Huawei, ZTE 'cannot be trusted' and pose security threat: U.S. attorney general

Huawei Technologies Co and ZTE Corp (000063.SZ) “cannot be trusted,” U.S. Attorney General William Barr said, labeling the Chinese firms a security threat as he backed a proposal to bar U.S. rural wireless carriers from tapping an $8.5 billion government fund to purchase equipment or services from them. The Federal Communications Commission will vote on Nov. 22 and is proposing requiring the carriers to remove and replace equipment from the companies. Barr said in a letter to the FCC released on Thursday that “their own track record, as well as the practices of the Chinese government, demonstrate that Huawei and ZTE cannot be trusted.”

Spotlight

Spotlight

Related News

Cybersecurity

Semperis and Carahsoft Partner to Provide Comprehensive Identity Security and Recovery Solutions to U.S. Government Organizations

Business Wire | September 12, 2023

Semperis, a pioneer in identity-driven cyber resilience, and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, today announced a partnership. Under the agreement, Carahsoft will serve as Semperis’ Public Sector Distributor, making the company’s industry-leading identity resilience platform available to the Public Sector through Carahsoft’s reseller partners and National Association of State Procurement Officials (NASPO) ValuePoint, National Cooperative Purchasing Alliance (NCPA), and OMNIA Partners contracts. Active Directory (AD) and Azure AD (now Entra ID), used by 90% of organizations worldwide to authenticate and access critical applications and services, are under sustained attack in the Public Sector by numerous threat actors. The Semperis and Carahsoft partnership will accelerate delivery of comprehensive identity threat detection and response (ITDR) solutions for protecting hybrid AD environments across U.S. Public Sector entities. “Our partnership with Carahsoft will further expand adoption of our identity-first security solutions designed to help Federal, State and Local Government agencies protect their critical identity systems from ransomware and other directory-related attacks,” said Jared Vichengrad, Vice President, Public Sector at Semperis. “We are excited to join Carahsoft’s trusted partner network of Government IT solution providers to prevent, detect and mitigate proliferating identity attacks that are disrupting operations in the Public Sector.” Identity-related attacks on Public Sector entities are intensifying in scale and severity amidst an expanding digital attack surface and increasingly sophisticated attack techniques. Verizon’s 2023 DBIR reveals that from November 1, 2021, through October 31, 2022, public administration entities faced 3,273 incidents—and of those, 584 with confirmed data disclosure. The Public Sector is a high-value target for cyber criminals who seek to disrupt State and Local Governments, schools and public utilities in record numbers. These attacks can steal or encrypt data, disturb services and jeopardize public safety. Public Sector organizations are particularly vulnerable to AD attacks because of legacy infrastructure, lack of identity security expertise and limited resources. With a multi-layered defense approach that spans the identity attack lifecycle, Semperis offers the industry’s most comprehensive security and recovery solutions for hybrid AD environments, combined with deep incident response expertise. “We are thrilled to partner with Semperis and our reseller network to offer its identity resilience platform, provide advanced ITDR solutions and protect Public Sector customers’ hybrid AD systems from attacks,” said Brian O’Donnell, Vice President of Cybersecurity solutions at Carahsoft. “We repeatedly see how vital it is to prevent bad actors from infiltrating Government systems and how having the right solutions on board can make a significant impact in remediation. We are committed helping Public Sector organizations get access to Semperis solutions to safeguard citizens’ data and facilitate uninterrupted Public Sector services.” Semperis’ technology and services are available through Carahsoft’s NASPO ValuePoint Master Agreement #AR2472, NCPA Contract NCPA01-86, and OMNIA Partners Contract #R191902. For more information, contact the Semperis team at Carahsoft at (703) 889-9808 or Semperis@carahsoft.com. The dedicated Cybersecurity team at Carahsoft specializes in providing Federal, State and Local Government agencies and Education and Healthcare organizations with security solutions to safeguard their cyber ecosystem. To learn more about Carahsoft’s Cybersecurity solutions, visit www.carahsoft.com/solve/cybersecurity. About Carahsoft Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider®, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator® for our vendor partners, we deliver solutions for Cybersecurity, MultiCloud, DevSecOps, Big Data, Artificial Intelligence, Open Source, Customer Experience and Engagement, and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. About Semperis For security teams charged with defending hybrid and multi-cloud environments, Semperis ensures the integrity and availability of critical enterprise directory services at every step in the cyber kill chain and cuts recovery time by 90%. Purpose-built for securing hybrid Active Directory environments, Semperis’ patented technology protects over 50 million identities from cyberattacks, data breaches, and operational errors. The world’s leading organizations trust Semperis to spot directory vulnerabilities, intercept cyberattacks in progress, and quickly recover from ransomware and other data integrity emergencies. Semperis is headquartered in Hoboken, New Jersey, and operates internationally, with its research and development team distributed throughout the United States, Canada, and Israel.

Read More

Emerging Technology

Mark43 is First Public Safety Technology Company to Achieve StateRAMP High Impact Level Authorization

Business Wire | October 12, 2023

Mark43, the leading cloud-native public safety software company, today announced that it has achieved State Risk and Authorization Management Program (StateRAMP) High Impact Level Authorization. Mark43 brings the most mature security controls to Computer-Aided Dispatch, Records Management System, and Analytics platforms delivered on Amazon Web Services (AWS) GovCloud to more than 200 public safety agencies and their communities. Mark43 is the first public safety technology company to achieve StateRAMP High Impact Level Authorization, certifying its commitment to protecting the privacy and security of its customers’ data, particularly for state, local and tribal governments. StateRAMP, the State Risk and Authorization Management Program, is a highly respected and recognized certification program for cloud cybersecurity excellence. It provides state and local governments assurance that the technology vendors they are working with meet rigorous cybersecurity standards through independent audits and ongoing continuous monitoring. It is inspired by and adapted from the FedRAMP standards and framework. By achieving StateRAMP High Impact Level Authorization and having achieved FedRAMP High In Process, Mark43 demonstrates its commitment to providing state and local government customers with the highest level of cybersecurity protection possible. “With more than 1,000 known attacks against U.S. public safety agencies and local governments since 2021, the stakes have never been higher,” said Mark43 Chief Executive Officer Robert Hughes. “According to IBM’s ‘Cost of a Data Breach Report 2023,’ the average cost of a cybersecurity breach is $4.45M million and in this current climate, state and local governments are under constant attack. Mark43 is the first public safety technology company to achieve StateRAMP High Impact Level Authorization – verification that Mark43 delivers the resilient, reliable and secure CAD and RMS that cities and states need. Law enforcement agencies simply cannot afford to partner with a technology provider that does not achieve this level of cybersecurity maturity.” “Government agencies, public safety agencies, and institutions of higher education are very real targets for hackers and cyberattacks,” said Mark43 Chief Information Security Officer Larry Zorio. “The ability of these entities to verify that their partners maintain the highest levels of cybersecurity controls is critical. This StateRAMP High Impact Level Authorization is proof that Mark43 offers best-in-class cybersecurity controls.” “Achieving StateRAMP High Impact Level Authorization now makes it even easier for state and local agencies to partner with Mark43, and we’re thrilled to help government partners deliver for the communities they serve,” said Mark43 Chief Revenue Officer Tim Merrigan. Built on Amazon Web Services (AWS) GovCloud, Mark43 will continue to provide industry-leading security controls available for public safety customers. This StateRAMP High Impact Level Authorization builds on Mark43’s existing security program which includes SOC 2 Type II and SOC 3 attestations, as well as recently achieving the FedRAMP High In Process Authorization. Mark43 is one of the few public safety technology companies to have attained the FedRAMP High In Process designation, and is expected to achieve formal FedRAMP High Authorization in the coming months. About Mark43 Mark43 is the leading cloud-native public safety technology company. By delivering a modern, intuitive and mobile-first Records Management System, Computer-Aided Dispatch and Analytics platform, Mark43 empowers governments and their communities to improve the safety and quality of life for all. Working with more than 200 local, state and federal public safety agencies, Mark43 is transforming how first responders use technology to respond, engage and serve the community. Mark43 provides the tools, resources, expertise, and security foundation that public safety needs today, tomorrow, and beyond. For more information or to request a demo, visit www.mark43.com. About StateRAMP StateRAMP promotes the adoption of secure cloud services across the U.S. state and local governments, public education institutions, and special districts. It provides a standardized approach to security and risk assessment and continuous monitoring for cloud technologies for use by government agencies. StateRAMP empowers agencies to use modern cloud products and services to fulfill their organizational objectives by providing independent verification and continuous monitoring against established cybersecurity standards.

Read More

Cybersecurity

SentinelOne® Extends Power of the Singularity™ DataLake to Federal Agencies

Business Wire | October 10, 2023

Managing and analyzing security data is an overwhelming task - particularly for federal agencies where budgets are tight and cyber talent is in short supply. To help ease the burden, SentinelOne, a global leader in autonomous cybersecurity, is making Singularity™ DataLake, the industry’s most performant security data solution, and only FedRAMP-Authorized offering that unifies visibility, detection, and response across the entire security infrastructure, available through its FedRAMP Authorized platform. Federal Agencies can now easily access the one-of-a-kind cloud-native solution to gain a comprehensive view of their security data and quickly uncover and respond to threats in real-time. “The amount of data that federal agencies are required to collect, store, correlate, and analyze to defend against increasingly sophisticated and malicious attacks is massive and rapidly growing,” said Dale McCloskey, Federal Sales Vice President, SentinelOne. “The Singularity DataLake provides powerful cross-platform security analytics and intelligence they can use to gain the visibility needed to do it.” As the industry’s first and only unified, cloud delivered solution for OMB M-21-31 compliance, the SentinelOne Singularity DataLake combines SentinelOne and third-party security data visibility into a single console. Using the solution, federal cyber analysts can: Seamlessly ingest any data type, structured or unstructured, and fuse it with endpoint, cloud workload and user data to provide comprehensive visibility in a single, unified interface. Efficiently search, query and leverage AI-powered analytics to speed data-driven decisions. Reduce detection and response times to stop attacks faster. Achieve OMB M-21-31 compliance with cost-effective, long-term storage (up to 30 months) across endpoint detection and response (EDR) telemetry as well as other data sources. Retain existing SOC workflows through open, built-in security ecosystem integrations to deliver increased visibility and security context while reducing costs and operational resource burdens. “The future of cybersecurity for federal agencies will be driven by data and the power of analytics to extract actionable and intelligent security insights at scale and with SentinelOne Singularity DataLake, they can deliver it today,” said McCloskey. About SentinelOne SentinelOne is the leader in autonomous cybersecurity. SentinelOne’s Singularity™ Platform detects, prevents, and responds to cyber attacks at machine speed, empowering organizations to secure endpoints, cloud workloads, containers, identities, and mobile and network-connected devices with speed, accuracy and simplicity. Over 11,000 customers, including Fortune 10, Fortune 500, and Global 2000 companies, as well as prominent governments, trust SentinelOne to secure the future today.

Read More