Security News

An unidentified group of malicious sorts impersonated a so-called "Cold chain" company involved in COVID-19 vaccine distribution networks then targeted an EU governmental agency, according to IBM. Infosec researchers from Big Blue's X-Force threat intelligence unit "Uncovered targets across multiple industries, governments and global partners" involved in setting up the vaccine cold chain, it said in a blog post today. The phishing campaign's operators reportedly posed as an executive from the Chinese arm of Haier Biomedical, a business IBM described as "a credible and legitimate member company of the COVID-19 vaccine supply chain and qualified supplier for the CCEOP program."

Pioneered by IBM Research scientists, the company is now offering quantum-safe cryptography support for key management and application transactions in IBM Cloud, making it the industry's most holistic quantum-safe cryptography approach to securing data available today. "As our reliance on data grows in the era of hybrid cloud and quantum computing capabilities advance, the need for data privacy is becoming even more critical. IBM now offers the most holistic quantum-safe approach to securing data available today and to help enterprises protect existing data and help protect against future threats," said Hillery Hunter, Vice President and Chief Technology Officer, IBM Cloud.

IBM Power9 processors, intended for data centers and mainframes, are potentially vulnerable to abuse of their speculative execution capability. On Thursday IBM published a security advisory that explains, "IBM Power9 processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances."

IBM Cloud Monitoring with Sysdig, which uses Sysdig Monitor, is already the default monitoring solution used by IBM and offered to IBM Cloud customers when onboarding. With this addition of Sysdig Secure, the Sysdig Secure DevOps Platform is tightly integrated with IBM Cloud to provide customers end-to-end monitoring and security capabilities.

Tanium announced it is working with IBM to create a security and compliance monitoring solution for hybrid cloud, creating an easy path to verify and validate compliance for highly regulated industries such as healthcare, financial services and government. Because most public cloud environments are still hardening their compliance and security instrumentation, regulated industries find they spend too much time, effort and money to obtain complete and consolidated audit evidence for cloud workloads.

IBM and R3 announced a new collaboration to formally expand choice for clients scaling blockchain technology while delivering their highest levels of performance, compliance and data privacy. As part of the collaboration, R3 announced a new open beta program to bring R3's enterprise blockchain platform, Corda Enterprise, to IBM LinuxONE next month across the hybrid cloud-both on-premises and the IBM Cloud-delivered via IBM Cloud Hyper Protect Services.

IBM announced new services, partnerships and capabilities designed to help clients accelerate their hybrid cloud journeys and deploy and run SAP software workloads wherever they choose - from the IBM public cloud to on-premises. Global clients across industries are choosing to run their SAP software workloads on IBM Cloud, including Peruvian construction company Cementos Pacasmayo, Coca-Cola European Partners, the world's largest Coca-Cola bottler based on revenue, and Italian fashion footwear retailer Primadonna Collection.

IBM announced it has built a disaster recovery site using IBM Cloud infrastructure, intended to help KAZ Minerals protect and maintain operations - even in case of a disaster. With natural disasters globally becoming more common and unpredictable, the company needed to update its business continuity planning, so it turned to IBM to develop a cloud-based disaster recovery site for its on-premises data center.

IBM has quietly announced a plan to turn one of its security software bundles into a software-as-a-service. About two-thirds of the way down this week's list is a declaration titled: "Statement of direction: IBM plans to launch IBM Cloud Pak for Security software as a service offering."

IBM announced it will accelerate its hybrid cloud growth strategy to drive digital transformations for its clients. "IBM will focus on its open hybrid cloud platform and AI capabilities. NewCo will have greater agility to design, run and modernize the infrastructure of the world's most important organizations. Both companies will be on an improved growth trajectory with greater ability to partner and capture new opportunities - creating value for clients and shareholders."