Home Blog Page 222

Almost two-thirds of UAE workers willing to train for different career paths

Ana Mary Joseph
-
0
Almost two-thirds of UAE workers willing to train for different career paths
  • Workers over the age of 60 and younger people aged 20-30 are particularly aware of this risk, potentially due to greater awareness among younger generations and the nature of jobs held by their elders.
  • Automation has exacerbated widespread job security concerns and self-study activities have increased since 2018.
  • Media and information professionals, social care workers, and those involved in purchasing and logistics expressed the most willingness to retrain, with the media and financial institutions industries demonstrating the highest willingness overall.
  • Many people are enthused by the idea of retraining and embarking on new opportunities that provide greater professional security.

Almost two-thirds of workers in the United Arab Emirates (UAE) are prepared to pursue different career paths post-crisis, expressing a high willingness to retrain and develop new skillsets before embarking on new roles, a new study by Boston Consulting Group and Bayt.com revealed.

As a result of the economic unpredictability stemming from the pandemic, professionals from a majority of industries are apprehensive, at least to some degree, regarding the future role of technology.

Overall, 37 per cent of UAE workers feel that the threat of their positions becoming automated has increased in the past year.

Workers over the age of 60 and younger people aged 20-30 are particularly aware of this risk, potentially due to greater awareness among younger generations and the nature of jobs held by their elders.

Moreover, automation concerns are particularly pressing among those in white-collar creative, consulting, and administrative positions, while people least concerned are those with human-centric roles, including sales and social care.

Change in professional outlook

“Over the past year, technological disruption has accelerated tremendously. The increasing presence of automation in work processes has seen concerns regarding job security rise substantially, with many now questioning their futures as a result,” Dr. Christopher Daniel, Managing Director and Partner, BCG Middle East, said.

“As such, workers have experienced a change in professional outlook. This is emphasised through the survey’s findings, with around two-thirds of respondents reaffirming their perceptions that retraining is a viable route towards new opportunities.”

Of the UAE respondents, 66 per cent are willing to retrain for a different job role, and this emerging trend is also consistent across degree types and age groups.

Media and information professionals, social care workers, and those involved in purchasing and logistics expressed the most willingness to retrain, with the media and financial institutions industries demonstrating the highest willingness overall.

In terms of learning, 63 per cent said that they now dedicate a few weeks minimum to skillset development over the course of a year, with this applying to workers from all age groups and various higher education backgrounds.

Since the outset of the ongoing pandemic, law, media, digital, consulting, and creative jobs have recorded the highest levels of training.

Meanwhile, the UAE has demonstrated strong improvement in training resources since 2018. Self-study rose from 53 per cent in 2018 to 66 per cent in 2020 – above the global average of 62 per cent – with generous government programs reaching 19 per cent last year.

Mobile application usage for training purposes has also increased from 18 per cent to 35 per cent in the same timeframe.

Economic turbulence

“Irrespective of their professions, UAE workforce members are preparing to enter new career paths. They have analysed their long-term futures in their current positions, with many concluding that other roles and industries will provide greater job security,” Daniel said.

“Increased self-study among the national workforce illustrates their fears, with many proactively engaging in extracurricular activities as they prepare for new ventures. Recent events have presented professionals with unprecedented discomfort, and study findings showcase how job security has dwindled since the outbreak.”

The pandemic has directly impacted a considerable percentage of the UAE workforce. In total, 43 per cent of respondents reported that recent events have had a detrimental effect on their employment status, slightly above 36 per cent global average.

Some have had their working hours reduced, while others have experienced redundancy due to economic turbulence. Workers with a lower level of education have been particularly impacted, while master’s degree holders have been less affected with 34 per cent negatively impacted.

Specific job roles, such as marketing, consulting, and media, were heavily hindered, and the travel and tourism sector also suffered significantly. Therefore, many people are enthused by the idea of retraining and embarking on new opportunities that provide greater professional security.

Discover more from TechChannel News

Subscribe to get the latest posts to your email.

Telecom operators need to rev up investment in rich media technologies

Naushad K. Cherrayil
-
0
Telecom operators need to rev up investment in rich media technologies
  • Mobile messaging revenue will increase from $87b in 2020 to $88b in 2025.
  • SMS messaging revenue will fall from $66b in 2020 to $61b by 2025.
  • Total number of mobile messages sent will increase by 11% from 163tr in 2020 to 182tr in 2021.
  • 58% of mobile messaging traffic in 2021 will be sent over OTT messaging applications such as Facebook Messenger, WeChat and WhatsApp.

Telecom operators will need to accelerate investment into rich media technologies such as Multimedia Messaging Service (MMS) and Rich Communication Services (RCS) to offset the loss of Short Message Service (SMS) revenue over the next five years.

They need to capitalise on premium pricing and advanced anti-fraud standards over these messaging channels to accomplish it.

Juniper Research forecast that global operator-led mobile messaging revenue will increase from $87 billion in 2020 to $88 billion in 2025.

However, SMS messaging, a long-established revenue source for operators, will fall from $66 billion in 2020 to $61 billion by 2025; owing to declining P2P traffic.

The total number of mobile messages sent will increase from 163 trillion in 2020 to 182 trillion in 2021; representing a growth of 11 per cent.

Juniper Research forecasts that 58 per cent of mobile messaging traffic in 2021 will be sent over OTT messaging applications such as Facebook Messenger, WeChat and WhatsApp, with consumers and enterprises alike recognising the benefits of rich media messaging.

OTT apps remain most popular format

The total number of mobile messages sent will increase from 182 trillion in 2021 to 223 trillion by 2025, with OTT messaging applications remaining the most popular messaging format over the next four years.

Scarlett Woodford, Research Analyst at Juniper Research, said that operators will take advantage of the growing interest in omnichannel strategies to foster increased investment in rich media messaging standards, including RCS and MMS.

RCS is the next-generation SMS protocol supported by GSMA, Google and Android, Samsung, and many carriers and mobile phone manufacturers.

The ability of RCS to authenticate enterprises directly will provide more efficient anti-fraud detection and mitigation of mobile business messaging traffic over established SMS traffic analysis.

“Authenticating the source of messaging traffic via RCS is far more efficient at eliminating fraudulent traffic routes than traditional firewalls. However, RCS traffic must still be monitored for malicious and unwanted content. A failure to do so will diminish the value of rich media messaging services in the future,” she said.

Whilst P2P communication will continue to migrate to OTT messaging applications, Woodford suggests that the ubiquity of SMS will preserve its relevance in A2P use cases.

“With high open rates and the ability to reach large numbers of users, SMS is the ideal tool for communicating mission-critical traffic to large numbers of consumers. Even when RCS adoption accelerates, SMS will remain a crucial avenue for businesses to reach customers on both Android and iOS devices,” she said.

Moreover, she said that Google is clearly moving aggressively in the RCS space, whilst also prioritising collaboration with operators, and likely to use RCS as a strategy to develop and promote Android services; removing the benefit of iOS over Android.

Apple unlikely to follow RCS format

At present, the exclusivity of iMessage is likely to influence a user’s decision to opt for an iOS device, rather than an Android competitor; representing a unique selling point for Apple.

“Supporting the RCS protocol would devalue Apple’s iMessage service; enabling iOS users to communicate with Android users in a rich way previously restricted to their iOS counterparts. This may lead to customer attrition, with users no longer dependent on iOS devices to interact with their contacts in a rich way over a native messaging application,” she said.

Juniper Research believes that Apple is unlikely to announce its support for RCS in the short-to-medium term, to protect the value of its iOS-native iMessage application.

Global tech giants boosting 5G investments in India

Naushad K. Cherrayil
-
0
Global tech giants boosting 5G investments in India
  • Popular roles include engineers specialising in networks, IP networking, software, firmware, and automation.
  • Department of Telecom in India has approved trials of 5G with Ericsson, Nokia, Samsung, and C-DoT while keeping the Chinese telecom giant Huawei out of the list.

Technology companies are boosting their investments in India in the 5G space as the government has begun the process of conducting trials by allotting airwaves to telecom service providers.

Companies are looking to integrate 5G technologies into existing network elements and stepping-up research and development to provide customer management solutions.

With 5G expected to deliver 10 times faster download speed than 4G and with millisecond latency, Department of Telecom in India has approved trials of 5G with Ericsson, Nokia, Samsung, and C-DoT while keeping the Chinese telecom giant Huawei  out of the list.

Ajay Thalluri, Business Fundamentals Analyst at GlobalData, said that job postings have doubled between the fourth quarter of 2020 and first quarter of this year, indicating an increase in the demand for expertise in 5G domain.

“Popular roles include engineers specialising in networks, IP networking, software, firmware, and automation,” he said.

Indian companies such as Bharti Airtel are expected to benefit by collaborating with the likes of Qualcomm Technologies in 5G/5G NR domain and access chipsets. India has permitted telecom operators such as Reliance Jio Infocomm, Bharti Airtel, Vodafone Idea and Mahanagar Telephone Nigam Limited (MTNL) to conduct trials for 5G with help from original equipment manufacturers (OEMs) and technology providers for end use and applications.

Reliance Jio Infocomm, with its own indigenous technology, will be conducting trials.

India has allocated spectrum to telecom operators at locations including Delhi, Mumbai, Kolkata, Bengaluru, Gujarat  and Hyderabad.

Experts needed

Thalluri said that India is emerging as one of the key markets for Ericsson.

“Over 20 per cent of the jobs posted since January 1, 2020, are in India with the company looking at cellular and radio network prospects. Ericsson is also exploring security aspects of 5G networks by evaluating business strategies and requirements,” he said. 

Cisco Systems is investing $5 billion to fund 5G projects globally, including India. The company posted over 30 per cent of the 5G jobs in India since January 1, 2020.

Cisco’s 5G related hiring is dominated by engineers for cloud core and packet core teams to enable virtualised cloud services. Job postings are also for 5G mobile core projects to translate customer business needs into product technical requirements and use cases.

Meanwhile, companies such as Dell Technologies and Hewlett Packard Enterprise Co are also hiring for experts in 5G domain.

Dell is building a 5G R&D team from the ground up at its Bengaluru office to design and develop products and solutions for service providers and enterprise customers.

HP, which is gaining significant traction with communication service providers (CSP) accounts in various areas including 5G services, is providing cloud-native 5G offerings.

With a host of companies looking at various 5G use cases in India, Thalluri said that hiring could go beyond conventional telecom end use and likely to increase over the coming months with companies exploring various components of the 5G value chain.

Key jobs posted:

  • Director, Software Engineering – 5G R&D
  • Customer Success Specialist (CSS) – Mobility – 4G/5G
  • Embedded 5G/4G Cellular RF Software/Firmware Engineer
  • CMS R&D – 5G Micro-services Java Developer Bangalore, Karnataka; and 5G Systems Engineer.

What are the ways to bypass NSO Group’s Pegasus spyware?

Naushad K. Cherrayil
-
0
What are the ways to bypass NSO Group’s Pegasus spyware?
  • Pegasus spyware can reside within your device even if reset to factory standards and the only way is to throw the device to get rid of the spyware
  • DigitalBank Vault claims that the encryption level of their software is better than the government level, which means no foreign governments or intelligence agencies such as NSA, CIA or Interpol can decipher the information, no matter how much computational power they will apply.
  • All the best encrypted cellular smartphones are connected to the internet and use the cellular network, which means that no matter what type of encrypted smartphone you have, you are completely exposed to hacking.

Spyware, a tool created by hackers to collect private information about a person or organisation and track people online, is a big issue and a nightmare.

According to a major investigation into the leak of 50,000 phone numbers of potential surveillance targets, a Paris-based media non-profit – Forbidden Stories – and its media partners identified potential NSO clients in 11 countries – Azerbaijan, Bahrain, Hungary, India, Kazakhstan, Mexico, Morocco, Rwanda, Saudi Arabia, Togo, and the UAE.

Think of Israeli-based NSO Group’s Pegasus spyware, a sophisticated piece of malware weaponising various zero-day exploits and helping government agencies to track top journalists, human rights activists and politicians and remotely collect information about their target’s relationships, phone calls, location and activities.

Many security experts have written and advised users how not to click links, open messages from unknown numbers and all other precautions they list, are completely worthless.

The power behind the NSO technology is much bigger and if you have an Android or an iPhone, you are doomed and they [hackers] will plant their spyware no matter what measures you take. They are the best in the World in this field.

Moty Weissbrot, CEO at UK-based DigitalBank Vault Limited, told TechChannel News that the NSO Group has hundreds of cybersecurity engineers, working round the clock to develop advanced tech for infecting devices, and they work in parallel on all smartphone models and adapt their tech to any new security update released from Apple or Android.

“Pegasus spyware can reside within your device even if reset to factory standards and the only way is to throw the device to get rid of the spyware,” he said.

Canada’s “Citizen Lab” is doing a great research job on NSO Group but never gave a real solution on how to fight this spyware.

There are many encrypted smartphones available in the market, but Weissbrot said they are not safe, which is a dangerous “illusion”. They have been hacked before because the data stay on the servers.

Read about Blackberry hacking, Encrochat hacking and Sky ECC hacking.

Even though WhatsApp, Telegram and Signal say they use encryption methods, he said that it is not true as the hackers can see in real-time what you do and the hackers catch it before you encrypt the data.

Encrypted phones are not safe

All the best encrypted cellular smartphones are connected to the internet and use the cellular network, which means that you are completely exposed to hacking no matter what type of encrypted smartphone you have.

“The best encrypted cellular phones in the world will not secure your secrets, make no mistakes about it. Most of them are creating the encryption keys for you, managing the encryption keys generated by them so that you are trusting some third parties, securing your confidential data, and sincerely speaking, this is a huge mistake. In addition, the servers of these encrypted cell phone suppliers can be hacked, encryption keys can be obtained and all your saved data can be accessed in its decrypted form,” Weissbrot said.

Being in the encryption business for more than 25 years, Weissbrot said that they have been asked by many entities to design communication systems that can bypass the NSO Group spyware.

He chalks out few solutions on fighting back this potent spyware and still being able to communicate safely.

  1. One solution is to use modified or hardened OSs as it will be difficult for them [hackers] to penetrate the devices. They need to study and develop and modify their spyware to get installed into the device. It will be complicated for the hackers as they have to spend a lot of time, money and effort.
  2. The second solution is to use OSs that are not covered by them [hackers] such as Lineage OS, E Foundation OS and Librem Purism OS, the less ‘popular’ ones and they are very good but it is not enough to be away from the hackers. These OSs can be downloaded free from the internet.
  3. The third solution is to be offline and not to be on the cellular network. You take a modified OS and work only on secured internet, with password-protected, and not in public WiFis. If you are on the move, you can open a personal hotspot and transmit WiFi to a cellular device. 
    To bypass the hackers, you need two cellular devices. One is the regular device, which holds the basic and classified information, and the second device to hold confidential data, used only to communicate, send and receive information, with the less popular OSs. Do not install other apps on the dedicated device as third-party apps can contain spyware.
    On the regular device, install communications tools that are not as popular as WhatsApp, Signal or Telegram as the hackers have access to it through the servers. There are less popular communications tools such as Skred, Twinme and many others and they are quite good, private and safe. Hackers do not spend time, money and effort that are less known. 
    The confidential communications have to be done on a separate device and should be always offline and should be online only when you transmit information outside.  
    When you get a file, email or PDF, encrypt the file, email or PDF on the second or non-regular device offline, using the software, and transmit it to the regular device, using Bluetooth, microSD, USB, cable or NFC.
    When you pass it to the regular device in encrypted form, even if the hackers are spying on your regular device, they [hackers] cannot encrypt the file as they don’t have the encryption keys and even if they see the file, it will be a garbled data. 
     “This is the method we give to top executives and it is the best way to overcome the spyware. If you receive an encrypted file, decrypt the file on the non-regular device via offline,” Weissbrot said.
    It is not a full-proof solution to fight Pegasus and other spyware, but he said that at least you are partially more in the ‘safe zone’ and have less chance to get hacked by the NSO Group.  
    Each organisation gets a slightly different version of the OS. Even if NSO Group tries to learn about this OS by buying it from them somehow, they will get one version that is not the same as supplied to other clients. 
    When the device is shut down, it erases all the data in 10 consecutive cycles and overwrites it with junk data, encrypts randomly the junk data. The data they collect from the device will be useless as it is just fragmented and encrypted junk data. The OS is resetting itself and each time a user switches on the device, it is like you get a new fresh device. This device can be also used offline, always, and still be able to communicate voice and video messages, text messages, and files. 

“We focus on selling the DigitalBank Vault SuperEncryption software and the encryption level is better than the government level, which means no foreign governments or intelligence agencies such as NSA, CIA or Interpol can decipher it, no matter how much computational power they will apply. It is OTP-based,” Weissbrot said. 

Moreover, he said that Governments can force the companies to get access into their servers but they have no servers and the tech is working 100 per cent offline and quite immune to online attacks, besides there are no encryption keys as it is generated on the spot by the user. 

“There is nothing called “non-hackable” and if somebody puts his hand on the dedicated device and injects a spyware or malware into it, it is hacked but it is very difficult to hack remotely as it is always offline,” he added.

They have about 200 companies with a lot of users worldwide, including South Korea, South America, Latin America, Japan, Hong Kong, Singapore and Europe. 

“We are planning to enter the Middle East markets and looking for strategic partners. The subscription fee is $1,000 per month per license,” he said.

Related Posts:

Why UAE has become the hotbed for cloud infrastructure players?

Naushad K. Cherrayil
-
0
Why UAE has become the hotbed for cloud infrastructure players?
  • Amazon Web Services to open three data centres in the Emirate in the first half of next year.
  • Hyperscalers such as AWS, Oracle, Microsoft, Alibaba, SAP and Google are boosting their investments in the Middle East as Covid-19 has given a boost to digital transformation.
  • IaaS and PaaS are going to grow at a much faster pace as cloud adoption is the new platform for most of the enterprises for cost reduction, agility, efficiency and innovation, IDC says.

With Amazon Web Services planning to open three data centres in the UAE in the first half of next year, the Emirate has become the hotbed for cloud infrastructure locations in the Middle East.

Amazon already has a cluster of data centres in Bahrain and edge locations in the UAE. The cloud infrastructure giant opened its first Middle East data centres in Bahrain in 2019.

Hyperscalers such as AWS, Oracle, Microsoft, Alibaba, SAP and Google are boosting their investments in the region as Covid-19 has given a boost to digital transformation.

Google does not have a data centre in the UAE but they are planning in Qatar and Saudi Arabia.

Peter DeSantis, Senior Vice-President of Global Infrastructure, AWS, said the new AWS Region supports the UAE’s focus on promoting technology innovation that has made it a thriving global hub for entrepreneurs, e-governments, and multi-national businesses.

The new AWS Middle East (UAE) Region will consist of three Availability Zones. Globally, AWS has 80 Availability Zones across 25 geographic regions, with plans to launch 18 more Availability Zones and six more AWS Regions in Australia, India, Indonesia, Spain, Switzerland, and the UAE.

AWS Regions are comprised of Availability Zones, which place infrastructure in separate and distinct geographic locations with enough distance to significantly reduce the risk of a single event impacting customers’ business continuity, yet near enough to provide low latency for high availability applications that leverage multiple Availability Zones.

Each Availability Zone has independent power, cooling, and physical security and is connected through redundant, ultra-low-latency networks.

Attracting investments

Hamad Obaid Al Mansoori, Director General of the UAE Telecommunications and Digital Government Regulatory Authority (TDRA), said the timing has great implications as the UAE prepares for its next fifty and developing a digital future that enhances the UAE global position as a hub for attracting investments and partnerships.

“This step supports the UAE strategies related to digital transformation and future based digital and sustainable knowledge society and economy. It also reflects the high confidence in the UAE’s investment environment by international companies that aspire to expand their activities and prepare for major and accelerating digital changes represented in the Fourth Industrial Revolution and solutions,” he said.

Moreover, he said that the choice of AWS and other international companies to base their services in the UAE would not have been possible without the accumulative and vigilant efforts of the UAE telecommunications companies.

“They have always been partners in the process of construction and renaissance by providing the best services to companies and individuals, through a pioneering and advanced infrastructure,” he said.

Etisalat is likely to be the telecom provider for the new data centres of AWS.

GCC public cloud market value

According to research firm IDC, GCC public cloud market (IaaS, SaaS and PaaS) is expected to grow from $956 million last year to $2.35 billion in 2024, at an annual growth rate of 25 per cent.

In the long run, IDC said that IaaS and PaaS are going to grow at a much faster pace as cloud adoption is the new platform for most of the enterprises for cost reduction, agility, efficiency and innovation.

In the UAE, public cloud spending is expected to grow from $430 million last year to $1 billion by 2024, growing at an annual growth rate of 25 per cent over the five years from 2019-2024.

 “AWS’s expansion into the UAE is a testament to our rapidly growing innovation ecosystem that will benefit from access to the world’s leading cloud platform and its advanced technologies and solutions. Building on Abu Dhabi’s smart infrastructure and digital transformation, AWS’s investment will further enable innovators and companies with globally relevant solutions to realize new opportunities in the UAE and beyond,” Mohammed Ali Al Shorafa, Chairman of the Abu Dhabi Department of Economic Development, said.

Tariq Bin Hendi, Director General of the Abu Dhabi Investment Office (ADIO), said, that the investment comes in line with their goal of attracting investments that boost technology capabilities. “It is another example of the growing partnership between the public and private sectors in the emirate aimed to accelerate breakthroughs and advance large-scale digital transformation, strengthening Abu Dhabi’s position as a global hub for innovation,” he said.

All the major cloud providers are increasing their investments in the channel, both to leverage the consulting and managed services capabilities of partners, and to expand sales capacity to drive cloud consumption.

An industry expert said that AWS is making investments across its global partner ecosystem to sustain its momentum, including greater support for ISVs, launching new vertical partner competencies, further expansion into distribution to boost SMB adoption and new partnerships as it extends its hybrid cloud strategy.

Related posts:

Hackers exploit Microsoft, Google to send millions of malicious messages

Contributor
-
0
Hackers exploit Microsoft, Google to send millions of malicious messages
  • Malicious message volume from Microsoft and Google cloud services exceeded that of any botnet in 2020.
  • Threat actors targeted 95% of organisations with cloud account compromise attempts in 2020.

Organisations worldwide have adopted cloud collaboration tools in record numbers—and attackers have quickly followed. In recent months we have observed acceleration in threat actors abusing Microsoft and Google’s popular infrastructure to host and send threats across Office 365, Azure, OneDrive, SharePoint, G-Suite and Firebase storage.

Ryan Kalember, Executive Vice-President of cybersecurity strategy for Proofpoint.

Last year, 59,809,708 malicious messages from Microsoft Office 365 targeted thousands of our customers. And more than 90 million malicious messages were sent or hosted by Google, with 27 per cent sent through Gmail, the world’s most popular email platform.

In the first quarter of 2021, we observed seven million malicious messages from Microsoft Office 365 and 45 million malicious messages from Google infrastructure, which far exceed per quarter Google-based attacks in 2020.

The malicious message volume from these trusted cloud services exceeded that of any botnet in 2020, and the trusted reputation of these domains, including outlook.com and sharepoint.com, increases the difficulty of detection for defenders.

This authenticity perception is essential, as email recently regained its status as the top vector for ransomware and threat actors increasingly leverage the supply chain and partner ecosystem to compromise accounts, steal credentials, and siphon funds. We recently released supply chain findings that 98 per cent of nearly 3,000 monitored organizations across the US, UK, and Australia, received a threat from a supplier domain over a seven-day window in February 2021.

Given the level of access that can be granted from a single account, over the last year threat actors targeted 95 per cent of organisations with cloud account compromise attempts, and more than half have experienced at least one compromise. Of those compromised, over 30 per cent experienced post-access activity including file manipulation, email forwarding, and OAuth activity.

If stolen, threat actors can leverage credentials to log into systems as imposters, move laterally across multiple cloud services and hybrid environments, and send convincing emails cloaked as a real employee, orchestrating potential financial and data loss.

Microsoft and Google phishing examples

There is a round-up of recent phishing campaigns that demonstrate how threat actors use Microsoft and Google to convince users to act. For example, the following credential phishing attempt features a Microsoft SharePoint URL claiming to host a corporate policy and Covid-19 guidelines document.

The document contains a link leading to a fake Microsoft authentication page designed to harvest user credentials. This low volume campaign involved approximately 5,000 messages targeting users in transportation, manufacturing, and business services.

An additional example of a recent fake video conferencing credential phishing campaign featured the “.onmicrosoft.com” domain name. The messages contain a URL that leads to a fake webmail authentication page designed to harvest user credentials. This low volume campaign involved approximately 10,000 messages focused on manufacturing, technology, and financial services users.

A March 2021 Gmail-hosted campaign featured a fake employee benefits message and Microsoft Excel attachment targeting manufacturing, technology, and media/entertainment organisations. If macros are enabled, it will install and run The Trick, a trojan that intercepts and logs banking website visits to steal credentials.

In February 2021, we also observed a very low volume Xorist ransomware campaign from a Gmail-hosted email address. It attempts to trick accounting recipients into access password-protected zipped MS Word documents. These documents contain macros which, if enabled, drop the ransomware.

Our research clearly demonstrates that attackers are using both Microsoft and Google infrastructure to disseminate malicious messages and target people as they leverage popular cloud collaboration tools. When coupled with heightened ransomware, supply chain, and cloud account compromise, advanced people-centric email protection must remain a top priority for security leaders.

  • Ryan Kalember is the Executive Vice-President of cybersecurity strategy for Proofpoint.
1...221222223...271Page 222 of 271