Wapack Labs Partners with ISACA Bringing Even More Offerings to Members

Rolling Meadows, IL, USA (22 November 2017) – Joining the benefits available in the ISACA Member Advantage program at no additional cost is access to cybersecurity content from Wapack Labs, a cyber intelligence, and threat analysis company that provides early warning and threat detection services worldwide.

Wapack is known for their cyber threat intelligence solutions, that are both informational and timely, providing guidance to security and risk decision-makers within an enterprise. ISACA members will have access to a new threat analysis report weekly as part of their ISACA membership. Members also have the opportunity to subscribe to premium packages to receive additional content from Wapack, including access to Wapack’s Cyber Threat Analysis Center (CTAC), which provides threat analysis tools.

“ISACA is continuously adding new member benefits to provide practical, timely and relevant information that helps members excel in their jobs,” said Frank Schettini, CIO of ISACA. “ISACA’s partnership with Wapack helps us equip our members with the latest resources on threat intelligence, to help strengthen their cybersecurity programs.”

Users of ISACA’s Cybersecurity Nexus (CSX) Training Platform will also find themselves at an advantage with the new information on threats and threat actors, as the platform gives users the skills they need to respond to those threats. The latest Wapack content is available to members for free download today and is available at https://cybersecurity.isaca.org/threat-resources/wapack-labs.

Global association ISACA serves more than 138,000 members in more than 180 countries. ISACA members are students and professionals who work in the areas of assurance, governance, risk and information security. Among member, benefits are free webinars and virtual conferences, discounted or free access to ISACA publications, discounted rates on ISACA conferences and certifications, and access to more than 72 free continuing professional education (CPE) hours.

Additional information on becoming an ISACA member is available at www.isaca.org/membership.

About ISACANearing its 50th year, ISACA (isaca.org) is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education, and community to advance their careers and transform their organizations. ISACA leverages the expertise of its half-million engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI Institute, to help advance innovation through technology. ISACA has a presence in more than 188 countries, including more than 215 chapters and offices in both the United States and China.

Twitter: https://twitter.com/ISACANews
LinkedIn: https://www.linkedin.com/company/isaca 
Facebook: www.facebook.com/ISACAHQ 
Instagram: https://www.instagram.com/isacanews

Michelle Micor, +1 .847. 385.7217, communications@isaca.org
Kristen Kessinger, +1.847.660.5512, communications@isaca.org

Wapack Labs Corp. Introduces Risk Watch

NEW BOSTON, N.H., Sept. 12, 2017 /PRNewswire-USNewswire/ -- Wapack Labs Corporation http://www.wapacklabs.com, a leading global information security, cyber intelligence and analysis firm, announced today that their New Service Risk Watch is now available and risk notifications will be sent to affected parties. Wapack Labs scours the Internet for stolen personal information, including email accounts and passwords.  Wapack Labs then emails automatic notifications to these parties who are at risk.  The parties are shown the compromised information and encouraged to make changes.  The notification email and intelligence is provided at no charge.  If a party is interested in on-going cyber monitoring, subscription options are available.

"Risk Watch is an innovative service aimed towards defending your organization or individual information from potential risk of harm.  It provides valuable insight into being prepared for cyber related matters.  The ability to identify impacted individuals and foresee events that may lead to reputational harm of an organization is instrumental in the existing cyber security environment," stated Andy Obuchowski, VP, Forensic Services, Charles River Associates.

"The thinking behind this new, patent pending process is very much like the credit monitoring services. The idea is to monitor and notify individuals and companies if/when we see activities that might suggest you will be compromised, or have been compromised. This is especially useful in monitoring external threats to supply chain companies, third party, or others to whom you connect your networks. There are no other services like this on the market," said Jeff Stutzman, Chief Intelligence Officer at Wapack Labs.

About Wapack Labs Corporation
Wapack Labs, located in New Boston, NH is a Cyber Threat Analysis and Intelligence organization supporting the Red Sky Alliance, the FS-ISAC, and individual organizations by offering expert level targeted intelligence analysis answering some of the hardest questions in Cyber. Wapack Labs' engineers, researchers, and analysts design and deliver transformational cyber-security analysis tools that fuse open source and proprietary information, using deep analysis techniques and visualization. Information derived from these tools and techniques serve as the foundation of Wapack Labs' information reporting to the cyber-security teams of its customers and industry partners located around the world.

For questions or comments regarding this news release, please contact Jim McKee, President/CFO at 314-422-8185 or jmckee@wapacklabs.com. 


Equifax data breach: Up to 143 Million Accounts may be Affected, Jeff Stutzman Speaks to Headline News

Credit reporting agency Equifax on Thursday announced a massive data breach (the unauthorized access took place from mid-May through July 2017) and could impact up to 143 million Americans. Cyber criminals stole consumers' social security numbers, names, birth dates, addresses, and driver's license numbers. Jeff Stutzman, Chief Intelligence Officer of Wapack Labs Corporation of New Boston, NH was interviewed by Headline News on September 8, 2017. Are you part of the Equifax hack? Click here for more information and help.

Could It Be Hacking? Naval Crashes Raise Troubling Questions - Jeff Stutzman Speaks to Headline News

Jeff Stutzman, Chief Intelligence Officer of Wapack Labs Corporation of New Boston, NH was interviewed by Headline News on August 22, 2017.  The subject of the interview was “US Navy collisions stoke cyber threat concerns.”  Jeff discussed the tragic event that cost the lives of ten sailors.   He also mentioned a recent Wapack Labs report that GPS spoofing had to be identified earlier this year near the Russian Black Sea coast, where twenty ships indicated their location to have been inland at the Gelendzhyk Airport.  The report can be downloaded and viewed on Wapack Labs READBOARD . Get access to all the best cyber intelligence stories, sign up today.

US Navy Collisions Stoke Cyber Threat Concerns, Jeff Stutzman Interviewed by McClatchy, DC Bureau

The USS John S. McCain guided missile destroyer is docked at Singapore's naval base on Monday with "significant damage" to its hull after a collision with an oil tanker. Warships from four nations are searching for 10 missing American sailors. This is the second crash involving a ship from the U.S. Navy's 7th Fleet in the Pacific in two months. Meta Viers McClatchy

The Pentagon won’t yet say how the USS John S. McCain was rammed by an oil tanker near Singapore, but red flags are flying as the Navy’s decades-old reliance on electronic guidance systems increasing looks like another target of cyberattack.

The incident – the fourth involving a Seventh Fleet warship this year – occurred near the Strait of Malacca, a crowded 1.7-mile-wide waterway that connects the Indian Ocean and the South China Sea and accounts for roughly 25 percent of global shipping.

“When you are going through the Strait of Malacca, you can’t tell me that a Navy destroyer doesn’t have a full navigation team going with full lookouts on every wing and extra people on radar,” said Jeff Stutzman, chief intelligence officer at Wapack Labs, a New Boston, New Hampshire, cyber intelligence service.

“There’s something more than just human error going on because there would have been a lot of humans to be checks and balances,” said Stutzman, a former information warfare specialist in the Navy.

Ten American sailors are still missing.

Chief of Naval Operations, Adm. John Richardson, did not rule out cyber intrusion or sabotage as a cause of the fatal collision. “No indications right now ... but review will consider all possibilities,” Richardson said in a tweet on Monday.

It’s not the first time the Navy has suffered such an accident.

On Jan. 31, a guided missile cruiser, the USS Antietam, ran aground off the coast of Japan. On May 9, another cruiser, USS Lake Champlain, was struck by a South Korean fishing vessel.

In the wee hours of June 17, a destroyer, the USS Fitzgerald, a $1.5 billion vessel bristling with electronics, collided with a container ship, resulting in the deaths of seven sailors. The commanding officer and two other officers were formally removed from duties.

“I don’t have proof, but you have to wonder if there were electronic issues,” Stutzman said.

Todd E. Humphreys, a professor at the University of Texas and expert in satellite navigation systems, echoed a similar concern: “Statistically, it looks very suspicious, doesn’t it?”

These irregularities are affecting the shipping industry too.

In a little noticed June 22 incident, someone manipulated GPS signals in the eastern part of the Black Sea, leaving some 20 ships with little situational awareness. Shipboard navigation equipment, which appeared to be working properly, reported the location of the vessels 20 miles inland, near an airport.

That was the first known instance of GPS “spoofing,” or misdirection.

Much more serious than jamming, spoofing interferes with location even as computer screens offer normal readouts. Everything looks normal – but it isn’t.

“We saw it done in, I would say, a really unsubtle way, a really ham-fisted way. It was probably a signal that came from the Russian mainland,” Humphreys said.

Such spoofing once required expensive equipment and deep software coding skills. But Humphreys said it can now be done with off-the-shelf gear and easily attainable software.

“Imagine the English Channel, one of the most highly trafficked shipping lanes in the world, and also subject to bad weather. Hundreds and hundreds of ships are going back and forth. It would be mayhem if the right team came in there and decided to do a spoofing attack,” Humphreys said.

The U.S. military uses encrypted signals for geolocation of vessels, rather than commercial GPS. Humphreys said there is no indication that faulty satellite communications were a culprit in the USS McCain accident.

Global shipping also was disrupted following a worldwide attack June 27 that hit hundreds of thousands of computers. Shipping giant A.P. Moller-Maersk was reduced to manual tracking of cargo amid the attack, and its chief executive Soren Skou this month announced losses of up to $300 million.

Most global trade occurs on the high seas, and the number of ocean-going ships has quadrupled in the past quarter century. Ships are also getting larger. The largest container ship now can carry more than 21,000 20-foot containers.

Autonomous ships operated by computers are on the near-term horizon. The world’s first crewless ship, an electric-powered vessel with capacity for 100 to 150 cargo containers, will begin a 37-mile route in southern Norway with limited crew next year, transitioning to full autonomy in 2020.

Most ships avoid collision through the use of a global protocol known as Automatic Identification System, or AIS. Beacons aboard ships transmit vessel name, cargo, course, and speed, and readouts aboard ships display other vessels in the vicinity.

But the AIS system is known to be vulnerable.

“You can send an AIS beacon out and claim just about whatever you like. You can make a phantom ship appear,” Humphreys said.

It’s not just cargo carriers that rely on GPS and AIS beacons.

“Passenger shipping organizations and cruise lines … can be easily impacted,” said Eduardo E. Cabrera, chief cybersecurity officer at Trend Micro, a Tokyo-based cybersecurity firm.

Other factors can cause breaches on shipboard systems. Stutzman said crews rotate constantly, meaning shipboard log-on procedures are often simple and shared widely. Moreover, ship crews often download quantities of movies, books, and music while onshore to fight boredom while at sea, often linking to onboard networks and exposing them to viruses.

Published By: McClatchy DC Bureau


Tim Johnson: 202-383-6028, @timjohnson4

WMUR Reports - Small businesses not immune from cyberattacks, local security experts warn

WMUR Interviews Jeff Stutzman of Wapack Labs on Cyber Threat Solutions
Security experts are advising that small businesses prepare for the threats they face from hackers and malware before it’s too late.

In May, the WannaCry hack paralyzed tens of thousands of computers that run hospital networks, public transportation and scores of other companies and government agencies worldwide. It made ransomware a household word.

“Most small businesses would have no way to protect themselves against this,” Wapack Labs COO Jeffery Stutzman said.

Stutzman contradicted the U.S. government by advising some to pay the ransom demanded by the hackers.

“If you need the ransom, we've gone out and we've bought bitcoins to pay ransoms for others. We paid one a month and a half ago. It was $30,000,” Stutzman said.

According to Stutzman, unless a business took preventative steps, such as backing-up hard drives and running anti-virus software constantly, paying ransom may be the only option. Hackers will typically make good on the ransom so they can get paid the next time.

“These guys want to know that they're going to get paid. They have help desks and technical services,” Stutzman said.

At Wapack Labs in New Boston, cyber analysts comb Twitter, Facebook and the dark web -- which is home to all things nefarious online, including human organs, guns and drugs for sale -- to identify threats and then notify the targets. They often do it free of charge.

“We mainly focus on software, malware and security hosting and carding -- anything to do with fraud or a digital threat,” Stutzman said.

Pedro Sanchez, who used to be a mechanic in the U.S. Marine Corps, is one of Stutzman’s employees. Stutzman, who is a retired naval intelligence officer, believes many military veterans are perfect for this work.

“They know what a threat looks like. They have work ethic. They come to work prepared and enthusiastic every single day,” Stutzman said.

Sen. Jeanne Shaheen, too, is focused on the threat of cyberattacks.

“I think all business today is at risk for a cyberattack. In the last month or so, we've seen two ransomware attacks. The most recent originated in Ukraine,” Shaheen said.

Shaheen said determining government's role in blocking cyber threats is a work in progress.

“I think the government has a responsibility to update our policies so we know how to go after perpetrators but we also need to help small business to respond,” Shaheen said.

Stutzman said small businesses can and should take cyber precautions.

“My advice always is, 'Come to us.' We put up a thing on our webpage that says, ‘For free. We'll tell you how to take care of this,'" Stutzman said.

MANCHESTER, N.H. — expert Jeffery Stutzman explains the dangers of ransomware infections - Hundreds of thousands of computers across the globe are being affected by malware known as WannaCry.

Among the hardest hit systems are health networks, banks, telecommunications and government agencies. But cybersecurity experts said there are steps that people and organizations can take to avoid becoming victims.

The ransomware has hit more than 150 countries. Officials said WannaCry encrypts files on computers, forcing the owner to pay a ransom in bitcoin to get the files back.

"I think we're going to see more as people log into work this morning and tomorrow as they come into the office," said Jeff Stutzman, CEO of New Hampshire-based Wapack Labs.

Stutzman said ransomware is nothing new, but the speed with which this one struck beginning on Friday was unusual.

"Unbelievable -- the infrastructure that must have been set up to deploy this thing so quickly," he said.

Users of infected computers will see a red screen when they login. Stultzman said that anyone infected will probably have to pay the ransom, adding that the hackers can generally be trusted to deliver. Stutzman said his company paid $30,000 a few weeks ago on behalf of a client.

He said the key to stopping such attacks is prevention. There are three things that computer users should do immediately: Set computers to automatically update, get anti-virus software and back up computer hard drives externally.

"Pick a cloud provider," Stultzman said. "It doesn't matter which one. Don't map your network to it. Don't map your computer so it automatically does it."

Stutzman predicted that such attacks will only grow in number and sophistication.

"We've got botnets with thousands of computers attached," he said. "We've got these ransomware things with computers attached. How do we protect them when they come at us all at once?"

Stutzman, who serves on the governor's cybersecurity task force, said his company will set up a call center if needed, but it's currently offering solutions on its website.

Maritime & Port ISAO & Wapack Labs Advance Maritime & Port Critical Infrastructure Cyber Resilience

The Maritime and Port Security ISAO and Wapack Labs announce a collaborative partnership to advance real-time access to sector-specific cyber threat intelligence for Maritime & Port owners and operators and the supply chains that support them.

TITUSVILLE, Fla. - May 15, 2017 - PRLog -- The Maritime and Port Security Information Sharing and Analysis Organization (MPS-ISAO) and Wapack Labs announce today a collaborative partnership to advance real-time access to sector-specific cyber threat intelligence for Maritime & Port owners and operators and the supply chains that support them.

The MPS-ISAO, a non-profit organization, officially launched in May 2016, is dedicated to a mission of enabling and sustaining Maritime & Port cyber resilience. This is accomplished through the availability of MPS-ISAO real-time cyber threat intelligence including Maritime & Port community contributed information and multi-directional (cross-sector) information sharing and coordinated response working in collaboration with the U.S. Department of Homeland Security and the International Association of Certified ISAOs (IACI), and academic, technology and security strategic collaborative partners.

The partnership announced today with Wapack Labs expands access to sector-specific cyber intelligence, analysis of community data via strict information sharing protocols, and response capabilities for Maritime & Port stakeholders and their supply chains.

Deborah Kobza, MPS-ISAO Executive Director states, "The Maritime & Port sector is increasingly vulnerable and actively being attacked by a variety of adversaries including nation states, organized crime, hacktivists and insider threats focused on espionage, human trafficking, financial gain, supply chain disruption, identity and intellectual property theft, or to gain a competitive advantage. Many physical and cyber systems used in ports and maritime, such as navigation/GPS, physical security, communication, energy, environmental controls, industrial control systems (ICS), emergency controls, operations, cargo tracking, terminal operations, and cruise transportation, represent cyber attack targets. This partnership with Wapack Labs advances the capability of Maritime & Port stakeholders to move from a reactive to proactive cyber resilience stance."

Wapack Labs joined the MPS-ISAO's invitation-only webinar in March, "Interconnectedness in the Maritime Industry? First Let Me Tell You a Story.", to present their private research which identified a financially motivated cyber adversary who has compromised thousands of port and maritime organizations and over a million user accounts. The MPS-ISAO and Wapack Labs will use this cyber intelligence research as a jumping-off point to increase industry awareness and protection.

Christy Coffey, Director of Strategic Alliances, adds, "Wapack Labs is a perfectly suited partner for the MPS-ISAO. Their unique combination of cyber threat intelligence production with deep maritime and ports roots increases the level of early threat awareness that we can provide to our stakeholders. Wapack Labs have been tracking adversaries targeting this industry for a few years now, and so having them on our watch provides immediate gains."

Wapack Labs' bolsters the MPS-ISAO's ability to deliver Cyber Intelligence as a combination of industry-specific and personalized cyber threat intelligence, shared multi-directional sector and cross-sector information, advanced analytics, coordinated response, and training on topics of high interest. By participating in the MPS-ISAO, Maritime & Port stakeholders grow their understanding of vulnerabilities and risk so that they can proactively protect their organizations.

"We are excited to be working with the MPS-ISAO", said Jeffery Stutzman, a co-founder and CEO for Wapack Labs. It's imperative that we elevate cyber awareness in this important industry, and get ahead of threat actors. The MPS-ISAO - with the help of Wapack Labs' Cyber Threat Analysis Center (CTAC) are force multipliers - real game changers in Maritime and Port industry cybersecurity."

A 2016 report published by the U.S. Department of Homeland Security/Office of Cyber and Infrastructure Analysis (DHS/OCIA), "Consequences to Seaport Operations From Malicious Cyber Activity", states that a "cyber attack at a port or aboard a ship could result in lost cargo, port disruptions, and physical and environmental damage", and a disruption to U.S. ports can have a cascading affect to "Critical Manufacturing, Commercial Facilities, Food and Agriculture, Energy, Chemical, and Transportation Systems". This report includes a "Seaport Economics" section that details economic data points associated with sea trade.

About the MPS-ISAO: Headquartered at the Global Situational Awareness Center (GSAC) at NASA/Kennedy Space Center, the MPS-ISAO is private sector-led working in collaboration with government to advance Port and Maritime cyber resilience. The core mission to enable and sustain a safe, secure and resilient Maritime and Port Critical Infrastructure through security situational intelligence, bi-directional information sharing, coordinated response, and best practice adoption supported by role-based education. The MPS-ISAO is a founding member of the International Association of Certified ISAOs (IACI). More information at: www.mpsisao.org.

About Wapack Labs Corporation: Wapack Labs located in New Boston, NH is a privately held cyber intelligence company delivering in-depth strategic cyber threat activities, intelligence, analysis, reporting and indicators. Products are delivered through collaborative portals, private messaging and email, in multiple human readable and machine-to-machine form. Since 2011, Wapack Labs' have focused on tracking and profiling cyber adversaries, their tools, targets, attack methods, and delivering to subscribers in a way that can be quickly applied to the protection of computers, networks, and business operations. More information at: www.wapacklabs.com.

Media Contact
Maritime & Port ISAO (MPS-ISAO)
Deborah Kobza, CEO

Announcing the Wapack Labs & Cyber-Rx Strategic Partnership

April 19, 2017 (Silver Spring, MD) – Wapack Labs and CyberRx are announcing a strategic partnership to improve cybersecurity among small and medium-sized businesses (SMBs). Wapack Labs provides early warning cyber-threat detection, and cyber threat intelligence and analysis for nearly 7,000 organizations worldwide. The SMB offering comprises the companies’ software platforms in one portal and the outsourced services of both firms. The CyberRx software platform helps U.S. and international businesses to assess their cyber capabilities within the Cybersecurity Framework, developed by the National Institute of Standard and Technology (NIST) and the public sector.

Ola Sage, CyberRx CEO, and Jeff Stutzman, Wapack Labs CEO, will officially launched the SMB offering at the American Small Business Cybersecurity Xchange Spring Summit today, on April 19, 2017. “This strategic partnership with Wapack Labs is ground-breaking for SMBs who need access to affordable cybersecurity risk management solutions,” said Ms. Sage, who also chairs the national IT Sector Coordinating Council (IT SCC), which works in a public/private partnership with the Department of Homeland Security to address cybersecurity threats and risks to critical infrastructure.“ Mr. Stutzman, who spent many years working at the Department of Defense Cyber Crime Center added, “One of the reasons our partnership is timely is because many SMBs don’t have access to early warning cyber threat intelligence, so being able to combine our solution with CyberRx’s risk management platform now gives SMBs  information that they can act.”

The Future of Cyber Threat Management has Arrived!

Introducing the Cyber Threat Analysis Center  (CTAC 1.0) — cyber intelligence, easy analytics, no new infrastructure and affordable.

  • The SaaS model, gets you up and running fast. 
  • Monitor threats and cyber risk to you, your partners and suppliers.
  • No additional staff required.
  • Known tools = fast learning curve (if any).
  • Bring your own data.

Jerome Fath, CISO, Alion Science stated - “CTAC has amplified our cyber intelligence capability by allowing us to monitor threats to our own infrastructure, as well as our supply chain. This service enhances our intelligence program by removing the need for additional people watching screens,”

Jeff Stutzman, CEO Wapack Labs stated -
“Wapack Labs has made great strides in identifying threat intelligence sources not readily available to other companies and has been analyzing the resulting data since August 2011.  We are developing innovative tools that will allow incident responders to react more quickly to threats,”

Interested? We would love to show you how CTAC can efficiently and effectively make sense of incoming data and produce real intelligence quickly and conveniently. Sign up now! Request a Demonstration.


REPLAY AVAILABLE: The Big Broadcast - 2017 Cyber Attack Predictions

Did you have a chance to listen in on the Wapack Labs first Webcast of 2017? If you missed it or you want to listen to it again here is your chance. Will be available till January 31th, 2017 at 5:00 pm (Eastern).

Find out what top security professionals see coming in 2017. How will cyber criminals exploit your security vulnerabilities in your organization in 2017?  How can you best prepare to defend yourself?

Jason Healey, Senior Research Scholar in Cyber Conflict Studies, SIPA at Columbia University in the City of New York, moderated, and queried the senior Wapack Labs staff on their cyber security predictions for 2017.

Jeffery Stutzman Co-Founder CEO of Wapack Labs
Patrick Maroney Principle Engineer, Data Science & Analytics
Mike Tanji Managing Director
Liz Shirley Technical Director, Intelligence & Analysis

Massive Data Security Breaches A Problem Now More than Ever

In a world were technology is only growing more complicated faster and faster each day. And where consumers are putting more and more digital information out in the 'web' or the 'cloud' the risks have never been higher. This information is at constant risk which can leave consumers feeling helpless against the threat of hackers who are looking to sell their private information at top dollar.

Wapack Labs Announces Cyberwatch® API for Proactive Cyber Threat Intelligence.

Orlando, FL, September 12, 2016:  Wapack Labs, a cyber threat intelligence company, announced their new Cyberwatch® Application Program Interface (API) today at the Information Security Certification Consortium (ISC2) Congress in Orlando, FL. Companies will now be able to search Wapack Labs’ cyber intelligence collections directly through this bold, new application. That means users can identify and address security threats faster—including before they’re realized.

CLE Police Thank You Letter

This letter is to express our genuine commendation to Wapack Labs in your support of  the 2016 Republican National Convention, Division of Police intelligence collection efforts.

It has come to my attention that Wapack Labs provided forty-one (41) Situational Reports (SITREPs); two (2) RNC cyber security threat and vulnerability assessments; numerous verbal briefs and facilitated support to a covert social media operation. 

Wapack Labs: Protecting Client Businesses Worldwide Against Cyber Attacks

Wapack Labs: Protecting Client Businesses Worldwide Against Cyber Attacks

Wapack Labs Corporation identifies cyber threats before they become attacks. Founded in 2013, the company is a privately held cyber intelligence and threat analysis firm serving companies and organizations around the world. It does this by providing early threat detection through Internet surveillance operations, data gathering, and in-depth analysis of economic, financial and geopolitical issues. Intelligence is shared with clients through an array of packages that meet both their cyber needs and their bottom line.

Link to PDF of entire story.