SignFlow engineers terminate menacing Bitcoin virus

SigniFlowUncategorized

pic for SignFlow bitcoin blogA dangerous Bitcoin-mining virus has been detected and disabled by two of our IT experts.

A potentially devastating Bitcoin-mining virus has been stopped in its tracks, thanks to the vigilance and quick actions of SignFlow (a PBSA brand) engineers William Vermaak and Morne Wilken.

Vermaak and Wilken detected malicious activity on one of their customer’s servers last week, immediately analysed the source of the virus and un-infected the server.

According to Vermaak, the virus had gone undetected by all available virus packages. “We submitted samples to ESET the next day and [the company] immediately responded from its virus lab in Denmark, confirming the virus was wild and that detection for the threat had been added to its latest definition updates.”

Founded in 1992, ESET is a Slovakia-based IT security company that offers anti-virus and firewall products such as ESET NOD32. The security company named the virus winlog.VBS – VBS/TrojanDownloader.Agent.QE trojan winlog.bat – BAT/CoinMiner.UG Trojan.

By the time of detection, the virus had already infected 0.04% of Windows computers in South Africa, while Russia was hardest hit, with 0.5% of all Windows computers infected. Windows is currently the most popular end-user operating system in the world.

Essentially a Bitcoin-mining virus, the Winlog Virus downloads a Bitcoin CPU miner on the victim’s computer, and then mines Bitcoins for the virus originator. Vermaak says this type of virus is particularly evasive. “It tries to make itself resilient and configures various system schedules to start it again if it’s stopped. The virus will also install itself on the system as a system service.

“The virus infiltrates the System Registry and changes some keys to make itself run again if it’s shut down. Shortcuts on the victims’s Desktop are modified to run the virus and these then run the original program, in an attempt to mask it’s presence. The virus also copies itself into various other files on the system – including Microsoft.exe – to try ensure resilience.”

Prevalent pest

According to Manuel Corregedor, chief operations officer at information security company Telspace Systems, Bitcoin-mining viruses have become rampant. “There has definitely, in recent times, been an increase in Bitcoin-mining viruses – in particular the diversification of the type of currencies they mine.”

Almost three months ago, Russian president Vladimir Putin’s Internet advisor, Herman Klimenko, issued a dire public warning that 20 to 30 percent of all computers in Russia were infected with computer malware designed to turn devices into Bitcoin-mining machines.

At the time Klimenko told Moscow-based news broadcaster RBC that viruses that install bitcoin-mining software are the “most common and most dangerous” type of computer malware in existence.

Corregedor says the main issue Bitcoin-mining malware creates, is that it negatively impacts the performance of the victim’s computer. “[The malware] does this by stealing/utilising the infected computer’s resources (CPU, GPU, RAM, etc). This may result, over time, in increased wear and tear, which may cause the computer to fail or cease.” On top of this destructive consequence, he adds, there are other costs associated with increased power consumption.

But this destructive malware goes even further. Apart from the said performance impact, Corregedor notes that – apart from mining Bitcoins – it  has also been seen launching web- and network-based attacks, such denial of service attacks, login brute force attacks and web application attacks.

“It should also be noted that the danger [with Bitcoin-mining malware] is further increased due to the fact that [it] has been found to be infecting Internet of Things devices i.e. web cameras, routers, Network Attached Storage devices, etc.  The infections have mainly occurred due to these devices having default credentials configured on them – for example user name admin and password admin on a router.”

Protection pointers

Corregedor says users can protect themselves against these kinds of malicious virtual attacks by ensuring their operating systems (Windows, Linux etc) are up to date with the latest security updates (patches).

He gives the following pointers:

  • Ensure you have anti-virus software installed and that it is up to date
  • Ensure your devices are not using any default login credentials and/or weak login credentials, in particular devices such as routers
  • Enable/install a Firewall
  • Install a HIPS (Host Intrusion Prevention System)
  • Be cautious/aware when it comes to receiving unexpected emails with attachments and/or installing potentially unwanted software

“Attackers are constantly scanning the internet looking for devices that are not up to date and/or are not configured securely (for example using default credentials).  Once such systems are identified, they are infected with malware,” he warns.

“Additionally, attackers are also constantly sending out spam/phishing emails that contain malicious attachments.”

Corregedor says, while South Africa is just as vulnerable as any country when it comes to infection, the country’s lack of a National Information Security Awareness campaign could render it in deeper danger.

Filed under: Blogs, In the News, Index PAge, pbDigital, pbOffice, PBSA, pbVerify, SignFlow Tagged: Bitcoin, Bitcoin-mining virus, Herman Klimenko, malware, Manuel Corregedor, Morne Wilken, PBSA, Russia, SignFlow, Telspace Systems, trojan, Vladimir Putin, William Vermaak, Windows, Winlog Virus
Source: SignFlow News

SA experts stop bitcoin virus

SigniFlowUncategorized

Published by IT-Online on 17 October 2017

A dangerous Bitcoin-mining virus has been detected and disabled by two Johannesburg-based IT experts.

White hat ethical hacker William Vermaak, from PBSA’s digital arm pbDigital, and senior software developer Morne Wilken, detected malicious activity on one of their customer’s servers last week. The two immediately analysed the source of the virus and uninfected the server.

According to Vermaak, the virus had gone undetected by all available virus packages.

“We submitted samples to ESET the next day and [the company] immediately responded from its virus lab in Denmark, confirming the virus was wild and that detection for the threat had been added to its latest definition updates.”

By the time of detection, the virus had already infected 0,04% of Windows computers in South Africa. Russia was hardest hit, with 0,5% of all Windows computers infected.

Essentially a Bitcoin-mining virus, the Winlog Virus downloads a Bitcoin CPU miner on the victim’s computer, and then mines Bitcoins for the virus originator.

Vermaak says this type of virus is particularly evasive. “It tries to make itself resilient and configures various system schedules to start it again if it’s stopped. The virus will also install itself on the system as a system service.

“The virus infiltrates the System Registry and changes some keys to make itself run again if it’s shut down. Shortcuts on the victims’s Desktop are modified to run the virus and these then run the original program, in an attempt to mask it’s presence. The virus also copies itself into various other files on the system — including Microsoft.exe — to try ensure resilience.”

Almost three months ago, Russian president Vladimir Putin’s Internet advisor, Herman Klimenko, issued a dire public warning that 20% to 30% of all computers in Russia were infected with computer malware designed to turn devices into Bitcoin-mining machines.

At the time, Klimenko told Moscow-based news broadcaster RBC that viruses that install bitcoin-mining software are the “most common and most dangerous” type of computer malware in existence.

 

Filed under: Blogs, In the News, Index PAge, SignFlow Tagged: Bitcoin, Bitcoin-mining virus, Herman Klimenko, malware, Morne Wilken, PBSA, Russia, SignFlow, Vladimir Putin, white hat, white hat ethical hacker, William Vermaak, Windows
Source: SignFlow News

SignFlow ties up with Accfin to digitise accounting processes

SigniFlowUncategorized

The integration of two state-of-the-art software platforms transports the accounting profession into a new world of digitisation.

Digital signature workflow solution SignFlow and accounting software firm Accfin have integrated their respective software platforms, in a move that places the accounting profession securely in a new and exciting world of digitisation.

Accfin, a local software firm leading the way in automation of back-office systems for accounting and auditing companies, grew out of an accounting firm over 20 years ago. The recent tie-up with SignFlow – a locally developed and internationally recognised digital signature solution – essentially automates the entire communication process involved in the accounting practice.

Leon van der Merwe, head of digital at SignFlow parent company PBSA, explains, “By using the SignFlow feature in Accfin software, you eliminate the need for print, courier and e-mailing of sensitive documents to customers – and then having to wait days, even weeks for a response.

“SignFlow is built on a powerful, digital workflow engine that tracks progress and instils accountability and auditability. Apart from the obvious environmental advantages the solution offers, the value of saving time through increased efficiency, is most valuable to accountants, who work under tremendous time pressure.”

Accfin MD Mark Silberman says the integration with SignFlow “changes the state of play” in the accounting market place. “It automates the communication process. Our software allows accounting firms to communicate with their clients. The integration of SignFlow with [Accfin’s] Sky Software allows the customers of the accountant to authorise the filing of tax returns and approve company resolutions.”

Accfin, which strives to provide state-of-the-art back office systems to South African accounting firms, currently provides automation software across the sector – from large international firms, to small sole practitioners.

Van der Merwe says SignFlow is proud to be associated with Accfin Software – a company that is “definitely leading the way in automating back office systems for accounting and auditing firms”.

“SignFlow is fast becoming the most trusted digital signature workflow solution in South Africa, especially within the auditing and financial sectors,” concludes Van der Merwe.

Filed under: Blogs, pbDigital, PBSA, SignFlow Tagged: Accfin, accounting, auditing, automation, digital signatures, Leon van der Merwe, Mark Silberman, SignFlow, Sky Software, Workflow
Source: SignFlow News

Draftworx, SignFlow integration yields SA first

SigniFlowUncategorized

A recent partnership between the two software platforms brings a cutting-edge automation solution to the accounting and auditing industry.

In a move that has seen the birth of cutting-edge technology – the first of its kind in South Africa – SignFlow has partnered with Draftworx, addressing a critical need identified among auditors and corporate companies that draft financial statements.

Draftworx provides automated drafting and working paper financial software to more than 2 500 accounting and auditing firms. The company went to market six and a half years ago, bringing the industry easy-to-learn and easy-to-use automation software, which allows  accountants and auditors to generate International Financial Reporting Standards  (IFRS)/IFRS SME compliant financial statements and ISA audit, review, and compilation engagement compliance.

According to Leon van der Merwe, head of digital at SignFlow parent company PBSA, the integration between the two software platforms came about when a massive need among auditors and corporates that prepare their own financial statements was identified – that of automating and digitising the process of getting financial statements and engagement documents signed off by company directors.

“Auditors can now automate and digitise their document delivery processes using the DigiSign module in the Draftworx platform to distribute documents electronically for customers to sign, using legally binding SignFlow digital signatures. The distribution and signing process is completely digital and auditable, entirely removing the need to print, scan and deliver paper-based financial statements and engagement contracts.”

Draftworx CEO Earl Steyn says the company, which aims to be in the cloud by year-end, sees SignFlow becoming one of its core technologies and marketing advantages. “Accountants and auditors can reduce time wastage – as well as waiting periods – by having their clients sign all their documentation offsite and at their leisure.”

Steyn adds his experience with SignFlow – a locally developed and internationally recognised digital signature and workflow solution – has been “phenomenal”. He says the team pays attention to detail and is willing to customise SignFlow to Draftworx and its clients’ requirements.

Van der Merwe says the SignFlow team is proud to be associated with Draftworx software, “which is leading the way in IFRS/IFRS SME compliant financial statements and ISA audit software in South Africa and across Africa”.

Filed under: Blogs, pbDigital, PBSA, SignFlow Tagged: accounting sector, audits, digital signature, Draftworx, Earl Steyn, financial statements, IFRS, IFRS SME, ISA audit, ISA Audit software, Leon van der Merwe
Source: SignFlow News

FICA compliance made easy

SigniFlowUncategorized

SA’s leading data bureau gives businesses the key to pain-free compliance.

Although the Financial Intelligence Centre Act (FICA) came into effect almost a decade and a half ago, it is as relevant today as the day it was conceived.

Instituted in 2003 to curb financial crimes, such as money laundering, tax evasion, and terrorist financing activities, FICA is a law that all financial institutions need to comply with. This includes any business that provides credit facilities in any form – whether assets like houses and cars, or retail items like mobile phone contracts and appliance/clothing accounts – or cash in the form of loans.

FICA basically makes it incumbent on all aforementioned financial services companies to reassess their entire client list, in order to ensure that all clients’ identities and finances can be verified. Think of it as a sweeping credit check of every person in an existing database – it is a means of identifying any individual who could potentially pose a threat to your company.

As with any law governing how businesses handle customer identification and verification processes, and how they manage records, FICA is multifaceted, and comes with severe penalties for businesses that are non-compliant.

Pain-free compliance

But, as daunting as this may sound, it does not need to be – nor does FICA compliance need to be another headache you have to deal with as a credit providing company.

South Africa’s leading data bureau, pbVerify, offers a range of services to make your path as a business striving for FICA compliance as straight as possible.

A division of pbDigital, under Customer Communications firm PBSA, pbVerify is essentially a credit risk management tool for any size business in South Africa that grants credit accounts and payment terms to other businesses and/or to South African consumers.

pbVerify’s online web-based tools help companies assess credit risk by evaluating the credit history of any business and its principles and/or any consumer a company wishes to grant credit terms to. This is done via multiple credit bureaus and other business critical data providers, through one easy-to-use website.

Included in pbVerify’s suite of services, are the following consumer credit check products, which offer your business a painless means of becoming FICA compliant:

Consumer traces for address validation: facilitated by three of South Africa’s main data credit bureaus – XDS, TransUnion and Compuscan – pbVerify’s consumer trace service gives you access to consumers’ latest  contact information.

Bank account verification: pbVerify’s Bank Account Verification Service allows you to efficiently verify the bank details of a consumer, and determine the status of their account – whether the account is currently active, open or closed and whether it has been open for more than three months. The service is available for the 5 major banks in South Africa only.

CIPC Company & Director Verification: pbVerify’s CIPC Company Search Report – one of the most advanced CIPC search tools in South Africa – allows customers to easily retrieve and verify all registration information related to any registered South African business and its principles. Complementing this search too, is the CIPC Director Search Report.

ID Verification: The pbVerify Home Affairs ID Verification tool is used to determine the correct identity information on South African citizens. (This validates the consumer’s identification, but does not confirm whether or not they are credit active)

Alongside this, pbVerify’s ID verification API is used by various corporations, retailers, telecommunications companies, online service providers and system integrators to instantly verify identities for an range of different functions, including customer identification at point of sale, fraud prevention, online transaction verification, customer relations, human resource software and more.

Filed under: Blogs, pbDigital, PBSA, pbVerify, SignFlow Tagged: Compliance, FICA, Financial Intelligence Centre Act, pbverify, POPI, POPI Act, POPI Compliance, SignFlow
Source: SignFlow News

Portfolios feature aids POPI, FICA compliance

SigniFlowUncategorized

doc dSignFlow’s secure multi-document portal, Portfolios, offers businesses a reliable means of complying with stringent regulations.

There are two well-known and much-publicised Acts that make South African businesses shudder in their shoes – the Financial Intelligence Centre Act (FICA) of 2001 and the Protection of Personal Information (POPI) Act of 2013.

The two pieces of legislation have much in common. To begin with, they both have to do with how your business deals with customer identification and verification processes, and how it stores and maintains customer and transactional records. Secondly, there are severe penalties associated with non-compliance – severe enough, in many cases, to cause irreparable reputational and financial damage.

Third of all – and this is the good news – SignFlow can help you comply with both. Our digital signature workflow solution offers you an efficient and sure-fire means of making sure your business processes and IT systems are up to scratch when it comes to compliance with both these Acts – so you need no longer shy away from the dreaded “F-word” and “P-word”.

Portfolios

FICA and POPI compliance largely comes down to how you transmit, maintain and store customer data and, while the sheer volume and variety of data may make the process seem very complicated, SignFlow’s Portfolios feature offers you a surprisingly simple means of tackling it.

A SignFlow Portfolio is basically a portal where you can accumulate multiple documents that have been through a workflow and signed, in combination with documents that are just uploaded and stored.

Because there is no email (which is inherently insecure) involved and all documents are uploaded through a secure, encrypted channel, to an online portal where they can only be accessed by the individuals authorised to access them, Portfolios is an invaluable tool to have in your arsenal when you are striving for FICA and/or POPI compliance.

Let’s take an insurance company, for example:

  • The company requires identification and proof of residence documents (documents required by FICA that both also have a bearing on POPI) from a client.
  • That same client needs to sign a contract, which contains personal and financial information, and send it back to the company.
  • SignFlow Portfolios enables you and your client to upload and share documents (both signed and unsigned) via an encrypted portal.
  • There is no emailing, printing or scanning of documents involved at any stage.
  • All your client’s information is kept neatly in one designated, easy-to-access and searchable databank.

Given that the implementation date for the POPI Act is expected to be set this year – and in light of the FICA failures* we have seen in the past, you are under more pressure than ever before to make sure your business complies. Contact SignFlow today for more information on how we can ease the pressure and give you total peace of mind.

* In April 2014, the South African Reserve Bank fined the country’s four largest banks R125 million collectively for failing to comply with FICA. (www.sanews.gov.za)

Filed under: Blogs, pbDigital, PBSA, SignFlow Tagged: digital signatures, FICA, FICA Compliant, Financial Intelligence Centre Act, POPI, POPI Act, POPI Compliance, Portfolios, Protection of Personal Information Act, SignFlow, South African Reserve Bank
Source: SignFlow News

Who says nothing in life is free?

SigniFlowUncategorized


bunny DSignFlow is giving all new and existing SignFree users three FREE workflows.

When we created SignFree, the only digital signature platform worldwide with a totally free, fully functional interface that doesn’t expire, we told you it was free – and always would be. Great news, right? Well, it just got better.

Stepping it up a notch, SignFlow is now giving all SignFree clients – new and existing – three free (that’s free, not “free”) workflows.

What’s the catch, you may ask? There isn’t one. Simply sign up as a SignFree user – either by registering on the website or receiving a document to sign from another user – and you get a free passport to our digital world of efficiency.

And if you are already a SignFree user, you don’t need to do a thing – three free workflows are yours. You’re welcome.

Essentially, we are giving SignFree users a fully-fledged SignFlow with Workflow account, limited to three workflows (effective as of 1 March 2017).

Interested? You can register right now, right here.

Benefits & features

Now that you have this awesome digital signature solution securely in your grasp, you probably want to know what you can do with it.

First of all, you can sign as many documents as you want and store up to 50 in the SignFlow cloud. So you can upload documents requiring your signature, sign them in SignFlow and send them on to the relevant person through the system – no email tennis, no printing, no scanning, no time wasting.

With your new workflow account, you can also bring a document in to SignFlow and send it out to as many people as you want to sign your document. A workflow can comprise of any number of signers and/or approvers.

As a SignFlow user, you have your own Dashboard and Profile setup, which is full of functionality and easy to navigate. This includes, among other handy items, a suite of Microsoft plug-ins to make your SignFlow experience even more seamless.

Then, of course, there are all the cool customisable features that come with having a SignFlow account – like the option to either free-hand draw your signature, or choose one from a variety of fonts, as in the images below.

Choose font signatureDraw signature

In a nutshell, SignFlow is a digital signature workflow manager fully digitises (and enhances) any process that requires a document to be signed or approved. When it comes to our SignFree with Workflow solution, compared to others out there, you will find more functionality, more documents, more security, stronger compliance and a superior customer experience.

We could go on for pages about all the things you can do with your SignFlow account and free workflows, but figure it would be more fun for you to explore your newfound digital signature capabilities yourself. To learn more about the world of options SignFlow opens up, visit our Features and Benefits page, here.

Finally, all that’s left to say is, “Enjoy!” If you like the system and want to keep on workflowing – why not sign up for a SignFree with Workflow account? It’s easy, affordable and sure to become so indispensable a tool, you’ll wonder how you ever got along without it.

Filed under: Blogs, pbDigital, PBSA, SignFlow Tagged: Dashboard, Microsoft, Profile, SignFlow, Signfree, signfree with workflow, Workflow
Source: SignFlow News