April 2017 Digital Edition
March 2017 Digital Edition
Feb. 2017 Digital Edition
Nov/Dec 2016 Digital Edition
Oct 2016 Digital Edition
ALBUQUERQUE, N.M., Nov. 15, 2017 -- The U.S. Navy awarded Raytheon Company (NYSE: RTN) a $79 million contract to develop a new advanced telemetry system for the U.S. Navy's Range Support Aircraft. The high-tech plane will replace the Navy's aging telemetry test aircraft, which has been in service since the 1970s.
Based within the Gulfstream G550 airborne early warning airframe, Raytheon's modern solution will offer multi-role capabilities in telemetry data collection, range safety and surveillance, and communications relay.
"It's like replacing your old eight-track tapes with streaming digital music – there's simply no comparison," said Todd Callahan, Raytheon Naval and Area Mission Defense vice president. "Our new Range Support Aircraft will use the latest technology to support advanced weapons testing and other missions for the next 25 years."
To develop and deliver this new capability to the Navy, Raytheon will draw on its wide portfolio of products, proven technology and extensive test and evaluation expertise. Once operational, the Range Support Aircraft will collect and process telemetry data from missiles, aircraft, UAVs and ships.
Raytheon will perform system design, fabrication and aircraft integration. Once integration is complete, the company will conduct flight testing, training and mission operations with the Navy team before delivering the much-needed range support asset.
Raytheon Company, with 2016 sales of $24 billion and 63,000 employees, is a technology and innovation leader specializing in defense, civil government and cybersecurity solutions. With a history of innovation spanning 95 years, Raytheon provides state-of-the-art electronics, mission systems integration, C5I™ products and services, sensing, effects, and mission support for customers in more than 80 countries. Raytheon is headquartered in Waltham, Massachusetts. Follow us on Twitter.
MOORESTOWN, N.J., Nov. 16, 2017 /PRNewswire/ -- Lockheed Martin (NYSE: LMT) completed a rigorous Critical Design Review (CDR) on Sept. 28 with the Missile Defense Agency (MDA) for the Long Range Discrimination Radar (LRDR), demonstrating compliance to all technical performance measures and requirements. The radar system will support a layered ballistic missile defense strategy to protect the U.S. homeland from ballistic missile attacks.
The MDA awarded the $784 million contract to Lockheed Martin in 2015 to develop, build and test LRDR, and the company is on track on an aggressive schedule to deliver the radar to Clear, Alaska in 2020. Teams from Lockheed Martin, MDA Sensors Directorate and the Command and Control, Battle Management, and Communications or C2BMC have worked interfaces closely to ensure seamless integration.
Successfully executing CDR validates that the LRDR system is ready to proceed into fabrication, demonstration, and test and that the hardware and software component have achieved Technology Readiness Level (TRL) 7 and Manufacturing Readiness Level 7.
With the completion of CDR, the program now begins the start of low rate manufacturing which began in October. In preparation for full rate manufacturing starting in mid-2018, Lockheed Martin will be utilizing production hardware in combination with prototype systems, tactical back-end processing equipment as well as tactical software to demonstrate system performance in an operational environment to achieve system TRL 7. Lockheed Martin will be performing a series of tests in the Solid State Radar Integration Site (SSRIS) including a closed loop satellite track test.
"We remain committed to support the MDA's Ballistic Missile Defense and Homeland Defense Missions," said Chandra Marshall, LRDR program director, Lockheed Martin. "I am extremely proud of the team for their dedication and commitment to the successful execution of the LRDR program. This team has achieved every milestone, including this CDR, on schedule since contract award in 2015."
Marshall continued, "I am extremely pleased with the progress the entire LRDR team has made in the two years since contract award. With the success of CDR, LRDR is on track for initial operating capability or IOC in 2020."
In addition to CDR, Lockheed Martin conducted a Facilities Design Review in October for the LRDR equipment shelter design. Lockheed Martin will run a full and open competition for the construction of the equipment shelter in Clear, Alaska and will begin construction of the shelter in the first half of 2019. The MDA team is preparing the site for Radar System Installation and checkout mobilization, constructing the Mission Control Facility and starting the foundation for the LRDR equipment shelter.
Similar to Lockheed Martin's Space Fence radar system, LRDR is a high-powered S-Band radar incorporating solid-state gallium nitride (GaN) components. LRDR adds the capability of discriminating threats at extreme distances using the inherent wideband capability of the hardware coupled with advanced software algorithms.
LRDR is a strategic national asset of the MDA's Ballistic Missile Defense System and will provide 24/7/365 acquisition, tracking and discrimination data to enable defense systems to lock on and engage ballistic missile threats, a capability that stems from Lockheed Martin's decades of experience in creating ballistic missile defense systems for the U.S. and allied governments.
Lockheed Martin is well positioned to provide low risk, scalable radar solutions that address critical homeland defense needs; providing a persistent capability to keep pace with evolving threats, delivering unmatched discrimination capability in the Pacific architecture, and increasing the defensive capability of Ground Based Interceptors.
Work on LRDR is primarily performed in New Jersey, Alaska, Alabama, Florida and New York.
As a proven world leader in systems integration and development of air and missile defense systems and technologies, Lockheed Martin delivers high-quality missile defense solutions that protect citizens, critical assets and deployed forces from current and future threats. The company's experience spans radar and signal processing, missile design and production, hit-to-kill capabilities, infrared seekers, command and control/battle management, and communications, precision pointing and tracking optics, as well as threat-representative targets for missile defense tests.
For more information, visit www.lockheedmartin.com/lrdr.
About Lockheed Martin
SOURCE Lockheed Martin
Global ransomware damage costs predicted to exceed $11.5 billion annually by 2019:Ransomware will attack a business every 14 seconds by end of 2019
MENLO PARK, Calif., Nov. 15, 2017 -- Ransomware — a malware that infects computers (and mobile devices) and restricts their access to files, often threatening permanent data destruction unless a ransom is paid — has reached epidemic proportions globally.
Cybersecurity Ventures predicts there will be a ransomware attack on businesses every 14 seconds by the end of 2019. This does not include attacks on individuals, which occurs even more frequently than businesses.
"Since September 2013 when CryptoLocker, the first weapons-grade ransomware strain appeared, this type of malware has metastasized into a multi-billion dollar criminal business model that is only in its early phases and will continue to increase in sophistication," says Stu Sjouwerman, founder and CEO at KnowBe4, a company that specializes in training employees on how to detect and respond to ransomware attacks.
The big myth around ransomware damages is the costs are limited to ransom payouts. However, the percentage of businesses and individuals who are paying bitcoin to reclaim access to their data and systems in response to ransom demands — is declining (even if the total payout figures are rising due to the sheer volume of new attacks).
"Ransomware costs include damage and destruction (or loss) of data, downtime, lost productivity, post-attack disruption to the normal course of business, forensic investigation, restoration and deletion of hostage data and systems, reputational harm, and employee training in direct response to the ransomware attacks," says Steve Morgan, founder and Editor-In-Chief at Cybersecurity Ventures.
CIOs, CISOs (Chief Information Security Officers), and IT security teams need to heighten their awareness and response plans around the ransomware threat. Cyber defense needs to cross boundaries so that every IT worker understands exactly what ransomware is, how it infects organizations, and how to combat it.
Cybersecurity Ventures predicts cybercrime will cost the world in excess of $6 trillion annually by 2021, up from $3 trillion in 2015. Ransomware is expected to worsen and make up a proportionately larger share of total cybercrime by 2021.
Cybersecurity Ventures is the world's leading researcher and publisher covering the global cyber economy, and a trusted source for cybersecurity facts, figures, and statistics.
SOURCE Cybersecurity Ventures
SOURCE Cybersecurity Ventures
enSilo, the company that protects endpoints pre- and post-infection to stop data breaches and data disruption in real time, today announced that it has been included in Gartner's Market Guide for Endpoint Detection and Response Solutions (G00321729). A complimentary copy of this Market Guide is available for download here.
According to Gartner, "The EDR market is rapidly converging with the endpoint protection platform market; however, both areas will continue to coexist for the next three years. Security and risk management leaders need platform-based solutions that provide all aspects of adaptive security architecture."
With costly, high-profile data breaches, ransomware disruptions and other attacks increasingly beginning at the endpoint, capabilities for safeguarding organizations' devices and empowering users are essential, including detecting sophisticated attacks, containing the reach of threats by defeating the execution of malware and other intrusions and rapidly remediating endpoints to a pre-infected state. enSilo delivers these features and other advantages in its proven endpoint security platform combining automated, blocking-enabled Endpoint Detection and Response (EDR) capabilities with Threat Hunting, Incident Response, and Virtual Patching features. This integrated approach to protecting devices and employees offers dramatic security advantages and avoids burdening end users and security staff with layered, piecemeal endpoint protection tools.
"We feel that Gartner's inclusion of enSilo in this Market Guide validates our team's vision and innovation," said enSilo CEO and co-founder Roy Katmor. "Malicious infiltrations prevail against traditional defenses by exploiting detection gaps and achieving costly dwell time before they uncovered. enSilo's Next Generation AntiVirus (NGAV) serves as a useful first line of defense, complemented and correlated with our unique blocking-enabled EDR that allows to contain in real-time malicious code and behaviors executing on systems and continually helps security teams revert devices back to known, trusted states. This elimination of dwell time between infiltration and detection is key, it's time for the industry to prioritize protection in EDR. 'Detection' and 'Response' offer little value if they are not real-time and automated."
"Stopping breaches is my number one priority and I am a big proponent for endpoint detection and response tools to help with that goal. When we thoroughly tested and evaluated top notable vendors in the market, enSilo stood out above all the rest," said Randy Potts, CISO at financial services firm Real Time Resolutions. "enSilo has a fundamentally different approach to stopping the post-infection impact of malware in an automated manner. This unique capability allows my team to stop breaches and respond to malware impact immediately and more effectively comparing to other EDR tools that introduce dwell time."
According to Gartner, "Endpoint detection and response is essentially a big data and analytics tool that has all the advantages and drawbacks of this emerging field. However, it's foundational for next-generation endpoint protection solutions, based on more-complex behaviors, and it's extensible to additional problems, such as insider threat and account takeover attacks. EDR tools are capable of reducing the time to detect and respond to hacking and malware incidents. They help correlate events into incidents, but require a sophisticated administrator and API integration with other security tools."
"enSilo strives to offer a robust post-infection approach to endpoint security that enables real-time breach containment and response, allowing zero dwell time and the immediate blocking of data exfiltration and data tampering," Katmor added. "Providing EDR tools is important, however in addition to post-infection evidence collection, the breach must be stopped in real-time, ensuring zero dwell time. It's all about stopping the breach."
Read more about Gartner's latest endpoint detection and response recommendations on enSilo's blog and download your complimentary copy of the Market Guide for Endpoint Detection and Response Solutions here.
Source: Gartner, "Market Guide for Endpoint Detection and Response Solutions," Peter Firstbrook, 9 November 2017.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
enSilo comprehensively secures the endpoint pre- and post-infection. enSilo automates and orchestrates detection, prevention and real-time response against advanced malware and ransomware without burdening cybersecurity staff. enSilo's single lightweight agent includes next generation antivirus (NGAV), application communication control, automated endpoint detection and response (EDR) with real-time blocking, threat hunting, incident response and virtual patching capabilities. Coupled with a patented approach that has full system visibility, enSilo's endpoint security solution stops modern malware with a high degree of precision and intuitive user interface. Cybersecurity staff with enSilo can effectively manage malware threats without alert fatigue, excessive dwell time or breach anxiety. enSilo's cloud management platform is flexible and extensible to meet operational needs that stop malware impact. For more information please visit www.ensilo.com.
SEI Seeks Participants for Cyber Intelligence Study Sponsored by Office of the Director of National Intelligence
PITTSBURGH, Nov. 16, 2017 -- The Emerging Technology Center at the Software Engineering Institute at Carnegie Mellon University today issued a call for organizations to participate in a cyber intelligence study sponsored by the Office of the Director of National Intelligence (ODNI).Cyber intelligence—acquiring and analyzing information about cyber capabilities, intentions, and activities to enhance decision making—is a rapidly changing field. The study, which the SEI will conduct over the next 18 months, will provide ODNI with insight into how organizations across the federal government, industry, and academia conduct cyber intelligence activities, identifying common challenges and best practices.
This study is a follow-up to the SEI's Cyber Intelligence Tradecraft Project, a 2013 study that examined 30 organizations and their approaches to cyber intelligence. The 2013 study has been widely cited and now is the basis of some university courses in cyber intelligence. Key findings from the 2013 study can be found at: https://www.sei.cmu.edu/library/assets/whitepapers/citp-summary-key-findings.pdf
"In 2013, we found areas where organizations struggled and where they were doing well," said Jared Ettinger, SEI cyber intelligence researcher and study technical lead. "Organizations were able to take the report and follow best practices, so now we'd like to see what has changed," he said.
Elements of the new study will include preliminary interviews with selected organizations to identify common themes and then a quantitative questionnaire to gain greater insight on those identified themes from a large number of respondents. The SEI will issue a report based on the study in early 2019.
Organizations participating in the study will benefit by:
understanding their unique cyber intelligence capabilities and challenges in an environment that safeguards participant anonymity
receiving access to study results prior to public release
identifying technology gaps and challenges to influence potential research/prototyping efforts
For more information about the study, see https://www.sei.cmu.edu/about/organization/etc/citp.cfm. Organizations wishing to participate in the study should contact the SEI at [email protected]
About the Carnegie Mellon University Software Engineering Institute
The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University. The SEI works with organizations to make measurable improvements in their software engineering and cybersecurity capabilities by providing technical leadership to advance the practice of software engineering and security. For more information, visit the SEI website at http://www.sei.cmu.edu.
SOURCE Carnegie Mellon Software Engineering Institute
NEW YORK and DULLES, Va., Nov. 16, 2017 -- Raytheon and MetTel today announced a global security alliance to protect government and commercial communications networks against growing cybersecurity threats, including those that exploit the proliferating Internet of Things (IoT). The companies will provide a range of cybersecurity offerings and support the migration from legacy technologies to ensure cybersecurity is designed into the government's telecom infrastructure.
This alliance is well-positioned to support the Administration's IT modernization and cybersecurity priorities, including the emerging security challenges posed by internet-connected devices, including computers, routers and security cameras.
"Security is foremost on everyone's mind today, especially with the constant emergence of new threat forms compounded by the exploding array of devices and network access points," said Ed Fox, vice president of Network Services for MetTel. "The world needs a network that meets the highest government security standards and together, MetTel and Raytheon are committed to delivering that network."
The MetTel-Raytheon alliance will provide a range of managed security services, professional consulting services and technologies to detect, assess and defeat potential intrusions on MetTel-owned or managed customer networks. The principal elements of the agreement include:
- MetTel and Raytheon will build and operate Managed Trusted Internet Protocol Services for Federal government agencies through the GSA's Enterprise Infrastructure Solutions (EIS) contract. MetTel was named in August 2017 as a vendor for the $50 billion, 15-year award.
- As part of MetTel's team on the EIS contract, Raytheon will offer cybersecurity experts on a contract basis to Federal agencies for custom consultations, including detailed insight and recommendations for incident remediation and vulnerability testing.
- In addition, MetTel will employ Raytheon's Automated Threat Intelligence Platform (ATIP) and other advanced managed security services.
Managed Security Services for Federal Agencies
"As Federal agencies and businesses aggressively pursue digital transformation, this alliance will support the security of their data and systems," said John DeSimone, vice president of Cybersecurity and Special Missions for Raytheon Intelligence, Information and Services. "Raytheon will work with MetTel to leverage our 30 years of experience and significant investment in cybersecurity to hunt, detect and remediate advanced cyber threats on government and commercial networks."
Hardening the Network for MetTel and its Customers
In addition to supporting government customers, MetTel will integrate with Raytheon's Virtual Security Operations Center service to provide advanced threat hunting, intrusion analysis, incident notification and triage to safeguard its 10,000 customer locations worldwide.
"As rogue governments, nation-states and independent cyber criminals increasingly focus their attacks on commercial industry targets, the need becomes apparent for the combined forces of MetTel and Raytheon with our proven success in security and network management," Fox added.
Webinar – "2018 Security Threats: What's next…and will you be ready?"
Join MetTel and Raytheon for a joint webinar on Wednesday, December 6, 2017 @ 2:00pm ET. Register here: http://bit.ly/2zWJVFG
MetTel® is a leading global provider of integrated digital communications solutions for enterprise customers. By converging all communications over a proprietary network, MetTel enables enterprise companies to easily deploy and manage technology-driven voice, data, wireless and cloud solutions worldwide. MetTel's comprehensive portfolio of customer solutions boosts enterprise productivity, reduces costs and simplifies operations. Combining customized and managed communication solutions with a powerful platform of cloud-based software, the company's MetTel Portal enables customers to manage their inventory, usage, spend and repairs from one simple, user friendly interface. For more information visit www.mettel.net, follow us on Twitter (@OneMetTel) and on LinkedIn, or call us directly at 877.963.8663. MetTel. Smart Communications Solutions.™
Raytheon Company, with 2016 sales of $24 billion and 63,000 employees, is a technology and innovation leader specializing in defense, civil government and cybersecurity solutions. With a history of innovation spanning 95 years, Raytheon provides state-of-the-art electronics, mission systems integration, C5I™ products and services, sensing, effects, and mission support for customers in more than 80 countries. Raytheon is headquartered in Waltham, Massachusetts. Follow us on Twitter @Raytheon.
HIDDEN COBRA – North Korean Trojan: Volgmer
Original release date: November 14, 2017 | Last revised: November 15, 2017
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI identified Internet Protocol (IP) addresses and other indicators of compromise (IOCs) associated with a Trojan malware variant used by the North Korean government—commonly known as Volgmer. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA. For more information on HIDDEN COBRA activity, visit https://www.us-cert.gov/hiddencobra.
FBI has high confidence that HIDDEN COBRA actors are using the IP addresses—listed in this report’s IOC files—to maintain a presence on victims’ networks and to further network exploitation. DHS and FBI are distributing these IP addresses to enable network defense and reduce exposure to North Korean government malicious cyber activity.
This alert includes IOCs related to HIDDEN COBRA, IP addresses linked to systems infected with Volgmer malware, malware descriptions, and associated signatures. This alert also includes suggested response actions to the IOCs provided, recommended mitigation techniques, and information on reporting incidents. If users or administrators detect activity associated with the Volgmer malware, they should immediately flag it, report it to the DHS National Cybersecurity and Communications Integration Center (NCCIC) or the FBI Cyber Watch (CyWatch), and give it the highest priority for enhanced mitigation.
For a downloadable copy of IOCs, see:
NCCIC conducted analysis on five files associated with or identified as Volgmer malware and produced a Malware Analysis Report (MAR). MAR-10135536-D examines the tactics, techniques, and procedures observed. For a downloadable copy of the MAR, see:
MAR IOCs (.stix)
Volgmer is a backdoor Trojan designed to provide covert access to a compromised system. Since at least 2013, HIDDEN COBRA actors have been observed using Volgmer malware in the wild to target the government, financial, automotive, and media industries.
It is suspected that spear phishing is the primary delivery mechanism for Volgmer infections; however, HIDDEN COBRA actors use a suite of custom tools, some of which could also be used to initially compromise a system. Therefore, it is possible that additional HIDDEN COBRA malware may be present on network infrastructure compromised with Volgmer
The U.S. Government has analyzed Volgmer’s infrastructure and have identified it on systems using both dynamic and static IP addresses. At least 94 static IP addresses were identified, as well as dynamic IP addresses registered across various countries. The greatest concentrations of dynamic IPs addresses are identified below by approximate percentage:
India (772 IPs) 25.4 percent
Iran (373 IPs) 12.3 percent
Pakistan (343 IPs) 11.3 percent
Saudi Arabia (182 IPs) 6 percent
Taiwan (169 IPs) 5.6 percent
Thailand (140 IPs) 4.6 percent
Sri Lanka (121 IPs) 4 percent
China (82 IPs, including Hong Kong (12)) 2.7 percent
Vietnam (80 IPs) 2.6 percent
Indonesia (68 IPs) 2.2 percent
Russia (68 IPs) 2.2 percent
As a backdoor Trojan, Volgmer has several capabilities including: gathering system information, updating service registry keys, downloading and uploading files, executing commands, terminating processes, and listing directories. In one of the samples received for analysis, the US-CERT Code Analysis Team observed botnet controller functionality.
Volgmer payloads have been observed in 32-bit form as either executables or dynamic-link library (.dll) files. The malware uses a custom binary protocol to beacon back to the command and control (C2) server, often via TCP port 8080 or 8088, with some payloads implementing Secure Socket Layer (SSL) encryption to obfuscate communications.
Malicious actors commonly maintain persistence on a victim’s system by installing the malware-as-a-service. Volgmer queries the system and randomly selects a service in which to install a copy of itself. The malware then overwrites the ServiceDLL entry in the selected service's registry entry. In some cases, HIDDEN COBRA actors give the created service a pseudo-random name that may be composed of various hardcoded words.
Detection and Response
This alert’s IOC files provide HIDDEN COBRA indicators related to Volgmer. DHS and FBI recommend that network administrators review the information provided, identify whether any of the provided IP addresses fall within their organizations’ allocated IP address space, and—if found—take necessary measures to remove the malware.
When reviewing network perimeter logs for the IP addresses, organizations may find instances of these IP addresses attempting to connect to their systems. Upon reviewing the traffic from these IP addresses, system owners may find some traffic relates to malicious activity and some traffic relates to legitimate activity.
Network Signatures and Host-Based Rules
This section contains network signatures and host-based rules that can be used to detect malicious activity associated with HIDDEN COBRA actors. Although created using a comprehensive vetting process, the possibility of false positives always remains. These signatures and rules should be used to supplement analysis and should not be used as a sole source of attributing this activity to HIDDEN COBRA actors.
alert tcp any any -> any any (msg:"Malformed_UA"; content:"User-Agent: Mozillar/"; depth:500; sid:99999999;)
description = "Malformed User Agent"
$s = "Mozillar/"
(uint16(0) == 0x5A4D and uint16(uint32(0x3c)) == 0x4550) and $s
A successful network intrusion can have severe impacts, particularly if the compromise becomes public and sensitive information is exposed. Possible impacts include
temporary or permanent loss of sensitive or proprietary information,
disruption to regular operations,
financial losses incurred to restore systems and files, and
potential harm to an organization’s reputation.
DHS recommends that users and administrators use the following best practices as preventive measures to protect their computer networks:
Use application whitelisting to help prevent malicious software and unapproved programs from running. Application whitelisting is one of the best security strategies as it allows only specified programs to run, while blocking all others, including malicious software.
Keep operating systems and software up-to-date with the latest patches. Vulnerable applications and operating systems are the target of most attacks. Patching with the latest updates greatly reduces the number of exploitable entry points available to an attacker.
Maintain up-to-date antivirus software, and scan all software downloaded from the Internet before executing.
Restrict users’ abilities (permissions) to install and run unwanted software applications, and apply the principle of “least privilege” to all systems and services. Restricting these privileges may prevent malware from running or limit its capability to spread through the network.
Avoid enabling macros from email attachments. If a user opens the attachment and enables macros, embedded code will execute the malware on the machine. For enterprises or organizations, it may be best to block email messages with attachments from suspicious sources. For information on safely handling email attachments, see Recognizing and Avoiding Email Scams. Follow safe practices when browsing the web. See Good Security Habits and Safeguarding Your Data for additional details.
Do not follow unsolicited web links in emails. See Avoiding Social Engineering and Phishing Attacks for more information.
Response to Unauthorized Network Access
Contact DHS or your local FBI office immediately. To report an intrusion and request resources for incident response or technical assistance, contact DHS NCCIC ([email protected](link sends e-mail) or 888-282-0870), FBI through a local field office, or the FBI’s Cyber Division ([email protected](link sends e-mail) or 855-292-3937).
November 14, 2017: Initial version
HIDDEN COBRA - North Korean Malicious Cyber Activity
The information contained on this page is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) to provide technical details on the tools and infrastructure used by cyber actors of the North Korean government. The intent of sharing this information is to enable network defenders to identify and reduce exposure to North Korean government cyber activity. The U.S. Government refers to the malicious cyber activity by the North Korean government as HIDDEN COBRA.
For more information, see:
November 14, 2017: Alert (TA17-318A) HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
November 14, 2017: Alert (TA17-318B) HIDDEN COBRA – North Korean Trojan: Volgmer
August 23, 2017: Malware Analysis Report (MAR-10132963) – Analysis of Delta Charlie Attack Malware
June 13, 2017: Alert (TA17-164A) HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure
Parsippany, N.J., and Singapore, November 15, 2017- INTTRA, the largest neutral electronic transaction platform, software and information provider at the center of the ocean shipping industry, today announced two new cloud-based products and enhancements. The first is a new Container Forecasting and Allocation Solutions Tool (C-FAST) for Freight Forwarders and NVOCC's that matches the forecast of their customers' anticipated container volume to carrier capacity availability. The second is an enhanced version of its Ocean Schedules offering that optimizes the shipment planning experience for ocean supply chain professionals.
The announcements were made today in Singapore at INTTRA's Asia Technology Summit, a forum attended by approximately 200 senior industry leaders to share their views on how digitization and technology are changing the ocean industry sector, and where INTTRA outlined its technology whitepaper -- Blueprint 2032: How Technology Transforms Ocean Container Shipping.
INTTRA's new C-FAST addresses a key issue, which is forecasting and allocating for future customer shipments can be a complicated, time consuming manual process requiring collecting multiple customer and carrier contract data. INTTRA C-FAST can help achieve up to 40 percent operational improvement in organizations, and up to $4 million annual cost savings across multiple operating regions.
INTTRA C-FAST offers automated allocation solutions that optimize contract management and enhance customer planning with improved matching capabilities by performing the allocation of customer forecasting and carrier availability commitments, resulting in impressive, easy-to-interpret cargo steering recommendations. Initiated with easily imported customer forecasts, carrier commitments and contracts, C-FAST considers quantity commitment, contract type, and carrier-space contractual obligations by port to optimize decisions. Further, it enables a dashboard review of planned-to-actual bookings, which also helps ocean leaders plan for next year's costs and minimum-quantity commitments from carrier suppliers.
"The ocean shipping industry is becoming increasingly interconnected, driving towards full digitization, with technology enabling businesses to improve operationally and financially," said John Fay, CEO of INTTRA. "Our goal is to help our customers fully embrace digitization, providing the best products and services to optimize and deliver more efficient logistics management. The introduction of C-FAST and offering a newer generation of Ocean Schedules is just the beginning of a much larger phase."
"INTTRA has understood the requirements of capacity management by launching a product which combines the carrier's space management with our customer's forecasting. With an easy-to-use GUI and direct response to bookings made we believe to have found a tool which makes our sea freight world a lot more efficient." said Johannes Saade, Global Head of Trade Management for Hellmann Worldwide Logistics Air & Sea GmbH & Co. KG.
"Container allocation is a critical process in how we support our customers' most strategic demands", said Matthew Burgess, VP, Global Ocean Consolidation Services at JAS Worldwide Management, Inc. "Gaining access to an automated tool like C-FAST would better enable us to prioritize, organize and manage the steering of cargo for multiple clientele, allowing JAS to maintain focus on the continued growth of its business and manage our key carrier providers."
"C-FAST will help NVOs and freight forwarders drive operational efficiency, improve procurement strategies and enhance vendor management practices in order to accelerate their business growth," said Inna Kuznetsova, President and COO of INTTRA. "Our user friendly, collaborative tool improves global operations and decision making by providing an automated and intuitive contract-aware allocation process."
Enhanced Cloud-Based Ocean Schedules Product Offering Introduced
INTTRA today also launched an enhanced version of its industry leading Ocean Schedules product offering, which for the past ten years has been a key tool in the planning process for ocean supply chain professionals. INTTRA's upgraded Ocean Schedules is now cloud-based and is available with an expanded data set and the latest web services application programming interface (API) technology. Ocean Schedules is offered with a new, enhanced web interface for users of INTTRA's ocean shipping web portal, in addition to a new API for customers who want to integrate schedules data into their TMS, rate management system or other in-house applications. INTTRA also offers ocean carriers a new API for direct request/response access to their schedules data that provides end-users with the most current information direct from the carrier's scheduling system.
"We listened carefully to the needs of supply chain professionals when designing our cloud-enhanced Ocean Schedules," said Jeff Howard, Senior VP, Product Management and Chief Product Officer at INTTRA. "The new Ocean Schedules API enables forwarders and cargo owners to easily integrate the latest schedules data from over 35 carriers directly into their transportation management or rates management systems and reduce shipment planning times by up to 80 percent."
ORLANDO, Fla., Nov. 14, 2017 -- Lockheed Martin (NYSE: LMT) received a $44.1 million contract from the U.S. Air Force to produce Intelligent Test Instrumentation Kits (iTIK) to be used on Joint Air-to-Surface Standoff Missile (JASSM) flight tests for telemetry and flight termination purposes.
This contract for iTIKs provides benefits across multiple missile programs. These upgraded iTIKs eliminate obsolete parts from previous generation test kits and provide a new product that can be used on several different missiles.
Lockheed Martin's Joint Air-to-Surface Standoff Missile (JASSM) is a long-range, conventional, air-to-ground, precision standoff missile for the U.S. and allied forces. The company received a contract from the U.S. Air Force to provide Intelligent Test Instrumentation Kits to be used on flight tests for telemetry and flight termination purposes.
Lockheed Martin's Joint Air-to-Surface Standoff Missile (JASSM) is a long-range, conventional, air-to-ground, precision standoff missile for the U.S. and allied forces. The company received a contract from the U.S. Air Force to provide Intelligent Test Instrumentation Kits to be used on flight tests for telemetry and flight termination purposes.
"The new iTIK provides a next generation telemetry kit for both JASSM baseline and Extended Range missiles, as well as the Long Range Anti-Ship Missile," said Kim Oyler, program manager at Lockheed Martin Missiles and Fire Control. "The electronic components in this new kit will provide enhanced reliability over the previous generation's mechanical configuration."
The new iTIKs will be compatible with all production lots of JASSM already in inventory, as well as future lots and variants.
Armed with a penetrating blast-fragmentation warhead, JASSM-Extended Range (ER) can be used in all weather conditions. The stealthy 2,000-pound cruise missile employs an infrared seeker and enhanced digital anti-jam GPS receiver to dial into specific points on high-value, well-fortified, fixed and relocatable targets. The B-1B carries JASSM-ER. Integration on other aircraft platforms is ongoing. More than 2,150 JASSM and JASSM-ER missiles have been delivered.
About Lockheed Martin
Headquartered in Bethesda, Maryland, Lockheed Martin is a global security and aerospace company that employs approximately 97,000 people worldwide and is principally engaged in the research, design, development, manufacture, integration and sustainment of advanced technology systems, products and services.
SOURCE Lockheed Martin
WASHINGTON—U.S. Customs and Border Protection announced today the expansion of Global Entry Enrollment on Arrival to 11 additional international airports. Enrollment on Arrival enables conditionally-approved Global Entry applicants to complete their interview, the final step of the Global Entry enrollment process, while clearing CBP processing. The program is currently available at nine new locations including Dallas/Fort Worth International Airport (DFW), Detroit Metropolitan Airport (DTW), Minneapolis-Saint Paul International Airport (MSP), Phoenix Sky Harbor International Airport (PHX), Salt Lake City International Airport (SLC), San Diego International Airport (SAN), Norman Y. Mineta San Jose International Airport (SJC), Seattle-Tacoma International Airport (SEA), and Toronto Pearson International Airport (YYZ), and will launch later this week at Denver International Airport (DEN) and Philadelphia International Airport (PHL).
“Global Entry continues to be one of CBP’s most successful and popular programs and we have made it a priority to improve the enrollment process for those looking to join the ranks of Trusted Traveler,” said Acting Commissioner Kevin McAleenan. “Last month, we launched a modernized, mobile-friendly application website making the initial step of the process more user friendly and now with these additional Enrollment on Arrival locations we have added greater flexibility for those looking to complete the enrollment process.”
Since the program’s launch in July, more than 5,200 conditionally-approved Global Entry applicants have completed the final step of the enrollment process at an Enrollment on Arrival location. Enrollment on Arrival is also available at George Bush Intercontinental Airport (IAH), William P. Hobby Airport (HOU), Austin-Bergstrom International Airport (AUS), San Francisco International Airport (SFO) and Vancouver International Airport (YVR).
Conditionally-approved applicants looking to utilize Enrollment on Arrival do not need to schedule an interview appointment ahead of time.
Once a traveler is conditionally-approved, instead of scheduling an interview at a Global Entry Enrollment Center, the traveler can complete the enrollment interview during CBP primary inspection at a participating airport. Upon arrival, travelers will be directed to a primary booth designated specifically for Enrollment on Arrival. A CBP officer will conduct both the primary processing and Global Entry interview and collect the traveler’s biometrics to complete the enrollment. The traveler will then be cleared for entry into the United States and, if approved, will be a Global Entry member.
Currently available at 54 U.S. airports and 15 Preclearance locations, Global Entry streamlines the international arrivals process at airports for trusted travelers. The more than 4.7 million Global Entry members bypass traditional CBP inspection lines and use an automated kiosk to complete their admission to the United States. As an added benefit, Global Entry members are also eligible to participate in the TSA Pre✓™ expedited screening program.
U.S. citizens, U.S nationals and U.S. Lawful Permanent Residents may apply for Global Entry as well as passport holders from Argentina, Colombia, Germany, India, Mexico, the Netherlands, Panama, the Republic of Korea, Singapore, Switzerland, Taiwan and the United Kingdom. Canadian citizens and residents enrolled in NEXUS may also use the Global Entry kiosks.
Interested travelers apply through the Trusted Traveler Programs website. The non-refundable application fee for a five-year Global Entry membership is $100 and applications must be submitted online. Once the applicant successfully passes a background check, a CBP officer will conduct an interview with the applicant at one of the more than 100 Global Entry Enrollment Centers located throughout the U.S., Canada, and Qatar or at an Enrollment on Arrival location and then make a final eligibility determination.
While the goal of Global Entry is to speed travelers through the process, members may be selected for further examination when entering the United States. Any violation of the program’s terms and conditions will result in appropriate enforcement action and may result in the revocation of the traveler’s membership privileges.