_**

**About Trend Micro**

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints. As a leader in cloud and enterprise cybersecurity, the platform delivers a powerful range of advanced threat defense techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response. With 7,000 employees across 65 countries, Trend Micro enables organizations to simplify and secure their connected world. www.TrendMicro.com.

Trend Micro Launches New Security Platform

In Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517), an attacker can self-sign session cookies by knowing the target's MAC address and the user's password hash. Guest users (disabled by default) can be abused using a null/empty hash and allow an unauthenticated attacker to login as guest.

CVE-2021-45841: How to summon RCEs

An issue was discovered in coreboot 4.13 through 4.16. On APs, arbitrary code execution in SMM may occur.

Permalink

Browse files

cpu/x86/smm: Introduce SMM module loader version 2

Xeon-SP Skylake Scalable Processor can have 36 CPU threads (18 cores).
Current coreboot SMM is unable to handle more than ~32 CPU threads.
This patch introduces a version 2 of the SMM module loader which
addresses this problem. Having two versions of the SMM module loader
prevents any issues to current projects. Future Xeon-SP products will
be using this version of the SMM loader.  Subsequent patches will
enable board specific functionality for Xeon-SP.

The reason for moving to version 2 is the state save area begins to
encroach upon the SMI handling code when more than 32 CPU threads are
in the system. This can cause system hangs, reboots, etc. The second
change is related to staggered entry points with simple near jumps. In
the current loader, near jumps will not work because the CPU is jumping
within the same code segment. In version 2, "far" address jumps are
necessary therefore protected mode must be enabled first. The SMM
layout and how the CPUs are staggered are documented in the code.

By making the modifications above, this allows the smm module loader to
expand easily as more CPU threads are added.

TEST=build for Tiogapass platform under OCP mainboard. Enable the
following in Kconfig.
        select CPU\_INTEL\_COMMON\_SMM
        select SOC\_INTEL\_COMMON\_BLOCK\_SMM
        select SMM\_TSEG
        select HAVE\_SMI\_HANDLER
        select ACPI\_INTEL\_HARDWARE\_SLEEP\_VALUES

Debug console will show all 36 cores relocated. Further tested by
generating SMI's to port 0xb2 using XDP/ITP HW debugger and ensured all
cores entering and exiting SMM properly. In addition, booted to Linux
5.4 kernel and observed no issues during mp init.

Change-Id: I00a23a5f2a46110536c344254868390dbb71854c
Signed-off-by: Rocky Phagura <rphagura@fb.com>
Reviewed-on: https://review.coreboot.org/c/coreboot/+/43684
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Angel Pons <th3fanbus@gmail.com>

*   Loading branch information

CVE-2022-29264: cpu/x86/smm: Introduce SMM module loader version 2 · coreboot/coreboot@afb7a81

Barely over a quarter of medical device companies surveyed maintain a software bill-of-materials, and less than half set security requirements at the design stage.

The stakes for cybersecurity are literally life and death in the medical device industry. As far back as 2013, then-US Vice President Dick Cheney had his doctor turn off the wireless connectivity in his pacemaker as a precaution, as the BMJ reports. The WannaCry attacks in 2017 to 2019 and other incidents show that was not merely paranoia – and this year's Access:7 vulnerability underscores the continuing threat to connected devices, including medical systems. While such events have raised awareness in the healthcare system about security threats, "the more that medical device manufacturers work to improve their cybersecurity capabilities, the more gaps they realize they have."

That's according to a report published this week by Cybellum. The report, titled "Medical Device Cybersecurity: Trends and Predictions," collected responses from 150 security and compliance decision-makers in the medical device industry worldwide.

The highlighted bar in the above graph shows that only 27% of respondents said their company generates and maintains a software bill-of-materials (SBOM) for its products. Such documents list all of the software components that go into a product, vital to tracking unexpected dependencies and hidden vulnerabilities, as the Log4j debacle underscored. The May 2021 executive order from US President Joe Biden calls out SBOMs as important to cybersecurity. The level of mainstream awareness and implementation is what makes this low adoption rate a surprise. It's an area to watch for next year's results.

The most implemented security measures in Cybellum's survey are running binary code analysis (47%) and setting security requirements during the design phase (46%). Binary analysis can reveal patterns of security flaws and audit for known vulnerable software elements. Addressing security concerns earlier, aka "shifting left," means developers can find and fix problems before they get deeply embedded and difficult to disentangle. The good news is that almost half of security decision-makers at medical device companies say they're using at least one of those techniques; the flipside is that more than half do not use them.

Other techniques medical device companies are using to secure their products include source-code static code analysis (SAST), performed by 41% of respondents; threat intelligence, by 39%; continuous security testing across the device life cycle, by 38%; educating developers on secure coding, by 27%; pen-testing/fuzzing, by 16%; and dynamic application security testing (DAST), by 14%.

The Cybellum report notes that "looking at the data segmented by types of companies, SBOM is more popular with OEMs (34%), compared to suppliers of medical device components (20%). The ultimate responsibility for the safety and security of devices lands on the OEM, which could explain why they make it a priority. Of course, both audiences have a long way to go."

For more insights, download the report from Cybellum.

Many Medical Device Makers Skimp on Security Practices

Acquisition of cloud-based alert security company will help Sophos automate tasks bogging down security teams, the company says.

Sophos has acquired SOC.OS, a spinoff company of BAE Systems Digital Intelligence with a software-as-a-service (SaaS) solution for automating the monitoring and triaging the growing volume of data and alerts across organizations. 

Sophos said it plans to add the SOC.OS technology to its existing managed threat detection and response products. 

"Alert fatigue and lack of visibility still plague security teams worldwide," Dave Mareels, chief executive officer and co-founder of UK-based SOC.OS said. "Considering this, against the backdrop of constantly changing cyberthreats and a challenging talent landscape, defenders need new and innovative products and services that can help them solve more complex incidents in less time."

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

Subscribe

Sophos Buys Alert-Monitoring Automation Vendor

New capabilities enable improved OT and IoT asset visibility along with data-powered threat detection and cost-effective deployments at scale.

**MIAMI - S4x22 Conference - April 19, 2022** – Forescout Technologies, the leader in cybersecurity automation, today announced that it has enhanced the operational technology (OT) and IoT capabilities for its newly released Forescout Continuum Platform, the industry’s first automated cybersecurity platform that continuously manages the risk posture of cyber assets and delivers enhanced threat detection and response for operational continuity.

The cyber and operational risks and threats affecting OT organizations are multiplying, calling for cybersecurity solutions that scale across an organization’s entire infrastructure and distributed locations. Organizations with OT and industrial control system (ICS) networks are also facing a cybersecurity skills gap and resource shortage, making it increasingly difficult to keep up with the evolving threat landscape. To address these issues for industrial enterprises, Forescout added new capabilities to provide broader visibility and threat detection for OT and IoT devices with an enhanced user experience, increased scalability and performance, and flexible deployment options to help automate workflows and enable a more effective platform operation and cost-effective deployments at scale.

“Forescout Continuum Platform is unique in its ability to automate cybersecurity workflows for both data collection and incident response, effectively collaborating with the other security tools for an effective collective defense,” said Daniel Trivellato, Vice President of OT, Forescout. “The new release allows organizations to quickly and easily gather and analyze the information they need, while reducing the learning curve and helping them prioritize and automate response across their OT networks. These enhancements also improve operational and cost effectiveness of large-scale enterprise deployments, which is highly valued by individual customers that have deployed our OT solution to a thousand distinct locations.”

The new capabilities and benefits include:

*   **Enhanced user experience:** A streamlined UI developed based on customer feedback for more efficient workflows, including at-a-glance insights into the trends and risks of all OT networks; a scalable asset page for effective analysis of risks, vulnerabilities and communications; and a new alerts page to better prioritize threat mitigation.
*   **Effective deployment at scale**: New sensor templates and centralized sensor configuration for faster deployment at hundreds of sites; ability to monitor up to 10 Gbps for centralized deployment models; support for DHCP networks and devices.
*   **Expanded visibility and detection:** Further expansion of our broad protocol coverage of 250+ IT, OT and IoT protocols so customers can identify and assess more assets and vendors; extended coverage to 30 active queries to identify common OT, IoT and IT devices; an extensibility framework for active queries and asset classification to expand built-in visibility and asset roles at run-time for more accurate classification.
*   **Flexible Deployment Options**: All passive and active sensors are deployed as containers by default, to allow deployment on almost any appliance; support for smaller, low-cost hardware for decentralization or segmented networks; support for deployment on 3rd party network infrastructure hardware; ability to deploy the Command Center in private AWS and Azure instances.

Forescout excels in ICS asset visibility according to the Forrester Wave™: Industrial Control Systems (ICS) Security Solutions, Q4 2021 and has “_the broadest ICS protocol support of the vendors evaluated. That protocol knowledge also helps Forescout deploy the leading asset discovery and identification capability in this evaluation according to multiple customers_”. The in-depth visibility of IT, IoT and OT networks and assets offered by Forescout Continuum is key to enabling effective, real-time management of a full range of operational and cyber risks, and Forescout is committed to continuously broaden these capabilities so industrial enterprises can operate securely without disruptions.

**About Forescout**

Forescout Technologies, Inc. delivers automated cybersecurity across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, OT, IoT, IoMT. The Forescout Continuum Platform provides complete asset visibility, continuous compliance, network segmentation and a strong foundation for Zero Trust. For more than 20 years, Fortune 100 organizations and government agencies have trusted Forescout to provide automated cybersecurity at scale. Forescout arms customers with data-powered intelligence to accurately detect risks and quickly remediate cyberthreats without disruption of critical business assets. www.forescout.com

Forescout Enhances Continuum Platform With New OT Capabilities

Collaboration aimed at connecting talent and employers.

ELLICOTT CITY, Md., April 19, 2022 /PRNewswire/ -- The national network of cyber communities, CyberUSA, has partnered with Superus Careers in launching the Cyber Career Exchange platform, aimed at supporting national, regional, and state level communities to fill a growing gap in cybersecurity jobs. Cybersecurity talent gaps exist across the country with nearly 600,000 unfilled positions, according to

CyberSeek

, a data analysis and aggregation project supported by the National Initiative for Cybersecurity Education (NICE). Closing these gaps requires detailed knowledge of the cybersecurity workforce.

The Cyber Career Exchange is a specialized recruiting platform focused specifically on cybersecurity. The specialized methodology provides a system for employers to find potential employees based on job skills and education; job seekers and employers to certify job skills and education; for the upkeep and maintenance of career related skills for candidates; a methodology for finding & developing candidates; and (future development) partnership workflow for associations, schools or other organizations to deploy the 'Cyber Career Exchange'.

"I am proud of our advancements over the past 6 years in connecting cyber communities across the country. Starting with seven statewide cyber communities and growing thirty states to date has provided tremendous value in shaping the cybersecurity landscape at both the state and federal levels," said CyberUSA's Co-founder David Powell, "With growing threats and talent shortage more has to be done. The most immediate solutions to filling the open cyber jobs is to provide a system, hosted within trusted communities across the US, designed specifically to help employers and candidates easily find one another. The Cyber Career Exchange accomplishes that goal and more."

"Having worked within and recruited for Financial Services and Healthcare organizations, I understand the vulnerabilities, especially with a shortage that exists in the workforce," said Superus Careers CEO, Larry Silver. "I am excited for us to play our role in filling that void from an employment standpoint, which will have a positive impact on generations to come,"

**About CyberUSA.us**

CyberUSA (CyberUSA.us) is a collaboration of leaders and states focused on a common mission purpose of enabling innovation, education, workforce development, enhanced cyber readiness and resilience – all while connecting the cyber ecosystem of the United States and its Allies. This non-profit "community of communities" is governed by its advisors and members, established to enhance information sharing between individuals, organizations and states and improve cyber resilience at all levels of participation – local, regional and national. CyberUSA provides a communication framework, a national summit and cyber related resources to communities across the United States.

**About Superus Careers**

Superus Careers (SuperusCareers.com) places talented professionals with exceptional organizations across the country. We are redefining recruiting by leveraging cutting-edge technology and business intelligence to guide personal relationships. This high-tech, high-touch approach yields efficient, accurate matches that focus on total alignment, bringing talent and organizations together. Every candidate is technically qualified for the role, culturally aligned and ready to add value to the organization. Attention to detail and passion for results is what makes candidates and companies choose Superus Careers. When the right person is in the right role at the right company, everyone wins.

CyberUSA, and Superus Careers Launch Cyber Career Exchange Platform

Orlando, FL, April 19, 2022 — Fortress Information Security (Fortress), the leading supply chain cybersecurity provider for critical industries, today announced that it received a $125 million strategic investment from funds managed by the Private Equity business within Goldman Sachs Asset Management (Goldman Sachs). This new investment will support Fortress’s mission of securing U.S. critical industries from cybersecurity and operational threats emanating from their supply chains. Existing investors, including co-founders Peter Kassabov and Alex Santos, ClearSky, First Analysis, American Electric Power, Caron Capital, KMMT, and Moquin Capital, will continue to support Fortress as investors.

Fortress is transforming how critical industry operators and government agencies secure their supply chains in the face of increasing supply chain cybersecurity threats. Founded in 2015, the Fortress platform is a deep, fit-for-purpose solution that enables customers in critical industries to assess, manage, and address risks associated with vendors, assets, and software in their supply chains. Fortress enhances cybersecurity postures and compliance with relevant regulations. The Fortress solution was co-developed with leading electric utilities and has since grown into a consortium tool that includes five of North America’s ten largest investor-owned utilities. Fortress’s platform secures 40% of the U.S. power grid, substantial national defense-related assets, and critical manufacturing industries.

As critical industries increasingly face cybersecurity threats emanating from the supply chains that underlie them, federal government and private sector stakeholders have recognized that securing critical supply chains is a national security issue. In response, authorities such as the Cybersecurity and Infrastructure Security Agency (CISA) and the North American Electric Reliability Corporation (NERC) have released supply chain cybersecurity guidelines in the past year.

“Supply chain cybersecurity is one of the most important challenges facing business and government leaders today. Supply chains represent a source of significant threats to the national economy and our ability to maintain our way of life,” said Peter Kassabov, executive chairman and co-founder of Fortress. “We started Fortress because we recognized major supply chain vulnerabilities in our country’s most critical industries. Many recent high-profile breaches have spawned a new wave of regulatory action in the U.S. that will likely expand for the foreseeable future.”

“The Goldman Sachs investment validates the hard work of our employees and clients who have brought collaborative cybersecurity to life,” said Alex Santos, Fortress CEO and co-founder. “This growth capital infusion will empower us to accelerate the execution of our vision of resilient supply chains.”

“Fortress has established itself as a market leader in end-to-end supply chain cybersecurity solutions for U.S. critical industries and we look forward to scaling the company’s Asset-to-Vendor network, which provides significant value to critical infrastructure suppliers and customers,” said Will Chen, managing director within Goldman Sachs Asset Management. “The depth and breadth of the Fortress platform are unmatched and we believe there is a meaningful opportunity to accelerate the expansion of the platform into compelling product adjacencies, including software and hardware bill of materials, workflow orchestration, and additional analytics and reporting capabilities.”

Foley & Lardner LLP acted as legal advisor, and DBO Partners acted as financial advisor to Fortress. Goodwin Procter LLP acted as legal advisor, and Goldman Sachs & Co. LLC served as financial advisor to Goldman Sachs Asset Management.

Further terms of the transaction were not disclosed.

**About Fortress Information Security**

Fortress Information Security secures critical industries from cybersecurity and operational threats stemming from vendors, assets, and software in their supply chains. Fortress is the only end-to-end platform that connects intelligence surrounding vendors, information technology and operational technology assets, and software through a holistic, fit-for-purpose approach. Fortress has also partnered with its customers and suppliers to form the Asset-to-Vendor (A2V) network, which facilitates the secure and seamless exchange of asset information and security intelligence, enabling collaborative workflows to better understand and remediate potential issues. Fortress serves critical industries such as energy, government, aerospace & defense, critical manufacturing, industrial automation, automotive, and healthcare.

About Goldman Sachs Asset Management Private Equity

Bringing together traditional and alternative investments, Goldman Sachs Asset Management provides clients around the world with a dedicated partnership and focus on long-term performance. As the primary investing area within Goldman Sachs (NYSE: GS), we deliver investment and advisory services for the world’s leading institutions, financial advisors and individuals, drawing from our deeply connected global network and tailored expert insights, across every region and market—overseeing more than $2 trillion in assets under supervision worldwide as of December 31, 2021. Driven by a passion for our clients’ performance, we seek to build long-term relationships based on conviction, sustainable outcomes, and shared success over time. Goldman Sachs Asset Management invests in the full spectrum of alternatives, including private equity, growth equity, private credit, real estate and infrastructure. Established in 1986, the Private Equity business within Goldman Sachs Asset Management has invested over $75 billion since inception. We combine our global network of relationships, our unique insight across markets, industries and regions, and the worldwide resources of Goldman Sachs to build businesses and accelerate value creation across our portfolios. Follow us on LinkedIn.

_For more information, contact Adam Benson at \[email protected\] or 202.999.9104._

Tag

#intel