Microsoft spots malicious npm package stealing data from UNIX systems

The security team at npm (Node Package Manager), the de-facto package manager for the JavaScript ecosystem, has taken down today a malicious package that was caught stealing sensitive information from UNIX systems. The malicious package is named 1337qq-js and was uploaded on the npm repository on December 30, 2019.
The package was downloaded at least 32 times, before it was spotted and today by Microsoft's Vulnerability Research team. According to an analysis by the npm security team, the package exfiltrates sensitive information through install scripts and targets UNIX systems only.

Spotlight

Other News
Software

IBM to Acquire StreamSets and webMethods Platforms from Software AG

IBM | December 18, 2023

IBM (NYSE: IBM) today announced that it has entered into a definitive agreement with Software AG (FRA: SOW), a company majority owned by Silver Lake, to purchase StreamSets and webMethods, Software AG's Super iPaaS (integration platform-as-a-service) enterprise technology platforms, for €2.13 billion in cash. As organizations continue to accelerate their digital transformations, application and data integration solutions are critical elements for application modernization and effectively deploying AI across the enterprise. StreamSets and webMethods are among the technology leaders in application integration, API management, and data integration. IDC predicts the worldwide integration software market will exceed $18.0 billion in 2027 at a compound annual growth rate (CAGR) of 16.1%.1 The acquisition of StreamSets and webMethods is further evidence of IBM's deep focus and investment in AI and hybrid cloud. StreamSets will add data ingestion capabilities to watsonx, IBM's AI and data platform, while webMethods will give clients and partners additional integration and API management tools for their hybrid multi-cloud environments. The core offerings include: StreamSets - a cloud-native DataOps and data ingestion platform which allows enterprises to achieve consistent access and delivery of data across a wide spectrum of data sources and types. StreamSets also facilitates the design of smart data pipelines and the ingestion of real-time and batch data. webMethods - an integration and API management platform. The integration platform, deployed both on-prem and in the cloud, offers B2B integration, managed file transfer, and provides a modern API gateway to manage, monitor, and monetize APIs. Software AG's Super iPaaS platform is growing, profitable and has a significant recurring revenue profile. StreamSets and webMethods serve more than 1,500 clients across the globe. "Together with IBM's watsonx AI and data platform, as well as its application modernization, data fabric and IT automation products, StreamSets and webMethods will help clients unlock the full potential of their applications and data. This powerful combination helps drive innovation while preparing businesses for AI, no matter where applications or data reside," said Rob Thomas, Senior Vice President, Software and Chief Commercial Officer, IBM. "Today's news will give IBM clients and partners one of the most modern and comprehensive application and data integration platforms in the industry." The pending acquisition follows a more than 20-year relationship between IBM and Software AG, with both StreamSets and webMethods expected to drive synergy with IBM's current portfolio, including watsonx, Red Hat, the company's IT automation products, as well as IBM Consulting. Additionally, StreamSets and webMethods are expected to benefit from IBM's global scale, operating in more than 175 countries. "IBM is the ideal home for webMethods and StreamSets, the products at the heart of our Super iPaaS vision," said Sanjay Brahmawar, Chief Executive Officer of Software AG. "Combined with IBM's global scale and focus on hybrid cloud and AI, our people will have a fantastic opportunity to develop while helping enterprises everywhere get the most out of their applications and data." "We believe that there is no business more iconic or better suited than IBM to continue investing in and growing these great platforms," said Christian Lucas, Chairman of the Supervisory Board of Software AG and Managing Partner of Silver Lake. "The opportunity to bring the StreamSets and webMethods teams together with IBM to innovate in building the future of hybrid cloud and next-generation AI solutions for the enterprise is uniquely compelling. We are pleased that our investment in Software AG helped spark that vision, reflecting Silver Lake's commitment to partner with the world's best management teams and technology leaders in driving exceptional value creation for customers, employees and other stakeholders." StreamSets and webMethods will be acquired with available cash on hand. The consummation of the transaction is subject to customary closing conditions, including regulatory approvals, and is expected to be completed in the second quarter of 2024. About IBM IBM is a leading provider of global hybrid cloud and AI, and consulting expertise. We help clients in more than 175 countries capitalize on insights from their data, streamline business processes, reduce costs and gain the competitive edge in their industries. Thousands of government and corporate entities in critical infrastructure areas such as financial services, telecommunications and healthcare rely on IBM's hybrid cloud platform and Red Hat OpenShift to affect their digital transformations quickly, efficiently and securely. IBM's breakthrough innovations in AI, quantum computing, industry-specific cloud solutions and consulting deliver open and flexible options to our clients. All of this is backed by IBM's long-standing commitment to trust, transparency, responsibility, inclusivity and service. Visit www.ibm.com for more information.

Read More

General AI

Glassbox Delivers Enterprise-ready Generative AI Assistant with Microsoft Azure OpenAI Service

Glassbox | January 11, 2024

Glassbox (TASE:GLBX), a leading provider of digital experience intelligence for web and mobile applications, today announced the availability of its enterprise-ready AI assistant, which the company has named GIA (Glassbox Insights Assistant). Glassbox turned to Microsoft Azure OpenAI Service, which hosts OpenAI models fully within the secure Azure environment, to elevate the security and privacy standards of its previously announced AI assistant. In combination with Glassbox’s patented data privacy measures, users of the AI assistant can be confident that the conversational interface is protected with the level of rigor they expect from both Microsoft and Glassbox. “We developed the AI assistant earlier based on OpenAI’s GPT model. However, our commitment to responsible AI and our exacting security, data privacy and compliance standards compelled us to turn to the Microsoft Azure OpenAI Service for its additional protections for potentially sensitive data shared or accessed through the new generative AI (GenAI) interface,” said Glassbox co-founder and Chief Technology Officer Yaron Gueta. “GIA sets a new bar for what organizations should expect of GenAI solutions from their software providers.” Glassbox captures millions or billions of digital experience data points for each of its customers every month that give them the richest possible set of data about their digital customer experience. GIA allows Glassbox users to uncover deep digital insights quickly and without technical knowledge or reliance on data and analytics teams. “Microsoft Azure OpenAI Service is ideal for companies like Glassbox that need to deliver enterprise-grade GenAI solutions based on vast, proprietary datasets,” added John Montgomery, CVP, Azure AI at Microsoft. “By using the power of our generative AI capabilities, Glassbox’s AI assistant can deliver a better experience to customers with the security measures of Azure.” With Gartner predicting that more than half of all successful technology solutions will be delivered to “nontraditional” buyers outside of IT by 2025, one of the pillars of Glassbox’s AI strategy is to make its unparalleled set of digital experience data more actionable, more quickly by more users for greater business impact. GIA is central to this strategy as Glassbox shifts increasingly towards natural language interfaces. The use of GenAI to unlock digital insights is also a key step in realizing Glassbox’s Autonomous CX vision, which promises to revolutionize the customer experience domain by making digital experiences fully self-optimizing. GIA is immediately available within the Glassbox digital experience intelligence platform when deployed in a customer’s preferred cloud environment. About Glassbox Glassbox (TASE:GLBX) reveals the insights that empower organizations to deliver better digital customer experiences. Our Digital Experience Intelligence platform automatically captures, visualizes and analyzes every digital journey in real time across websites and mobile apps. It serves as the unifying platform for product, UX, marketing, IT, analytics teams (and more) to assess performance, prioritize projects and optimize experiences. With unparalleled data privacy and security built in, hundreds of global customers across industries have chosen Glassbox to grow and optimize their digital businesses. Learn more at glassbox.com.

Read More

Software

Persistent Announces Strategic Collaboration Agreement with AWS to Accelerate Generative AI Adoption

Persistent Systems | January 05, 2024

Persistent Systems (BSE: PERSISTENT) (NSE: PERSISTENT), a global Digital Engineering and Enterprise Modernization leader, announced a multi-year Strategic Collaboration Agreement with Amazon Web Services (AWS) to accelerate the pace of innovation and development of generative AI solutions for clients. Persistent is a long-standing AWS Partner and has a proven track record of early scale generative AI adoption across multiple industry verticals leveraging services like Amazon CodeWhisperer and Amazon Bedrock. Amazon CodeWhisperer provides generative AI-powered code recommendations directly in multiple integrated development environments (IDEs) to help developers build applications quickly in more than 15 coding languages; Amazon Bedrock is a fully managed service that makes foundation models (FMs) from leading AI companies accessible via an API to build and scale generative AI applications. This strategic collaboration with AWS will help Persistent to further increase the impact it delivers to its clients that are embracing generative AI. Through this teaming, Persistent will have access to additional resources from AWS to build proofs of concept to help clients identify tangible business outcomes from generative AI. This will also support use case discovery and rapid build out of solutions with additional go-to-market funds from AWS. One of the key benefits to combined clients will be continued early access to AWS's generative AI services and investments that will help clients with their aspirations around growth, time-to-market, and better customer experience. The Strategic Collaboration Agreement builds on Persistent's 30+ years of software engineering heritage, its best practices from more than 120 AWS engagements for cloud migration and modernization, and its 2,500 AWS practitioners to enable flexible and scalable generative AI-powered solutions tailored to clients' unique needs. Persistent's AWS Migration Competency status provides proven cloud expertise to help clients move successfully to AWS through all phases of complex migration projects. This collaboration reflects Persistent's proficiency in building robust cloud infrastructure, crucial in today's cloud-first, AI-first world, enabling clients to implement cloud-powered generative AI solutions. These combined assets from AWS and Persistent can bolster the value provided to joint clients, helping them unlock the full potential of their technology investments. Rajiv Sodhi, Senior Vice President – Hyperscaler Business & Strategic Alliances, Persistent: "Enterprises across industries are looking to tap into the transformative potential of generative AI to reimagine, redefine, and rethink their business models for improved customer experiences and business growth. Combined with our newly acquired AWS Migration Competency status and our SCA, AWS will help us scale generative AI adoption among our clients so they can identify and implement use cases where this technology can have a real impact. We remain committed to helping clients reach their technology goals by leveraging the agility, breadth of services, and rapid innovation that AWS provides." Quan Yang, Vice President of Research IT, Regeneron: "Generative AI unlocks new opportunities to transform the life sciences industry. We are modernizing our legacy research applications to help accelerate the drug development process and simplify workflows. With Persistent's Digital Engineering expertise, powered by the AWS platform, Regeneron's research and pre-clinical development teams help bring our new life-savings drugs to market faster." Chris Sullivan, Vice President, Worldwide System Integrator Partners, AWS: "We are delighted to be working with Persistent to help our customers accelerate growth, enable business transformation, and enhance their digital experience. Together, we aim to redefine what's possible with generative AI, setting new standards for efficiency, innovation, and technological advancements." About Persistent With over 22,800 employees located in 21 countries, Persistent Systems (BSE: PERSISTENT) (NSE: PERSISTENT) is a global services and solutions company delivering Digital Engineering and Enterprise Modernization. As a participant of the United Nations Global Compact, Persistent is committed to aligning strategies and operations with universal principles on human rights, labor, environment, and anti-corruption, as well as take actions that advance societal goals. With 268% growth since 2020, Persistent is the fastest-growing Indian IT Services brand according to Brand Finance.

Read More

Software

Next-gen PRM Software Platform Provider, Mindmatrix, Introduces Cutting-Edge Partner Program Automation Feature

Mindmatrix | December 15, 2023

Mindmatrix, the next-gen PRM and partner marketing software provider has introduced powerful partner program automation tools to its award-winning partner ecosystem orchestration platform, Bridge. They've announced the release of partner program automation tools that allow vendors to automate and streamline their partner programs, by making it easy to manage diverse partner personas, tiers and also, multiple partner programs. The Partner Program Automation module integrates partner data across the board, collating everything at a single point in the Mindmatrix Bridge software platform, which serves as a centralized hub for managing partner objectives, expectations, and rewards. With automated partner tier management, vendors can effortlessly oversee revenue measurement, partner training, certifications, and track the KPIs for each partner, ensuring seamless progression through partner program tiers. By enabling the creation of co-planned business strategies, goal setting, and task assignment, Mindmatrix Bridge software's Business Planning Automation module facilitates greater collaboration and engagement within the sales and partner ecosystem. Vaughn Mordecai, SVP Sales & Business Development, said, "Our new Partner Program Automation module will simplify partner program management to a great extent, empowering vendors to scale their partner ecosystem efficiently. And, allowing them to run their end-to-end partner hierarchies directly from their partner ecosystem orchestration platform. It's one more step in the goal to bring all partner related motions to one location." Mindmatrix's Partner Program Automation feature redefines partner relationship management, offering a suite of powerful tools that streamline marketing efforts, fortify key relationships, and drive unparalleled results. About Mindmatrix A next-gen PRM and partner marketing software provider, Mindmatrix has been focused on helping companies sell more, faster since its inception in 1998. A pioneer of sales (direct & indirect) and marketing enablement technology, today Mindmatrix is the only company offering a fully unified platform (Bridge ™) that connects and enables sales (direct & indirect), marketing, alliances and partner ecosystems. Through Bridge, Mindmatrix expands sales ecosystem enablement beyond its traditional boundaries to cover not just Sales Ecosystem Enablement, but also Partner Marketing and Multi-vendor Solutions Management. About Bridge Bridge, from Mindmatrix, is a unified platform built to engage and enable your channel partners, alliances, and internal teams. Bridge takes the complexity out of sales ecosystem enablement by serving as a single platform with all the capabilities of a PRM Software, Partner Marketing Software and, partner and direct sales enablement software. Bridge drives sales ecosystem enablement beyond its traditional role to cover partner marketing and multi-vendor solutions management as well. Bridge provides a personalized collaboration platform that powers shared marketing, sales, and service experiences. Bridge is the only TRUE Partner Marketing Software with to, through, with and for-partner marketing tools to drive all of your partner marketing programs. With tools that facilitate guided selling, multi-vendor collaboration and easy revenue management, Mindmatrix Bridge is your powerful multi-vendor solutions hub.

Read More