fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

US Govt Offers $10 Million Reward for Tips on Nation-state Hackers

US Govt Offers $10 Million Reward for Tips on Nation-state Hackers

The United States government has taken two more active measures to fight and defend against malicious cyber activities affecting the country’s business and critical infrastructure sectors.

One initiative is a website with resources from across the federal government designed to help businesses and communities from ransomware attacks.

The other is offering a reward of up to $10 million for information on operations conducted by actors working for a foreign government.

Tackling the ransomware threat

Earlier this week, the U.S. Government launched the StopRansomware.gov website specifically to help private and public entities mitigate the ransomware threat.

It is meant as a central platform for information about ransomware gathered from all federal government agencies, which includes the guidance, the latest alerts, updates, and resources.

StopRansomware.gov includes resources and content from DHS’s Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Secret Service, the Department of Justice’s Federal Bureau of Investigation (FBI), the Department of Commerce’s National Institute of Standards and Technology (NIST), and the Departments of the Treasury and Health and Human Services” – U.S. Department of Homeland Security

The ransomware threat has grown to unprecedent levels lately, with attacks on critical infrastructure and businesses that rippled to the regular individual.

Cyberattacks like those on giant JBS Foods, the largest meat producer in the world, on Colonial Pipeline – the main fuel supply line for the U.S. East Coast, or the more recent one on Kaseya, which affected up to 1,500 businesses worldwide, highlighted even more the effort necessary to tackle it.

Also Read: 4 Reasons to Outsource Penetration Testing Services

Tracking nation-state hackers

On Thursday, the U.S. Department of State announced that its Rewards for Justice (RFJ) program now incentivize reports of foreign malicious activity against U.S. critical infrastructure.

The reward is up to $10 million and it is intended for details that can help identify and locate any person that acts on behalf of a foreign government in malicious cyber operations.

The actions may include extortion as part of a ransomware attack, stealing information from protected systems, “and knowingly causing the transmission of a program, information, code, or command, and as a result of such conduct, intentionally causing damage without authorization to a protected computer.”

“Protected computers include not only U.S. government and financial institution computer systems, but also those used in or affecting interstate or foreign commerce or communication” – U.S. Department of State

The payment may be enough to encourge hackers involved in attacks affecting critical infrastructure in the U.S. to turn on each other and get a legal, stress-free payout.

To receive the information in a secure fashion and to protect the safety of potential sources, the Department of State set up a tips-reporting service on the dark web:

http://he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion [access through Tor browser]

For this purpose, RFJ is using the SecureDrop platform that is typically used by journalists for secure communication with their sources and to protect their identity by using random codes instead of usernames.

US Department of State Secure Drop service

Additionally, payments through the RFJ program may also be in cryptocurrency, which can help tipsters maintain their anonymity and receive the reward.

Also Read: Vulnerability Assessment vs Penetration Testing: And Why You Need Both

The RFJ program started in 1984 and has paid more than $200 million to over 100 individuals offering information that helped in the fight against terrorism (prevent terrorist acts, bring terrorists to justice) and deal with threats against the U.S. national security.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us