BlackFog unveils AI update to detect dormant cyber attackers
The updated platform focuses on detecting attackers who remain dormant within networks for prolonged periods before executing targeted assaults. Industry trends have shown that many hackers can remain undetected for months or even years, highlighting the need for improved detection of these so-called variable dwell time attacks. Simultaneously, organisations face heightened risks from insiders, as disgruntled employees and external ransomware groups escalate tactics to recruit or coerce internal actors.
BlackFog's new baseline activity monitoring trains individual devices over seven to thirty days, assessing typical activity and actively searching for deviations. When an activity surpasses a set threshold, an alert is raised in the platform's management console, enabling security teams to investigate further. The technology adapts automatically to an organisation's environment, accounting for factors such as time zones and working days to avoid false positives and ensure suspicious activity is accurately detected.
Dr. Darren Williams, Founder and Chief Executive Officer of BlackFog, commented, "With the increasing costs of remediation, fines, and business loss now exceeding 1 million dollars, it is becoming critical to protect not only customer data but all your digital assets from the threat of extortion. With more than 95% of all ransomware attacks now involving data exfiltration, it is more critical than ever to protect your data."
BlackFog's anti-data exfiltration (ADX) technology is designed to add a further layer of cyber defence, aiming to address gaps left by firewalls and endpoint detection and response (EDR) solutions. The platform offers coverage for devices running Windows, macOS, Chrome, Android, and iOS, providing what the company describes as round-the-clock defence without the need for direct human input. By focusing on blocking emerging attacks powered by artificial intelligence, BlackFog aims to equip organisations with new tools to address an evolving threat landscape.
The updated platform targets common attack vectors, including living off the land attacks, which use legitimate tools and processes to evade detection. BlackFog's focus on baseline monitoring is intended to spot irregularities pointing to such covert techniques or insider threats before they escalate into serious breaches or ransomware incidents.
BlackFog was established in 2015 as a cybersecurity firm utilising artificial intelligence to underpin its anti-data exfiltration technology. The company reports that more than 94% of attacks involve some form of data exfiltration, which it regards as a critical issue for organisations seeking to reduce extortion risk, protect customer data, and safeguard intellectual property.
BlackFog's solutions have been subject to industry recognition, receiving the Gold Globee award for AI-Driven Data Protection Solution and the Cybersecurity Breakthrough Award for AI-based Cybersecurity Innovation of the Year. The company also notes a Gold achievement at the Globee awards in 2024 for best Data Loss Prevention and was recognised in the State of Ransomware report for contributions to digital security.
The new updates reflect an ongoing trend in cybersecurity where proactive prevention and detection mechanisms are viewed as increasingly necessary, given evolving attacker tactics and increased pressure on organisations to avoid costly breaches and data loss.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Otago Daily Times
9 hours ago
- Otago Daily Times
Russia orders state-backed app for devices
Russia wants to promote the popularity of MAX, the new state-controlled messaging app. Photo: Reuters (file) A Russian state-backed messenger application cast as a rival to WhatsApp, which critics say could be used for surveillance purposes, must be pre-installed on all mobile phones and tablets from next month, the Russian government has ordered. The decision to promote the popularity of MAX, the new state-controlled messaging app, comes after Russia restricted some calls on WhatsApp, owned by Meta Platforms, and on Telegram, accusing the foreign-owned platforms of failing to share information with law enforcement in fraud and terrorism cases. The government, which is seeking greater control over the internet space, said in a statement on Thursday that MAX, which will be integrated with government services, would be on the list of mandatory pre-installed apps on all "gadgets", including mobile phones and tablets, sold in Russia from September 1. It will also be mandatory from the same date for Russia's domestic app store, RuStore, currently pre-installed on all Android devices, to be pre-installed on all Apple devices, the government said. An online Russian-language TV app called LIME HD TV, which allows people to watch Russian state TV channels for free, will be pre-installed on all smart TVs sold in Russia from January 1 next year, the government added.
Techday NZ
15 hours ago
- Techday NZ
Microsoft sets 2033 deadline for post-quantum security rollout
Microsoft has detailed its Quantum Safe Program as part of an ongoing transformation to protect infrastructure, customers and global ecosystems from the potential threats posed by future quantum computers. The company is integrating post-quantum cryptography (PQC) into components such as SymCrypt, its core cryptographic library, and Transport Layer Security (TLS), with updates extending to authentication systems, key management, signing services, and a full range of Microsoft products, including Windows, Azure, Microsoft 365, data and AI services, and networking platforms. Quantum threat landscape Quantum computing is likely to enable breakthroughs across a variety of industries but also introduces a new level of risk. Future scalable quantum computers could undermine today's public-key cryptography and digital signatures, compromising authentication and identity verification systems. While such quantum computers are not yet available, Microsoft and security experts agree that immediate preparations are necessary. The prospect of so-called "Harvest Now, Decrypt Later" (HNDL) attacks adds urgency, where attackers might record encrypted data now and decrypt it later once quantum computers become operational. In response, the security industry - including Microsoft - is prioritising the development and implementation of quantum-safe algorithms and protocols. Industry-wide alignment Microsoft stated that the Quantum Safe Program (QSP) closely aligns with United States government initiatives and timelines on quantum safety, referencing guidance from agencies including the Office of Management and Budget (OMB), the Cybersecurity and Infrastructure Security Agency (CISA), the National Institute of Standards and Technology (NIST), and the National Security Agency (NSA). The company is also monitoring quantum-safe policies from governments in the European Union, Japan, Canada, Australia, and the United Kingdom. Microsoft's roadmap targets completion of the transition to PQC across all products and services by 2033, which is two years before the 2035 deadline that most major governments have set. The company's approach is designed to enable early adoption by 2029, with a gradual shift to making quantum-safe technologies the default. Phases of transition The transition plan to quantum security is structured into three phases. The first phase involves updating foundational cryptographic components such as SymCrypt, which underpins the security of Microsoft operating systems and cloud services. The second phase focuses on core infrastructure services including identity authentication and key management. The third and widest phase extends quantum-safe updates to all services and endpoints, across Windows, Azure, Microsoft 365, and the company's data and AI offerings. SymCrypt has already introduced Module-Lattice Key Encapsulation Mechanism (ML-KEM) and Module-Lattice Digital Signature Algorithm (ML-DSA) through its Cryptography API: Next Generation (CNG), making these available to Windows Insiders and Linux users. TLS 1.3 is also being enhanced with support for hybrid and post-quantum key exchange to help thwart HNDL attack vectors. Ongoing collaboration Microsoft has been working with international standards bodies - including NIST, the Internet Engineering Task Force (IETF), International Organisation for Standardization (ISO), Distributed Management Task Force (DMTF), the Open Compute Project (OCP), and the European Telecommunications Standards Institute (ETSI) - to align quantum-safe cryptography standards and facilitate global interoperability. It has contributed to NIST's post-quantum cryptography efforts since at least 2017 and was a founding member of the Open Quantum Safe project. The company's research history in PQC includes experiments such as operating a VPN tunnel secured with experimental PQC algorithms between its Redmond campus and a datacentre located underwater in Scotland. Microsoft has also led the integration workstream for NIST's National Cybersecurity Centre of Excellence (NCCoE) Post-Quantum project and contributed the FrodoKEM cryptosystem to be included in ISO standards. Internal strategy "Our QSP is a comprehensive and company-wide effort to enable Microsoft, our customers, and partners, to transition smoothly and securely into the quantum era. The program is governed by the QSP leadership team with representatives across all major business groups, research and engineering divisions, and functions." Microsoft's strategy is based on three main priorities: making Microsoft itself quantum-safe, supporting customers and partners to do the same, and advancing research and international standards for quantum-safe technologies and crypto-agility, which is the ability to change cryptographic algorithms as threats emerge. The programme began with a comprehensive audit of cryptographic assets, followed by targeted investments in quantum-safe algorithms and partnerships to address critical dependencies and modernise hardware and firmware. The implementation of quantum-resilient solutions is taking place across the supply chain and ecosystem, with ongoing adoption of open-source silicon-based protections. Call for early action Migration to PQC is described by Microsoft as a multi-year process that requires strategic planning and coordinated execution across industries. The company stresses that transitioning to quantum-safe security is not an instantaneous change but a "complex but essential process." "Migration to post quantum cryptography (PQC) is not a flip-the-switch moment, it's a multiyear transformation that requires immediate planning and coordinated execution to avoid a last-minute scramble." Microsoft encourages organisations to address legacy technologies, modernise cryptographic standards, and begin their preparations for a future in which quantum computing may pose real risks to today's security mechanisms.
Otago Daily Times
2 days ago
- Otago Daily Times
Honda's new electric is the one
Photo: David Thomson ROAD TEST What's new? It may have come late to the party, but Honda now has its first fully electric new car on sale in New Zealand, the strangely familiar but distinctively named e:N1. Strangely familiar because, at a glance, one might easily be forgiven for labelling the new e:N1 as the all-electric variant of the latest HR-V. But the e:N1 sits on a new pure-electric platform, and that's what the "e:N" part of its name signals. The number "1", meanwhile, indicates that it's the first model on this platform. What comes as standard? Standard features on the e:N1 include all-round LED lights, keyless entry, dual zone climate, an eight-way driver's power seat, artificial leather upholstery, a six-speaker audio, wireless charge pad, front and rear parking cameras, a reversing camera and heated mirrors. There's a fully digital main instrument cluster and the literal centre piece of the dashboard, a 38.3cm portrait-format touchscreen. Smartphone mirroring to the centre screen is provided, wireless for Apple devices and by cable for Android phones. Ancap safety testing has not yet been carried out on the e:N1, but it is fairly well provisioned with passive and active safety equipment. Key items include adaptive radar cruise control, lane departure and collision warning and assist systems, auto-dipping headlights, rear cross traffic alert, blind spot monitoring and road departure warning. What's it like inside? Up front, there are some visual similarities to the HR-V, but overall, the e:N1 goes its own way and departs from some Honda staples, including the traditional hooded instrument panel. Though presenting as an impressively large single display, the centre touchscreen is in fact divided into three separate sub-screens, with the climate controls at the bottom, main menu and information displays (including battery use information) in the middle, and smartphone mirroring at the top (or an oversized clock when a device is not connected). What's it like to drive? In how it drives the e:N1 feels purposefully designed to ease the transition to electric-vehicle motoring for those not yet experienced with such machines. As a prime example, floor the accelerator from rest, and it gathers pace modestly, rather than with the shove-in-the-back force that is a common EV characteristic. Honda has intentionally engineered the e:N1 to behave in this way to mimic the accelerative feel of a petrol car, in part it says for reasons of passenger comfort. That said, the car is no slouch, with a quoted 0-100kmh time of 7.6 seconds and, once off the mark, it picks up the pace in a typically responsive and linear EV way. Whether round town or out on the highway, the e:N1 is an easy car to drive smoothly, and it is comfortable, quiet (aside from the whine of its electric motor) and generally quite refined. Ride quality tends to the firmer side for a vehicle of this type, meaning the e:N1 doesn't sponge surface imperfections away as deftly as some of its rivals, but maintains balance better through medium-to-slow bends. It's great that a paddle-shift activated multi-mode regenerative braking system is fitted to the e:N1. It's entertaining to use and can contribute usefully to economy, especially when activated in sport mode, which is the only way to make it hold the braking intensity you have chosen for more than a few seconds before reverting to the mildest setting. I'd love to see more difference in braking force between the modes, and a more aggressive "maximum regen" mode, which is something the likes of Kia does very well. The matter of real world economy and ease of recharging is one that needs to be carefully traversed. The headline figure of "range up to 500km" that Honda quotes for the e:N1 is generous even beyond the optimism of the vehicle's standard WLTP range figure of 412km; even that latter figure is only likely to be achievable in relatively mild weather urban driving, in a city that is reasonably flat. When I picked up the test car with the battery fully charged, the range estimator was showing just over 300km available. At the same time, the trip computer revealed that this car's first 739km of driving had been achieved with an efficiency of 3.7km/kWh. I'll do the math for you and reveal that equates to range of around 230km from fully charged. As Drivesouth has noted before, hilly terrain and cold weather dramatically increase energy use on any vehicle, and it's patently obvious with EVs as their range is a point of focus. Some careful assessment on test suggests a realistic real-world range on an extended highway haul will be in the order of 250-320km; that's not stellar for an EV in 2025, but nor is it unusual for a vehicle of this approximate size with a standard rather than extended range battery pack. A further point is that by the latest standards, the e:N1 is not a fast charger, being restricted to a maximum 78kW charge rate on a modern DC rapid charger. Some obvious rivals are similarly restricted, but the emerging standard — accessible with the rollout of superchargers across the country — is well over 100kW, and premium models can charge at double that. What this means is that when you use one of those faster chargers your e:N1 won't be able to make use of its full potential; at best, it will take around 45 minutes to charge the battery from 10-80% of capacity. Home charging, though, is industry-standard, at rates of around 7kW with a single phase wall box (which Honda is offering with the e:N1 at present). With this facility, overnight charging is all you'll need unless venturing out of town. It's both cheaper and easier on an EV's battery than a commercial rapid charger, and most likely you'll only need to hook the car up every few days. Verdict The new e:N1 is a solid first effort for Honda in this country, especially suited to those customers seeking a capable day-to-day urban EV with decent capacity to venture away from home when required. [abridged] By David Thomson
