Greetings, from Cloudbric.
Here’s the latest from Cloudbric: for August 14th to August 27th
1.Technology Developments
*Blockchain service development
→ Payment via KLAY & CLBK service launch: 85% complete (estimated time of completion: 2021 3Q)
- Technical review completed
- Service development in progress
*Cloudbric Labs Threat DB database upgrade (cyber threat information data platform based on blockchain technology)
→ Malicious IP (Hacker IP) DB update: 40% complete (estimated time of completion: end of 2021 3Q)
- Technical review and development scope review complete
- Core technology development
→ Phishing URL database upgrade: 10% complete (estimated time of completion: end of 2021 3Q)
- Technical review in progress
→ Hacker wallet database upgrade: 10% complete (estimated time of completion: end of 2021 3Q)
- Technical review in progress
*Cryptobric App Update
→ Version 2.0 for iOS in development : 30% complete (estimated time of completion: end of 2021 3Q)
- Technical review completed
- Front-facing user interface planning complete
- Service development in progress
→ V3.0 SWG (SMS Phishing detection): 45% complete (estimated time of completion: end of 2021 4Q)
- SMS Phishing detection function planning for technology development
- Backend server setup in progress
*Cloudbric CDN Service launch
→ CDN Setting and dashboard development: 20% complete (estimated time of completion: 2021 3Q)
- Technical review completed
- Frontend UI planning in progress
*Cloudbric WMS launch
→ WAF Managed Service launch: 95% complete (estimated time of completion: 2021 3Q)
- Service Development Complete
- Functional Test in progress
*AWS Marketplace WAF ruleset development
→ Cloudbric Ruleset for AWS WAF: 95% complete (estimated time of completion: 2021 4Q)
- Web attack detection/block rules based on Cloudbric engine
- New Malicious IP Block feature based on blockchain technology
- WAF ruleset implementation complete
- AWS Marketplace registration application submitted
- Awaiting confirmation from AWS Marketplace
*Cloudbric RAS (Remote Access Solution)
→ Supported protocols added: 40% complete (estimated time of completion: 2021 4Q)
→ Cloudbric now provides stronger infrastructure security for the service. The updated dashboard and report presents users with usage and service status for a better user experience.
- Technical review completed
- New system components and coverage reviewed
- Frontend UI planning in progress
*VISION (Deep Learning Security Engine) Commercialization
→ Source code analysis for VISION commercial structuring VISION: 45% Complete (estimated time of completion: end of 2021 4Q)
→ Commercial module development: 30% complete(estimated time of completion: end of 2021 4Q)
- Revisions for improvements regarding source code and engine.
- Review of additional lists to be included in the supervised learning of the Deep Learning Engine.
- Ongoing review of different learning strategies by domain.
2. Cloudbric News
Cloudbric provides cloud & edge security to companies around the world. Specifically, small and medium-sized businesses (SMBs) that lack the expertise are often unable to allocate dedicated personnel to cloud and website security even if they want to migrate their infrastructure to the cloud. Cloudbric provides our security services including WAF+ and ADDoS to these companies via our global partners. To provide our services to more customers, Cloudbric recently signed a new partnership deal with Zero Networks in Tokyo. Via our new partner Zero Networks, Cloudbric will now be able to plan, set up, and support more corporate clients in Japan; we thus anticipate increasing our market share in the cloud security vertical.
> Read more about Cloudbric x Zero Networks Partnership (Japanese) (LINK)
3. Security News
- FBI releases alert about Hive ransomware after attack on hospital system in Ohio and West Virginia — ZDNet
The FBI has released an alert explaining that Hive is affiliate-operated ransomware first seen in June that deploys “multiple mechanisms to compromise business networks, including phishing emails with malicious attachments to gain access and Remote Desktop Protocol to move laterally once on the network.” - Microsoft Breaks Silence on Barrage of ProxyShell Attacks — Threat Post
Microsoft has broken its silence on the recent barrage of attacks on several ProxyShell vulnerabilities that were highlighted by a researcher at Black Hat earlier this month. The company released an advisory late Wednesday letting customers know that threat actors may use unpatched Exchange servers “to deploy ransomware or conduct other post-exploitation activities” and urging them to update immediately. - “Sophisticated” Cyber-Attack Compromises Patient Data at Singapore’s Private Health Clinic — Infosecurity
73,000 patients have been affected by a “sophisticated ransomware cyber-attack” on a private medical clinic in Singapore. Eye & Retina Surgeons revealed the attack took place on 6 August, compromising sensitive data including patients’ names, addresses, ID card numbers, contact details, and clinical information.
