VIRTUAL DESKTOP TOOLS
VMware | August 09, 2022
At Black Hat USA 2022, VMware, Inc. released its eighth annual Global Incident Response Threat Report, which takes a deep dive into the challenges faced by security teams amid pandemic disruptions, burnout, and geopolitically motivated cyberattacks. Sixty-five percent of defenders state that cyberattacks have increased since Russia invaded Ukraine, according to report findings. The report also shines a light on emerging threats such as deepfakes, attacks on APIs, and cybercriminals targeting incident responders themselves.
“Cybercriminals are now incorporating deepfakes into their attack methods to evade security controls,” said Rick McElroy, principal cybersecurity strategist at VMware. “Two out of three respondents in our report saw malicious deepfakes used as part of an attack, a 13% increase from last year, with email as the top delivery method. Cybercriminals have evolved beyond using synthetic video and audio simply for influence operations or disinformation campaigns. Their new goal is to use deepfake technology to compromise organizations and gain access to their environment.”
Additional key findings from the report include:
Cyber pro burnout remains a critical issue. Forty-seven percent of incident responders said they experienced burnout or extreme stress in the past 12 months, down slightly from 51% last year. Of this group, 69% (versus 65% in 2021) of respondents have considered leaving their job as a result. Organizations are working to combat this, however, with more than two-thirds of respondents stating their workplaces have implemented wellness programs to address burnout.
Ransomware actors incorporate cyber extortion strategies. The predominance of ransomware attacks, often buttressed by e-crime groups’ collaborations on the dark web, has yet to let up. Fifty-seven percent of respondents have encountered such attacks in the past 12 months, and two-thirds (66%) have encountered affiliate programs and/or partnerships between ransomware groups as prominent cyber cartels continue to extort organizations through double extortion techniques, data auctions, and blackmail.
APIs are the new endpoint, representing the next frontier for attackers. As workloads and applications proliferate, 23% of attacks now compromise API security. The top types of API attacks include data exposure (encountered by 42% of respondents in the past year), SQL and API injection attacks (37% and 34%, respectively), and distributed Denial-of-Service attacks (33%).
Lateral movement is the new battleground. Lateral movement was seen in 25% of all attacks, with cybercriminals leveraging everything from script hosts (49%) and file storage (46%) to PowerShell (45%), business communications platforms (41%), and .NET (39%) to rummage around inside networks. An analysis of the telemetry within VMware Contexa, a full-fidelity threat intelligence cloud that’s built into VMware security products, discovered that in April and May of 2022 alone, nearly half of intrusions contained a lateral movement event.
“In order to defend against the broadening attack surface, security teams need an adequate level of visibility across workloads, devices, users and networks to detect, protect, and respond to cyber threats, When security teams are making decisions based on incomplete and inaccurate data, it inhibits their ability to implement a granular security strategy, while their efforts to detect and stop lateral movement of attacks are stymied due to the limited context of their systems.”
Chad Skipper, global security technologist at VMware
Despite the turbulent threat landscape and rising threats detailed in the report, incident responders are fighting back with 87% saying that they are able to disrupt a cybercriminal’s activities sometimes (50%) or very often (37%). They’re also using new techniques to do so. Three-quarters of respondents (75%) say they are now deploying virtual patching as an emergency mechanism. In every case, the more visibility defenders have across today’s widening attack surface, the better equipped they’ll be to weather the storm.
VMware conducted an online survey about trends in the incident response landscape in June 2022, and 125 cybersecurity and incident response professionals from around the world participated. Percentages in certain questions exceed 100 percent because respondents were asked to check all that apply. Due to rounding, percentages in all questions may not add up to 100 percent.
In addition to VMware’s presence at Black Hat USA 2022, there will be more than 100 security talks at VMware Explore, the global multi-cloud industry event taking place August 29 – September 1, 2022 at Moscone Center in San Francisco. Register today to begin building your agenda.
VMware is a leading provider of multi-cloud services for all apps, enabling digital innovation with enterprise control. As a trusted foundation to accelerate innovation, VMware software gives businesses the flexibility and choice they need to build the future. Headquartered in Palo Alto, California, VMware is committed to building a better future through the company’s 2030 Agenda.
VIRTUAL DESKTOP TOOLS
Corel | June 14, 2022
Corel, a global leader in professional creative and productivity software, announced today the acquisition of Awingu, a supplier of secure remote access technology, for an unspecified amount. Parallels will include Awingu into its brand portfolio. The integration of Awingu and the Parallels® Remote Application Server (RAS) platform will provide end users with the additional flexibility and freedom they need to safely work from anywhere, at any time, on any device or operating system. Parallels, a subsidiary of Corel, is an all-in-one application delivery and virtual desktop infrastructure (VDI) solution that enables remote access to virtual applications and desktops provided through on-premises, hybrid, or cloud-based settings.
Awingu's simple and secure unified workspace is ideal for both mid-market and big companies, providing a safe means for businesses to allow bring your own device (BYOD) or work from anywhere policies. With this technology acquisition, Parallels RAS will become a one-stop solution for clients to effortlessly access legacy and cloud-native apps and files, while relieving IT teams of concerns about data security and infrastructure complexity.
Prashant Ketkar, Chief Technology and Product Officer, Corel said that “The future of work is now; we are living it. The pandemic further accelerated the need for organizations to determine and shift their remote and hybrid work infrastructures. Now, organizations are figuring out how they can cater to the flexibility that employees want with their workplaces while also ensuring secure and efficient access. We’re committed to helping organizations navigate this shift in the workplace, and with the addition of Awingu we’re one step closer to improving the experience for every stakeholder that interacts with our products.”
Awingu will continue working alongside Parallels' solutions to provide secure remote workplaces to clients in the healthcare, banking, manufacturing, government, and telecom industries. Awingu will also broaden its interaction with Parallels in order to speed innovation and offer a uniform capability for safe remote access to both legacy and cloud-native apps. Customers will be able to choose from a variety of solutions that use on-premises assets, hybrid architectures, and any cloud.
“I’m excited to join the Corel organization with the Awingu team. Both companies have a customer-first mindset and share the mission to ensure a seamless, secure, and effective workspace no matter where an employee is located. Together with Parallels RAS, we’ll bring a broader, richer set of solutions across the secure remote desktop and app streaming industry to our customers.”
Walter van Uytven, CEO, Awingu
Infortrend | May 31, 2022
Infortrend Technology, Inc., a market-leading enterprise storage supplier, has enhanced EonStor GS U.2, an enterprise scale-out unified storage system with U.2 NVMe SSD. It provides block and file-level scale-out extensibility to boost capacity and performance as storage requirements rise.
The EonStor GS (GS) unified SAN/NAS storage is intended for a variety of corporate applications such as database, virtualization, video post-production, and file sharing. It provides excellent capacity and performance in a variety of ways. Users can begin with one GS and add other GS as required to establish a cluster with up to four appliances through scale-out. GS supports the common ultra-fast U.2 SSD and boosts performance up to 1000K IOPS and 22GB/s per appliance to improve data processing with high IOPS and low latency.
GS offers a single namespace for CIFS and NFS user access from Windows, Linux, and macOS. IT administration can be simplified even further with auto-balancing, which ensures that data is stored equitably on each GS in a cluster. IT personnel may save money by expanding all-flash U.2 GS with HDD JBOD and letting the auto-tiering technology move 'hot' and 'cold' data between high-performance SSD and cost-effective HDD.
For forward-looking enterprises seeking a competitive and cost-saving solution, we updated GS unified storage with support of scale-out expandability and U.2 SSD. Users can connect several GS into a cluster with optimized load balancing, increased I/Os, and tight data protection."
Frank Lee, Senior Director of Product Planning
Infortrend has revamped its 2022 Reseller Partnership Program to assist partners in increasing expertise and profitability. Partners enjoy special benefits like deal registration with price protection, access to demo machines, and much more.