Search Results for “CIO”

What is Cloud Workload Protection?

By Dudu Mimran | September 13, 2020September 15, 2020 by Dudu Mimran

Cloud usage is increasing rapidly. Analysts forecast growth of 17 percent for the worldwide public cloud services market in 2020 alone. This proliferation comes on top of already widespread cloud adoption. In a recent report by Flexera, over 83 percent of companies described themselves as intermediate to heavy users of cloud platforms, while 93 percent report having a multi-cloud strategy. With a growing number of companies planning on doing more in diverse cloud environments, cloud workloads are becoming…

innovation

Digital Transformation Is Hard and Existential

By Dudu Mimran | December 23, 2019September 5, 2020 by Dudu Mimran

There is no large corporation on the planet which does not have digital transformation as one of the top three strategic priorities, and many have already deep-dived into it without necessarily understanding the meaning of success. Digital transformation is highly strategic, and many times existential due to the simple fact that technology changed everyone’s life forever and kept on doing that. A change that gave birth to a new breed of companies with technological DNA…

cybersecurity

How to Disclose a Security Vulnerability and Stay Alive

By Dudu Mimran | December 18, 2018September 28, 2020 by Dudu Mimran

In recent ten years, I was involved in the disclosure of multiple vulnerabilities to different organizations and each story is unique and diverse as there is no standard way of doing it. I am not a security researcher and did not find those vulnerabilities on my own, but I was there. A responsible researcher, subjective to your definition of what is responsible, discloses first the vulnerability to the developer of the product via email or…

cybersecurity

The Emerging Attention Attack Surface

By Dudu Mimran | March 16, 2018September 28, 2020 by Dudu Mimran

A well-known truth among security experts that humans are the weakest link and social engineering is the least resistant path for cyber attackers. The classic definition of social engineering is deception aimed to make people do what you want them to do. In the world of cybersecurity, it can be mistakenly opening an email attachment plagued with malicious code. The definition of social engineering is broad and does not cover deception methods. The classic ones…

AI blockchain cybersecurity

Risks of Artificial Intelligence on Society

By Dudu Mimran | October 27, 2017September 28, 2020 by Dudu Mimran

Random Thoughts on Cyber Security, Artificial Intelligence, and Future Risks at the OECD Event – AI: Intelligent Machines, Smart Policies It is the end of the first day of a fascinating event in artificial intelligence, its impact on societies, and how policymakers should act upon what seems like a once in lifetime technological revolution. As someone rooted deeply in the world of cybersecurity, I wanted to share my point of view on what the future…

cybersecurity

Thoughts on The Russians Intervention in the US Elections. Allegedly.

By Dudu Mimran | October 10, 2017September 28, 2020 by Dudu Mimran

I got a call last night on whether I want to come to the morning show on TV and talk about Google?s recent findings of alleged Russian sponsored political advertising. Advertising that could have impacted the last US election results, joining other similar discoveries on Facebook and Twitter and now Microsoft is also looking for clues. At first instant, I wanted to say, what is there to say about it but still, I agreed as…

cybersecurity

Some Of These Rules Can Be Bent, Others Can Be Broken

By Dudu Mimran | May 21, 2017September 29, 2020 by Dudu Mimran

Cryptography is a serious topic ? a technology based on a mathematical foundation posing an ever-growing challenge for attackers. On November 11th, 2016, Motherboard wrote a piece about the FBI?s ability to break into suspects? locked phones. Contrary to the FBI?s constant complaints about going dark with strong encryption, the actual number of phones they were able to break into was relatively high. The high success ratio of penetrating locked phones in some way doesn?t…

cybersecurity

Searching Under The Flashlight of Recent WannaCry Attack

By Dudu Mimran | May 19, 2017September 29, 2020 by Dudu Mimran

Random thoughts about WannaCry Propagation The propagation of the WannaCry attack was massive and mostly due to the fact it infected computers via SMB1, an old Windows file-sharing network protocol. Some security experts complained that Ransomware has been massive for two years already and this event is only a one big hype wave though I think there is a difference here and it is the magnitude of propagation. There is a big difference when attack…

blockchain cybersecurity

United We Stand, Divided We Fall.

By Dudu Mimran | December 12, 2016September 29, 2020 by Dudu Mimran

If I had to single out an individual development that elevated the sophistication of cybercrime by order of magnitude, it would be sharing. Codesharing, vulnerabilities sharing, knowledge sharing, stolen passwords, and anything else one can think of. Attackers that once worked in silos, in essence competing, have discovered and fully embraced the power of cooperation and collaboration. I was honored to present a high-level overview on the topic of cyber collaboration a couple of weeks…

AI cybersecurity

Right and Wrong in AI

By Dudu Mimran | August 8, 2016September 29, 2020 by Dudu Mimran

Background The DARPA Cyber Grand Challenge (CGC) 2016 competition has captured the imagination of many with its AI challenge. In a nutshell, it is a contest where seven highly capable computers compete, and a team owns each computer. Each group creates a piece of software that can autonomously identify flaws in their computer and fix them and identify flaws in the other six computers and hack them. A game inspired by the Catch The Flag…

Is Chatbots a Passing Episode or Here to Stay?

By Dudu Mimran | July 9, 2016September 29, 2020 by Dudu Mimran

Chatbots are everywhere. It feels like the early days of mobile apps where you either knew someone who is building an app or many others planning to do so. Chatbots have their magic. It?s a frictionless interface allowing you to chat with someone naturally. The main difference is that on the other side there is a machine and not a person. Still, one as old as I got to think whether it is the end…

cybersecurity

Cyber-Evil Getting Ever More Personal

By Dudu Mimran | April 25, 2016September 29, 2020 by Dudu Mimran

Smartphones will soon become the target of choice for cyber attackers?making cyber warfare a personal matter. The emergence of mobile threats is nothing new, though until now, it has mainly been a phase of testing the waters and building an arms arsenal. Evil-doers are always on the lookout for weaknesses?the easiest to exploit and the most profitable. Now, it is mobile’s turn. We are witnessing a historic shift in focus from personal computers, the long-time…

cybersecurity

Is It GAME OVER?

By Dudu Mimran | May 6, 2015September 29, 2020 by Dudu Mimran

Targeted attacks take many forms, though there is one common tactic most of them share: Exploitation. To achieve their goal, they need to penetrate different systems on-the-go. The way this is done is by exploiting unpatched or unknown vulnerabilities. More common forms of exploitation happen via a malicious document that exploits vulnerabilities in Adobe Reader or a malicious URL that exploits the browser in order to set a foothold inside the end-point computer. Zero-Day is…

cybersecurity

Exploit in the Wild, Caught Red-Handed

By Dudu Mimran | April 29, 2015September 29, 2020 by Dudu Mimran

Imagine a futuristic security technology that can stop any exploit at the exact moment of exploitation?regardless of the way the exploit was built, its evasion techniques, or any mutation it might have or was possibly imagined to have. This technology is truly agnostic for any form of attack. An attack prevented with its attacker captured and caught red-handed at the exact point in time of the exploit…Sounds dreamy, no? For the guys at the stealth…

cybersecurity

Most cyber attacks start with an exploit – I know how to make them go away

By Dudu Mimran | April 6, 2015December 28, 2019 by Dudu Mimran

Yet another new Ransomware with a new sophisticated approach?http://blog.trendmicro.com/trendlabs-security-intelligence/crypvault-new-crypto-ransomware-encrypts-and-quarantines-files/ Pay attention that the key section in the description on the way it operates is “The malware arrives to affected systems via an email attachment.?When users?execute the attached malicious JavaScript file, it will?download four files from its C&C server:” When users execute the JavaScript files it means the JavaScript was loaded into the browser application and exploited the browser in order to get in and then…

cybersecurity privacy

No One is Liable for My Stolen Personal Information

By Dudu Mimran | April 6, 2015September 29, 2020 by Dudu Mimran

The main victims of any data breach are actually the people, the customers, whom their personal information has been stolen and oddly?they don?t get the deserved attention. Questions like what was the impact of the theft on me as a customer, what can I do about it?and whether I deserve some compensation are rarely dealt with publicly. Customers face several key problems when their data was?stolen, questions such as: Was their data stolen at all?…

cybersecurity startups

Cyber Tech 2015 – It’s a Wrap

By Dudu Mimran | March 26, 2015September 29, 2020 by Dudu Mimran

It has been a crazy two days at Israel?s Cyber Tech 2015?in a good way! The exhibition hall was split into three sections: the booths of the established companies, the startups pavilion and the Cyber Spark arena. It was like examining an x-ray of the emerging cyber industry in Israel, where on one hand you have the grown-ups whom are the established players, the startups/sprouts seeking opportunities for growth, and an engine which generates such…

cybersecurity

Distributed Cyber Warfare

By Dudu Mimran | March 8, 2015September 29, 2020 by Dudu Mimran

One of the core problems with cybercriminals and attackers is the lack of a clear target. Cyber attacks are digital in nature and as such, they are not tied to specific geography, organization, and or person – finding the traces to the source is non-deterministic and ambiguous. In a way, it reminds me of real-life terrorism as an effective distributed warfare model which is also difficult to mitigate. The known military doctrines always assumed a…

cybersecurity

Taming The Security Weakest Link(s)

By Dudu Mimran | February 26, 2015September 29, 2020 by Dudu Mimran

Overview The security level of a computerized system is as good as the security level of its weakest links. If one part is secure and tightened properly and other parts are compromised, then your whole system is compromised, and the compromised ones become your weakest links. The weakest link fits well with attackers? mindset which always looks for the least resistant path to their goal. Third parties in computers present an intrinsic security risk for…

cybersecurity

The Emergence of Polymorphic Cyber Defense

By Dudu Mimran | February 10, 2015September 29, 2020 by Dudu Mimran

Background Attackers are Stronger Now The cyber-world is witnessing a fast-paced digital arms race between attackers and security defense systems, and 2014 showed everyone that attackers have the upper hand in this match.? Attackers are on the rise due to their growing financial interest?motivating a new level of sophisticated attacks that existing defenses are unmatched to combat. The fact that almost everything today is connected to the net and the ever-growing complexity of software and…

cybersecurity

Counter Attacks – Random Thoughts

By Dudu Mimran | January 2, 2015September 29, 2020 by Dudu Mimran

The surging amount of cyber attacks against companies and their dear consequences pushes companies to the edge. Defensive measures can go only so far in terms of effectiveness, assuming they are fully deployed which is also far from being the common case. Companies are too slow to react to this new threat which is caused by a fast-paced acceleration in the level of sophistication of attackers. Today companies are at a weak point. From a…

startups

Consumers to Enterprise – The Investment Rationale Cycle

By Dudu Mimran | June 9, 2013September 29, 2020 by Dudu Mimran

Today the hottest thing in new startup investments is “enterprise” startups and for someone old like me, it gives a d?javue kind of feeling. It seems investments behave in a cyclical manner where the first field of growth is always in the area of consumer products. In consumer products innovation is only limited by imagination. After a phase of massive investments in the area of “consumers,” there is a stage where a big portion of…

startups

The dark side of Android fragmentation

By Dudu Mimran | February 2, 2012September 29, 2020 by Dudu Mimran

One of the main problems with Android for app developers contemplating on Android vs. iOs is the fact it is highly fragmented. On iOS you, unconsciously, know that you need only to build one version (Let’s keep the example simple) and it will work on all devices, you know that Apple is doing everything to make sure everyone has the latest version and that there is a decent level of backward compatibility. ?For Android developers…