Connect with us

News

A SPECIALIST TO THE FORE

Published

on

Updated : May 31, 2015 0:0  ,
By Editor

6ELITE VAD is a fast emerging VAD focusing on info security solutions with HQ in Egypt and multiple office spanning MEA territories. George Ezzat, CEO of Elite VAD speaks with the Integrator Magazine about the company’s focus areas and solutions

Discuss the company’s focus for the region and in terms of domains? How has the growth been?EliteVAD is a Value Added IT Distributor presenting best breed edge Network Information Security and Network Infrastructure Management vendors within MEA. We are now part of GTS Group, a USA Holding Company.

EliteVAD focuses into the InfoSec space offering Security Solutions and Security Services including training to the channel arm of its resellers as well as the end-users, also we

The company is headquartered in Dubai, UAE with additional offices in Cairo, Amman, Nairobi and Kuwait. Led by experienced entrepreneurs who understand IT market needs, EliteVAD successfully noticed a 200% growth in terms of revenue between 2013 and 2014. We were able in 2015 to improve our Vendors’ market reach by doubling the number of vendors’ and covering different layers of security in addition to penetration expansion on Geo-market across MEA.

Your portfolio includes network security software as well as performance management solutions. Discuss your focus around this range?

We are partnering with several leading vendors. We are distributors for FireEye malicious threat protection solutions, VSS smart Tapping solutions, Algosec Network Security Policy Management, Next Generation DPI & Bandwidth Management Solutions from Procera Intelligent and more. We provide the new patented Fraud Prevention KFP solution protecting online banking activities and online payment services from Kaspersky. We partner with iboss, a leading provider of innovative APT Defense, Web Security and Mobile Security Solutions as well as IP-Guard for its powerful IT management software that enables organizations to mitigate internal threats by providing effective means to monitor and investigate user activities, and prevent data leaks. Among other vendors we are associated with include Expert Team (ET), a global leader in providing “LAWFUL INTERCEPTION (LI)” and “CONTENT FORENSICS”, Fluke Networks that offers solutions that span network deployment, network performance management and troubleshooting, as well as security and performance monitoring as well as  Arbor DDoS protection solutions.

Are there plans to extend into other new solution segments?

Our Vision is to become SuperVAD for innovative cybersecurity and infrastructure networking technology vendors. Thus we are looking at continuous expansion and sustainable growth both in terms of more solution segments as well as increased geographical footprint to achieve optimum returns to investors and employees.

Is there good awareness and interest among the CIOs of the region to invest in network performance monitoring & management solutions?

There is a growing interest among the CIOs of the region to invest in network performance monitoring and management solutions. We have therefore partnered with VSS Monitoring and Fluke for network performance monitoring as well as enhancement of current KPIs as well as decrease costs of upgrades and the best use of resources.

Do you see need for specific types of solutions against the changing landscape of changes and expectations?

In a tough sophisticated and competitive global landscape and against the background of the rise of targeted hacking campaigns, fully integrated security solutions are the need of the hour. These need to come with specific behavior based technology, combined with proactive forensics Services and Analysis tools for helping to build long-term strategic strengths in the ICT infrastructure for its sustenance against the changing landscape of threats.

How many active channel partners do you partner with? Any plans to recruit new partners in specific markets/verticals?

Here in EliteVAD we believe our scalability and success in any market can happen only with strong partners who can take ownership in positioning, selling, and supporting EliteVAD to their customers that’s why we aim to increase our channel arm by always recruiting qualified reseller partners. EliteVAD operates currently across MEA through a channel network of more than 50 resellers comprising of system integrators and corporate partners.

What is your pre-sales strength in terms of resources and what are the value propositions you offer partners along with pre-sales?

Combining specialist value-adding technical, pre-sales and sales team inside each local territory, our vendors and reseller partners rely upon EliteVAD to boost business opportunities in InfoSec and Net. Infrastructure Management and help achieve new revenues from the changing enterprise technology landscape. In addition to the facilities and support we offer to our reseller partners in the logistics and offered trainings to insure proper enablement of the partner.

The ‘Proof of Value’ program is a high key value we propose to our channel beside Professional Services and After-Sale support so we integrate and complement their delivery capacity

Which are your strong markets across MENA and where all do you have your offices?

EliteVAD is headquartered in Dubai, UAE; with additional offices in Cairo, Egypt; Amman, Jordan; and Nairobi, Kenya; Kuwait, Kuwait. We will be soon have offices in Saudi and Nigeria. We are proud having remarkable businesses in most countries across the GCC, Middle-East and Africa.

Continue Reading

Financial

Corporate Group and PwC sign MoU to build pathways, connecting academic excellence with corporate success

Published

on

Corporate Group and PwC

Corporate Group and PwC Academy Middle East have officially signed a Memorandum of Understanding (MoU), launching a strategic collaboration aimed at empowering the next generation of young professionals by bridging the gap between academic learning and real-world corporate experience. This initiative seeks to provide ambitious students with a clear pathway into the corporate world, equipping them with the skills and hands-on experience necessary to thrive in today’s competitive marketplace.

Mohamed Osman, Chairman and Co-Founder of Corporate Group, said: “Our partnership with PwC marks a pivotal step in shaping the future of our industry by equipping the next generation with practical experience, essential skills, and deep knowledge. Together, we’re committed to fostering talent in the UAE, and we look forward to making a lasting impact on the emerging workforce.”

This partnership leverages Corporate Group’s deep industry expertise and PwC Academy’s exceptional educational platform, allowing students to apply theoretical knowledge in a practical, dynamic setting.

Taimur Ali Mir, PwC Partner and Professional Qualifications lead at PwC Academy, added: “This collaboration further reinforces our commitment to enabling the workforce of the future with the right knowledge, skills, and mindset required to thrive in today’s dynamic financial landscape. We look forward to working with Corporate Group to deliver impactful and meaningful experiences that support the region’s talent development needs.”

Participants will gain firsthand exposure to real corporate challenges, deepening their understanding of business operations and developing the mindset, confidence, and problem-solving skills required to drive meaningful change.

Unlike traditional academic programs, this collaboration emphasises real-world readiness. Graduates will be fully equipped to enter the workforce as active contributors, ready to make an immediate and impactful difference within their organisations. They will be empowered to tackle complex problems, make informed decisions, and lead with purpose from day one—ultimately contributing to the sustained growth of the region’s business ecosystem.

Continue Reading

News

PNY Announces Strategic Partnership with METRA

Published

on

PNY

PNY is pleased to announce the establishment of a strategic partnership with METRA, recognized as the region’s fastest-growing IT Value Added Distributor.

With a dynamic team of over 500 regional employees, METRA collaborates with a network of over 30 distinguished vendors, as well as 6500 partners and resellers. Their focus on delivering exceptional value-added services and regional expertise has propelled their rapid growth and positioned them as a trusted leader in the industry.

PNY is proud of this new collaboration. The company will bring its extensive expertise and the power of NVIDIA AI solutions, from AI workstations to data centers, to this partnership.

Providing cutting-edge solutions such as NVIDIA Professional Visualization, NVIDIA TESLA, and NVIDIA DGX solutions, PNY helps improve the creativity, productivity, and performance of users. PNY’s technology partnerships are constantly evolving to stay up to date with the latest innovations. PNY proposes a full spectrum of high value-added solutions in HPC and Artificial Intelligence environments.

Through this collaboration, PNY and METRA aim to leverage their combined strengths to offer advanced technology solutions that meet the growing demands of the IT and AI sectors. This partnership marks a significant step forward in delivering unparalleled value and expertise to customers across the region.

Continue Reading

News

The Malware That Must Not Be Named: Suspected Espionage Campaign Delivers “Voldemort”

Published

on

Voldemort malware

In August 2024, Proofpoint researchers identified an unusual campaign using a novel attack chain to deliver custom malware. The threat actor named the malware “Voldemort” based on internal filenames and strings used in the malware. 

The attack chain comprises multiple techniques currently popular within the threat landscape as well as uncommon methods for command and control (C2), like the use of Google Sheets. Its combination of tactics, techniques, and procedures (TTPs), lure themes impersonating government agencies of various countries, and odd file naming and passwords like “test” are notable. Researchers initially suspected the activity may be a red team. However, the large volume of messages and analysis of the malware very quickly indicated it was a threat actor.  

Proofpoint assesses with moderate confidence this is likely an advanced persistent threat (APT) actor with the objective of intelligence gathering. However, Proofpoint does not have enough data to attribute with high confidence to a specific named threat actor (TA). Despite the widespread targeting and characteristics more typically aligned with cybercriminal activity, the nature of the activity and capabilities of the malware show more interest in espionage rather than financial gain at this time. 

Voldemort is a custom backdoor written in C. It has capabilities for information gathering and to drop additional payloads. Proofpoint observed Cobalt Strike hosted on the actor’s infrastructure, and it is likely that is one of the payloads that would be delivered.  

Beginning on 5 August 2024, the malicious activity included over 20,000 messages impacting over 70 organizations globally. The first wave of messages included a few hundred daily but then spiked on 17 August with nearly 6,000 total messages.  

Messages purported to be from various tax authorities notifying recipients about changes to their tax filings. Throughout the campaign, the actor impersonated tax agencies in the U.S. (Internal Revenue Service), the UK (HM Revenue & Customs), France (Direction Générale des Finances Publiques), Germany (Bundeszentralamt für Steuern), Italy (Agenzia delle Entrate), and from August 19, also India (Income Tax Department), and Japan (National Tax Agency). Each lure was customized and written in the language of the authority being impersonated. 

Proofpoint analysts correlated the language of the email with public information available on a select number of targets, finding that the threat actor targeted the intended victims with their country of residence rather than the country that the targeted organization operates in or country or language that could be extracted from the email address. For example, certain targets in a multi-national European organization received emails impersonating the IRS because their publicly available information linked them to the US. In some cases, it appears that the threat actor mixed up the country of residence for some victims when the target had the same (but uncommon) name as a more well-known person with a more public presence. Emails were sent from suspected compromised domains, with the actor including the agency’s real domain in the email address.

The threat actor targeted 18 different verticals, but nearly a quarter of the organizations targeted were insurance companies. Aerospace, transportation, and university entities made up the rest of the top 50% of organizations targeted by the threat actor.  

Proofpoint does not attribute this activity to a tracked threat actor. Based on the functionality of the malware and collected data observed when examining the Sheet, information gathering was one objective of this campaign. While many of the campaign characteristics align with cybercriminal threat activity, we assess this is likely espionage activity conducted to support as yet unknown final objectives.  

The Frankensteinian amalgamation of clever and sophisticated capabilities, paired with very basic techniques and functionality, makes it difficult to assess the level of the threat actor’s capability and determine with high confidence the ultimate goals of the campaign. It is possible that large numbers of emails could be used to obscure a smaller set of actual targets, but it’s equally possible the actors wanted to genuinely infect dozens of organizations. It is also possible that multiple threat actors with varying levels of experience in developing tooling and initial access worked on this activity. Overall, it stands out as an unusual campaign.   

The behavior combines a variety of recently popular techniques observed in several disparate campaigns from multiple cybercriminal threat actors that have used similar techniques as part of ongoing experimentation across the initial access ecosystem. Many of the techniques used in the campaign are observed more frequently in the cybercriminal landscape, demonstrating that actors engaging in suspected espionage activity often use the same TTPs as financially motivated threat actors. 

While the activity appears to align with espionage activity, it is possible that future activities associated with this threat cluster may change this assessment. In that case, it would indicate cybercriminal actors, while demonstrating some typical e-crime delivery characteristics, used customized malware with unusual features currently only available to the operators and not abused in widespread campaigns, as well as very specific targeting not normally seen in financially motivated campaigns. 

Defense against observed behaviors includes restricting access to external file sharing services to only known, safelisted servers; blocking network connections to TryCloudflare if it is not required for business purposes; and monitoring and alerting on use of search-ms in scripts and suspicious follow-on activity such as LNK and PowerShell execution. 

Proofpoint reached out to our industry colleagues about the activities in this report abusing their services, and their collaboration is appreciated. 

Continue Reading

Trending

Please enable JavaScript in your browser to complete this form.

Copyright © 2023 | The Integrator