Connect with us

Features

Best practises key to combating ransomeware attacks

Published

on

The Infoblox Intelligence Unit observed two global malware outbreaks on Friday, May 12. Although there is no indication that the two attacks were related, both were ransomware attacks with the goal of encrypting the victim’s files, demanding a payment (mostly in the form of a Bitcoin payment) in order to decrypt them.

Several reports conflated the two outbreaks based on the evidence at hand and the common use of ransomware. Subsequent investigation revealed that they were separate attacks utilizing different distribution capabilities and malware. It is important to understand the difference between the two attacks because each one requires slightly different remediation measures.

The first attack, WannaCry, is a self-propagating worm, which leverages a known and patched vulnerability in Microsoft Server Message Block (SMB). It leverages an exploit called ETERNALBLUE and goes on to establish a backdoor known as DOUBLEPULSAR to allow for future access to the infected systems. WannaCry spreads by connecting to SMB services on local and Internet-facing systems with the vulnerability or running the backdoor. The malware then spreads laterally by attempting connections to all systems on the local network.

During its initial infection WannaCry checks whether an external domain (killswitch domain) is available. If the killswitch domain can be contacted, the encryption function does not run. The killswitch domains are not a command-and-control server for the malware and should be monitored but not blocked. Before May 12, the domains were not registered. Shortly after the attack started, a malware researcher registered and sinkholed the first domain. This helped prevent a lot of later infections since the malware was able to resolve the domain. If left to run normally, WannaCry will encrypt most files on a machine. Once the files are encrypted, users will be prompted to pay $300 in Bitcoin to get their files back. The cost goes up to $600 if a user takes too long to pay, and eventually the user will be unable to pay to have files returned. Note that Microsoft had issued a patch for the SMB vulnerability that was being exploited in March 2017. That patch was not universally implemented.

While the world was preoccupied with WannaCry, there was another ransomware attack in progress called Jaff. The Jaff ransomware was launched by Necurs, one of the largest botnets in the world, notorious for spreading threats such as the Locky ransomware and the Dridex banking Trojan. It sends misleading emails to its victims encouraging them to open an attached PDF document. This document asks for additional permissions when opened and if approved, allows the delivery and execution of the ransomware payload. The emails used to deliver Jaff employ standard spam techniques, but the exact details vary between each of the concurrent campaigns.

Once Jaff has been downloaded and executed by the malicious document it connects to its C2 servers to communicate that encryption of the victim’s files has begun. Jaff then proceeds to encrypt the victim’s files, instructs the victim to install Tor Browser, and directs the users to a specific web site that displays a ransom note and payment instructions. The exact amount demanded by the ransom varies over time, but currently averages around 2 Bitcoin (roughly $3,500 dollars).

Best Practice Recommendations:
In the face of these attacks, organizations in the Middle East are asking what they can do.
• Implementing patches in a timely manner: WannaCry’s reliance on a known vulnerability and network scanning indicates that some traditional defenses may be effective. Ensuring timely software updates and keeping systems patched would eliminate the vulnerability and the worm’s ability to spread through that exploit.
• Sinkholing: Unlike the typical command-and-control domains, which should be blocked, WannaCry used a killswitch domain which had to be resolved in order to avoid activating the ransomware’s encryption function. One best practice is for an enterprise to redirect its internal request for those domains to an internal sinkhole. Permitting the infected client to successfully connect to the killswitch domain will prevent the encryption function from completing. It will also enable the enterprise to identify its internal hosts that have been impacted by the malware.
• DNS Response Policy Zone (RPZ) capability: Using RPZ capability on the DNS server to monitor any hits to the killswitch domain helps identify infected clients.
• Using up-to-date threat intelligence: organizations should leverage up-to-date and curated threat intelligence across their entire security and DNS infrastructures to protect against malicious activity and DNS

Features

Navigating Merchant Payments under CBUAE’s New Payment Token Services Regulation

Published

on

Payment Token Services Regulation

By: Akshata Namjoshi, Associate Partner, KARM Legal
Kabir Hastir Kumar, Associate, KARM Legal

Blockchain and digital assets are transforming the financial landscape, with increasing applications in payments, lending, and asset management.

Stablecoins are particularly being explored for payments due to their price stability. According to the CoinGate Q1 2024 report, USDT transactions accounted for 41.4% of all crypto payments, highlighting a growing trend towards stablecoin use in commerce. Additionally, Deloitte’s report underscores that over 60% of merchants express significant interest in accepting cryptocurrency payments, aiming to enhance customer experience and expand their market reach.

Merchants are increasingly interested in enabling their customers to pay with cryptocurrency. They partner with various acquiring platforms that facilitate these transactions through third-party crypto liquidity providers. Enabling such payment options benefits merchants by expanding their customer base, offering payment flexibility, and enhancing overall customer experience.

In the UAE, the Central Bank of the UAE (CBUAE) has recently introduced the Payment Token Services Regulation (PTSR), which imposes specific requirements on payments in virtual assets. This article discusses the impact of this regulation on merchant payments and its potential to shape the virtual asset industry in the region.

Risks with unregulated Crypto Merchant Payments

Many solutions globally have operated in a legally grey area, where fiat-to-virtual asset conversions were facilitated by both regulated and unregulated liquidity providers, posing risks particularly related to AML practices. Accepting crypto payments without stringent AML/KYC checks, including wallet screenings, could facilitate money laundering by integrating illicit funds into the traditional financial system. This highlights the importance of comprehensive AML measures to prevent illegal activities and ensure the integrity of the financial system. This can only be accomplished through regulation of all players invovled.

Position under PTSR

The new PTSR clarifies the legal framework for crypto payments in the UAE. Contrary to some beliefs, PTSR does not ban crypto payments but regulates them.

The PTSR stipulates that merchants can only accept payments for goods and services in dirham-backed stablecoins.

While many have interpreted this to mean an outright ban on crypto payments, there is no express prohibition on licensed Virtual Asset Service Provider (VASP) first converting virtual assets to fiat or dirham backed stablecoins.  

The conversion of virtual assets into fiat or dirham-backed tokens through VARA or SCA -regulated VASPs is still permissible provided the appropriate no-objection registrations and licenses are procured from the CBUAE.

Implications on Existing Merchant Acquirers and Payment Aggregators

Merchant acquirers and payment aggregators in the UAE, regulated under the Retail Payment Services and Card Schemes Regulation (RPSCS Regulation), enable merchants to accept payments through various methods including debit cards, credit cards, and bank transfers. The PTSR though supersedes references to virtual assets in the RPSCS Regulation. Merchant acquirers and aggregators regulated under RPSCS Regulation can seek a custody and transfer license under PTSR for settlements in dirham-backed stablecoins, or a conversion license for facilitating fiat-to-stablecoin exchanges. If they wish to only handle the fiat leg of the transaction, they may continue under their existing license.

To enable trading of virtual assets – fiat/dirham backed stablecoins pairs, partnerships with VARA based VASPs can be explored. Such partnerships would involve front-end integrations to allow paying customers to acquire fiat/ dirham backed stablecoins for payment to merchants. All players must ensure that they operate within their licensing scopes for such arrangements.

Similar models can be seen in other jurisdictions, where the conversion of cryptocurrencies to fiat is handled by licensed VASP, and the fiat leg of the transaction is managed by payment service providers (PSPs), often operating in distinct regulatory environments.

Depending on the structure of the solution offered, contractual relationships will exist between (i) VASPs-paying customers for trading of crypto to fiat/dirham backed stablecoin; (ii) PSPs and merchants for acceptance and settlement of payments; and (iii) between PSPs and VASPs for front-end integration.  

These partnerships benefit all parties: customers enjoy flexible payment options, merchants expand their payment methods, and payment service providers and VASPs gain an additional revenue channel.

Implications for Merchants

Merchants should seek comprehensive solutions for seamless crypto payments. These solutions streamline payment processes and enhance customer satisfaction by providing more payment options. Additionally, adopting crypto payments can position merchants as forward-thinking and tech-savvy, attracting a broader audience and potentially increasing sales.

However, in the absence of such licensed solutions in the market currently, some platform structuring may have to be undertaken for quick go-to-market.

Conclusion

While the full impact of the PTSR on payments and the virtual asset market in the UAE is yet to unfold, this regulation marks a progressive step. It offers legal clarity, fosters trust among customers, and ensures regulatory compliance, mitigating AML risks. This novel approach is likely to positively influence the perception and adoption of virtual asset payments in the region, enhancing overall market confidence.

Continue Reading

Features

Luxury Through Training: Maintaining High Service Standards

Published

on

Sumo Sushi & Bento

By Jerome Mortel, COO of Sumo Sushi & Bento

In the ever-evolving landscape of the hospitality industry, maintaining high service standards is paramount to ensuring customer satisfaction and business success. At Sumo Sushi & Bento, we have long recognized that our greatest asset is our team. The role of continuous staff training, and development cannot be overstated when it comes to delivering exceptional service and creating memorable dining experiences for our guests.

Staff training serves as the foundation of excellence in any hospitality business. It equips employees with the necessary skills, knowledge, and confidence to perform their roles effectively. From understanding the menu and mastering culinary techniques to perfecting the art of customer service, comprehensive training programs ensure that every team member is well-prepared to meet the high standards set by the organization.

At Sumo Sushi & Bento, our training programs are designed to be thorough and ongoing. New hires undergo a rigorous onboarding process that covers everything from food safety protocols to customer interaction techniques. However, training does not stop once the initial onboarding is complete. We believe in the importance of continuous learning and development to keep our team motivated, engaged, and up to date with industry trends.

Adapting to Industry Changes

The hospitality industry is dynamic, with trends and customer preferences constantly evolving. Continuous staff training enables our team to adapt to these changes swiftly and effectively. Whether it’s incorporating new culinary trends into our menu or adopting the latest technology on our website or app to enhance customer experience, our training programs ensure that our staff is always at the forefront of innovation.

For instance, the recent surge in demand for contactless dining and digital payment options has necessitated a shift in how we operate. Through targeted training sessions, our staff has become proficient in using these new tools, ensuring that we continue to provide seamless and efficient service to our guests.

Enhancing Customer Experience

Customer experience is at the heart of the hospitality industry. Well-trained staff are better equipped to anticipate and meet the needs of our guests, leading to higher levels of customer satisfaction. Training programs that focus on soft skills, such as communication, empathy, and problem-solving, empower our team to create positive and memorable interactions with our customers.

Building a Strong Team Culture

Continuous training and development also play a crucial role in building a strong team culture. When employees feel valued and supported in their professional growth, they are more likely to be engaged and committed to their roles. This sense of belonging and loyalty translates into better teamwork and collaboration, which are essential for maintaining high service standards.

We believe in recognizing and rewarding our team’s achievements. Regular feedback sessions, performance reviews, and opportunities for career advancement are integral parts of our training programs. By investing in our staff’s growth and development, we create a positive work environment where excellence is the norm.

Investing in our Manpower

The role of staff training in maintaining high service standards cannot be underestimated. We are committed to providing continuous learning and development opportunities for our team. This commitment not only ensures that we deliver exceptional service to our guests but also drives our success in the competitive hospitality industry while fostering a culture of excellence that sets us apart.

Continue Reading

Features

Driving Adoption in Green Investments with Asset-Backed Tokens

Published

on

SunMoney

By Peter Bahorecz, Partner And Chief, Networking Officer, SunMoney

In today’s rapidly evolving financial world, where innovation is constantly pushing the boundaries, the intersection of renewable energy and blockchain technology has produced something truly remarkable: renewable energy-backed tokens. These tokens are not simply another addition to the list of digital tokens; they represent a manner for reconciling sustainability with contemporary finance, giving you an elegant and also stable asset class to invest in — no matter if you’re a seasoned investor or possibly new-to-investing. However, like any financial instrument that has withstood the test of time, their success depends on three key elements: security, transparency, and trust.

Security: The Unshakable Pillar of Renewable Energy-Backed Tokens

Security isn’t just a feature—it’s the bedrock of any credible digital asset. SDBN tokens are seamlessly blending avant-garde digitized assets and the power of the sun. The SDBN token is designed to be a bridge between traditional investments and the dynamic world of crypto, offering a level of built-in security that sets it apart from other digital assets. These tokens, specifically, backed by SunMoney Sonal Group’s solar power plants are not some abstract investment similar to shares; their value is supported by real-life, sustainable, and profitable on-power renewable energy generation. The smart contracts governing SDBN tokens are thoroughly audited to maintain the highest standards of security and reliability. In the complex regulatory environment of Dubai, where token issuance is governed by the Virtual Assets Regulatory Authority (VARA), compliance partner, VAF Compliance plays a crucial role by guiding UAE-based entities, like SDBN, through the intricacies of token issuance and ensuring compliance with VARA regulations. By providing expert assistance in the preparation and refinement of whitepapers, they act as a strategic partner, managing the regulatory relationship, and helping in navigating the compliance landscape with confidence, ensuring innovative financial products like the SDBN tokens meet all necessary legal standards. Continuous monitoring of VARA and MICA regulation changes further ensures that SDBN tokens remain compliant with the latest industry standards, providing peace of mind for all investors.

At the heart of this security is a rigorous Know Your Customer (KYC) process, ensuring that tokens do not end up in the wrong hands. Customers undergo a comprehensive KYC, which includes PEP and blacklist checks, eliminating the risks of supporting illicit activities such as terrorism, human trafficking, and money laundering. Moreover, security elements are embedded in the smart contracts to protect investors—particularly those new to the crypto space—from losing their tokens to fraud or technical mishaps. And if an investor loses access to their tokens, SDBN has the capability to replace the lost tokens and burn the originals, ensuring the investor’s assets remain secure.


Transparency: The Lifeblood of Trust in Asset-Backed Green Cryptocurrency Tokens
For asset-backed renewable energy tokens, transparency is crucial to building and sustaining investor trust. Without it, even the most innovative financial products can struggle to gain traction. These asset-backed tokens are built off the blockchain technology, providing a level of standard transparency which conventional financial systems can never do. All transactions are recorded on a public ledger, and it is open to view or validate by everyone. Moreover, blockchain technology makes it even more secure by providing a decentralized, immutable ledger that makes fraud nearly impossible and ownership crystal clear. It does not just add a feature, but opens an interesting possibility for investors to look at their money and investments. By combining tangible assets with the transparency and security of blockchain, SDBN tokens stand out as a smart, secure choice in the evolving digital finance landscape.
Transparency in renewable energy-backed tokens extends beyond blockchain, by providing regular updates and performance reports filled with deep drills into investments. Instead of investing and crossing their fingers behind the scenes, investors in this case are given details on the solar power plants that back their investments, showing performance metrics from energy production all down to financial returns. SunMoney Solar Group has implemented global compliance measures, including quarterly health checks by an external compliance company, to ensure legal adherence and Anti-Money Laundering (AML) protocols are strictly followed. This sort of information and transparency allows the investors to make well-informed decisions and increases their confidence with regard to the security and worthiness of their tokens. Moreover, our bottom-up approach to governance reflects our commitment to transparency. Investors are kept informed about key decisions and developments, ensuring they have a stake in the future of their investments. This isn’t just about appeasing investors; it’s about fostering a community of engaged stakeholders who are directly involved in the success of the project.

User Adoption: Unlocking the Potential of Asset-Backed Renewable Energy Tokens
As such, while a discussion of what such tokens are and what they might mean is all well and good, asset-backed green cryptocurrency tokens will never realize their full potential unless they are also intuitive, accessible, and widely embraced. SunMoney Solar Group has tackled this challenge by designing a platform that’s as user-friendly as it is sophisticated. Whether you’re a seasoned investor or dipping your toes into digital assets for the first time, the SDBN platform makes investing straightforward and understandable. It is not just an aesthetic design but a means of eliminating barriers to entry, making it accessible to more people in the investment world — especially those who have been neglected by conventional financial infrastructures. These tokens are made even more attractive by further partnerships with established financial institutions, as they add layers of credence and credibility. Meanwhile, efforts to foster a vibrant investor community ensure that users are not navigating this space alone. Instead, they are part of a supportive network where they can share insights, ask questions, and grow together.


The Strategic Impact of Asset-Backed Green Cryptocurrency Tokens
The organic growth of the renewable energy industry is readily apparent as companies realize the strategic advantage offered by asset-backed renewable energy tokens such as SDBN. These are not ordinary investment vehicles: they differentiate themselves via the underlying policy used to generate financial return, which intertwines combined sustainability principles with profits. Each SDBN token is backed by a portion of an operational solar power plant, making it fully collateralized and measurable. This is not about trading the highs and lows of cryptocurrency, it’s about delivering an ironclad business model that earns investors a decent yield from clean power generation every day. When markets are prone to fluctuations, this type of down-to-earth investment is very attractive. SunMoney Solar Group is quite forward-thinking and intelligent in the use of these tokens. By linking the value of the tokens to real-world assets, a financial product that appeals to a very wide audience is created, from hardcore crypto investors to cautious and conscious ones seeking stable and sustainable options. The regular, stable returns offered by these tokens make SDBN an attractive choice for those who want to invest not just in financial growth, but in the future of our planet.

Continue Reading

Trending

Please enable JavaScript in your browser to complete this form.

Copyright © 2023 | The Integrator