Latest news with #CTM360
Zawya
4 days ago
- Business
- Zawya
Fawry joins forces with CTM360 to strengthen digital risk protection and safeguard customers from evolving cyber threats
Cairo, Egypt – Fawry, Egypt's leading fintech company, has partnered with CTM360, a globally recognized leader in Digital Risk Protection, to strengthen its cybersecurity capabilities and protect its digital ecosystem from evolving online threats. The collaboration is a key step in Fawry's commitment to strengthening its digital defenses and ensuring a safer online experience for its customers and partners. Through this partnership, Fawry will gain real-time visibility into potential cyber risks, enabling the company to swiftly detect and respond to threats such as impersonation, fake campaigns, and data leaks across the surface, deep, and dark web. CTM360's platform provides instant alerts for any unauthorized use of Fawry's brand across domains or digital services, allowing for immediate takedown actions and reducing exposure to fraud. In addition, the platform offers valuable industry benchmarking tools, enabling Fawry to assess its cybersecurity posture against global fintech leaders. This comprehensive approach empowers Fawry to maintain a proactive stance against digital threats, reinforcing its position as a trusted partner in the financial services space. Hisham Moawad, Chief Information Security Officer at Fawry, commented, ' As digital transactions continue to grow, ensuring a secure and trustworthy ecosystem is vital. Partnering with CTM360 has given us a powerful advantage in monitoring and mitigating threats before they escalate. With real-time alerts and deep visibility, we are strengthening our cyber defenses for our users across our platforms, ensuring a safer and more secure digital experience for all.' 'CTM360 is proud to support Fawry in enhancing their cyber resilience," said Mirza Asrar Baig, CEO & Founder, CTM360. "Our partnership has already yielded significant security advancements, and we anticipate further progress as we continue to address emerging threats through proactive defense strategies. This partnership signifies Fawry's commitment to cybersecurity, creating a secure digital environment for users. Collaborating with CTM360 provides advanced capabilities for improved threat detection, faster response, and enhanced brand protection. This collaboration also aids financial institutions, merchants, and service providers in confidently navigating today's complex digital landscape. About Fawry: Founded in 2008, Fawry Egypt's leading fintech company serving the banked and unbanked population. Fawry's primary services include enabling electronic bill payments, mobile top-ups and provisions for millions of Egyptian users. Other digital services also include e-ticketing, cable TV, and variety of other services. Through its peer-to-peer model, Fawry is enabling corporates and SMEs to accept electronic payments through a number of platforms including websites, mobile phones, and POSs. With a network of 36 member banks, its mobile platform and 396 thousand agents, Fawry processes more than 6 million transactions per day, serving an estimated customer base of 53.8 million users monthly. Learn more at About CTM360 CTM360 is a consolidated external security platform that seamlessly integrates External Attack Surface Management (EASM), Exposure Management, Digital Risk Protection (DRP), Cyber Threat Intelligence (CTI), and Takedowns. CTM360 has exceptional expertise in takedowns, making it a core competency; it empowers organizations to identify and mitigate external cyber risks and threats proactively. To Learn about CTM360, visit
Business Mayor
22-05-2025
- Business
- Business Mayor
CTM360 report: Ransomware exploits trust more than tech
A recent wave of ransomware attacks has disrupted major retailers across the UK. According to a new report from CTM360, the attackers didn't need to break down the door, they were invited in through misplaced trust and weak identity safeguards. This wasn't about advanced malware or zero-day vulnerabilities. The attackers used common tactics: impersonating IT staff, tricking employees into handing over credentials, and intercepting multi-factor authentication codes. From there, they moved across networks. What went wrong? The report outlines a familiar yet dangerous pattern: attackers gained access through social engineering, stayed hidden while gathering intel, and finally deployed ransomware to cripple operations. In one case, the attackers added their own identity provider to a retailer's single sign-on system, giving them long-term access even after passwords were changed. They monitored internal communication channels, learned how the company handled security alerts, and used that knowledge to delay detection. When the time came, they hit hard. Ransomware locked systems. Online sales stopped. Contactless payments failed. And behind the scenes, sensitive data had already been stolen for added leverage. The bigger picture Ransomware groups don't need zero-days. They rely on people, misconfigurations, and common tools. The entry point might not be malware, it might be a phone call or a spoofed login screen. For CISOs, the real lesson here isn't just about controls. It's about assumptions. These attacks succeeded not because defences failed, but because basic trust was abused: trust in employees to recognize phishing attempts, trust in identity systems to block unauthorised access, and trust in remote access tools that attackers easily repurposed. This campaign echoes a broader trend. Threat actors are targeting identity, not infrastructure. They exploit how users authenticate, how systems connect, and how access is granted across cloud and on-prem environments. What CISOs should focus on The report recommends: Seeing the organization from an attacker's perspective Reducing digital exposure across identity and supply chain systems Reviewing remote access practices Applying focused hardening policies that are easy to enforce Auditing how internal trust boundaries are managed Download CTM360's How To Harden Against Ransomware report and discover how ransomware groups are exploiting identity systems instead of technical flaws. How CTM360 can help CTM360 offers a comprehensive, fully managed cybersecurity approach to help organizations become harder targets. Its platform brings together key services such as External Attack Surface Management (EASM), Digital Risk Protection (DRP), and Third-Party Risk Management (TPRM), enabling enterprises to proactively identify and mitigate vulnerabilities. EASM helps organizations uncover hidden entry points, such as exposed IPs and applications, before attackers can exploit them. DRP goes a step further by detecting early indicators of warning (IOW) and attack (IOA), effectively disrupting cybercriminals' planning phases. For organizations dependent on vendors, TPRM provides visibility into supply chain risks by identifying insecure configurations or vulnerable third parties. Complementing these services, CTM360 also offers Cyber Threat Intelligence (CTI) tailored to specific threat profiles and tactics, as well as robust email security through Domain-based Message Authentication, Reporting and Conformance (DMARC) enforcement.
