Mcafee gets fierce about resellers (but in a good way)

Microsoft has advised its reseller community it needs to pay attention to the debut of improved security tooling aimed at making it harder for attackers to worm their way into your systems through partners.

That service providers can be used to attack their customers is not in dispute: recent exploits targeting ConnectWise, SolarWinds, and Kaseya made that plain. If you need extra proof, recall that just last week the Five Eyes nations’ intelligence agencies urged managed services providers to harden up in the face of increased attacks.

Microsoft currently lets its resellers gain “delegated administration privileges” (DAP) that let them manage a customer's services, software, or subscriptions.

Cybersecurity service providers must for licenses to operate in Singapore, under new regulations launched by the country’s Cyber Security Agency (CSA) on Monday.

The new licensing framework requires vendors that offer penetration testing, and/or managed security operations centers (SOC) to get a licenses, in recognition that they access customers' systems and therefore pose a risk. The measures are effective immediately, although existing vendors have until October 11, 2022 to apply for the required licenses.

Those that fail to acquire the necessary licenses will face a fine up to SG$50,000 (US$36,600) and up to two years in jail.

Skyhigh Security, formed from the Secure Service Edge (SSE) pieces of McAfee Enterprise and FireEye, today announced its name and data-guarding portfolio. 

CEO Gee Rittenhouse, who led McAfee Enterprise Cloud and is a former Cisco security executive, said Skyhigh aims to shift practitioners' focus from granting or blocking network access to resources, to fine-grain monitoring and protection of applications and data even after people have logged in.

Instead of simply securing access to an application, Skyhigh examines what people and machines do with the software, and how they use information with in once their identity has been verified and access granted, Rittenhouse said.

Australian technology distributor Dicker Data has decided to end its commercial relationship with Russian security software vendor Kaspersky.

CEO David Dicker told The Australian Financial Review the decision was taken out of a belief that Western nations have a responsibility to act, and because chief operating officer Vladimir Mitnovetski is Ukrainian so Dicker Data is therefore directly impacted by the illegal invasion.

Kaspersky confirmed that Dicker Data has chosen to end its relationship, and thanked the distributor for "hard work, dedication and support" since taking on the account in 2019.

BlackBerry security researchers have identified a ransomware family targeting English-speaking victims that is capable of erasing all non-system files from infected Windows PCs.

LokiLocker, a ransomware-as-a-service (RaaS) family with possible origins in Iran, was first seen in the wild in mid-August 2021, BlackBerry Threat Intelligence researchers write in a blog post today.

"It shouldn't be confused with an older ransomware family called Locky, which was notorious in 2016, or LokiBot, which is an infostealer," they say. "It shares some similarities with the LockBit ransomware (registry values, ransom note filename), but it doesn't seem to be its direct descendant."

Infamous ransomware group Conti is now the target of cyberattacks in the wake of its announcement late last week that it fully supports Russia's ongoing invasion of neighboring Ukraine, with the latest hit being the leaking of its source code for the public to see.

This disclosure comes just days after an archive leaked containing more than a year's worth of instant messages between members of Conti, believed to be based in Russia: we're talking 400 files and tens of thousands of lines of internal chat logs written in Russian. The internal communication files include messages that run from January 2021 to February 27 of this year.

Conti announced on February 25 that it was giving its "full support" to Russia's attack on Ukraine, adding the threat that, "If anybody will decide to organize a cyberattack or any war activities against Russia, we are going to use our all possible resources to strike back at the critical infrastructures of an enemy."

Analysis Both the UK and the US have recorded the highest inflation figures for decades. With inflation in the Eurozone hitting similar levels, the news is set to mark the end of more than a decade of ultra-low interest rates in the West.

LogoWatch Newly combined security outfits McAfee Enterprise and FireEye have revealed a new name: "Trellix".

Readers may find the name familiar, as another tech company used the same name in the 1990s and early 2000s when it offered intranet and web published tools such as Trellix Web.

In 2001, this press release announced that Trellix had licensed tech from a company called Pyra Labs, which operated a service called "Blogger". Yes, that Blogger – the platform Google acquired in 2003 and which was quickly found to have serious security problems. A year after the Pyra Labs news, we reported that Trellix was acquired by Interland, which rated it as possessing "the best technology in terms of novice users creating professional quality websites".

The UK's Competition and Markets Authority has invited comments from industry and interested parties about NortonLifeLock's proposed $8bn purchase of fellow infosec outfit Avast.

The merger inquiry will run until the 16 March when the comments will be collated and assessed to determine if there is sufficient concern to warrant a deeper investigation.

"The CMA is considering whether it is or may be the case that this transaction, if carried into effect, will result in the creation of a relevant merger situation under the merger provisions of the Enterprise Act 2002," it said.

The humble PC was one of the hottest selling tech items in 2021 with shipments into the channel jumping 15 per cent globally to 341 million amid a pandemic that continues to force people to work, study, and play at home.

The data, collated by Canalys, includes calendar Q4 sales of around 92 million units. The revenue generated by these shipped boxes is estimated at $70bn, itself up 11 per cent year-on-year as manufacturers juggled with tighter supply of components by prioritising production of higher margin tin.

"2021 was a watershed year in the history of the PC market, with the PCs place at the center of work, learning and leisure truly cemented," said Ishan Dutt, senior analyst at Canalys, in a statement.