Cyber security breaches in the Middle East are widespread and frequently undetected. Photographer: Daniel Acker/Bloomberg
Cyber security breaches in the Middle East are widespread and frequently undetected. Photographer: Daniel Acker/Bloomberg

US firm on a mission to contain hacking



Every time you search for something on Google, hail an Uber or log into a bank account, your personal data probably flow behind the scenes through a series of separate, freestanding packages of software known as containers.

Although invisible to the user, this method has become the dominant way to code apps today. Programmers like it because it allows them to change one feature without breaking their colleagues’ work, and it helps software run more efficiently, saving companies money.

But the process is also giving hackers lots of new ways to steal people's information. Instead of a user's data going directly to one place, they can jump between dozens of containers for a single action. Hackers only need to gain access to one. Because of the way most containers are designed, they are black boxes on a network. Administrators may have no idea what is happening inside them.

This threat went largely unnoticed for a while as containers proliferated throughout the software industry. In 2014, it caught the attention of Sameer Bhalotra, the former senior cybersecurity director for the US president Barack Obama and an ex-Google employee. Mr Bhalotra created StackRox to address new techniques that exploit container technology.

“Enterprises are flying blind,” said Mr Bhalotra, speaking publicly about his start-up for the first time. “They often have no idea if a container went down by a design - it was no longer needed as user activity decreased - or due to an IT configuration error or a human error or an attacker.”

"[We] obsessed for nearly three years on building adaptive threat protection for containers. Instead of retrofitting old security approaches, we took the time to build a container-native platform from scratch," he said.

StackRox is backed by a Silicon Valley A-list of chief security officers, including Uber’s Joe Sullivan, Facebook’s Alex Stamos and SAP’s Justin Somaini. StackRox is in the process of completing a new funding round, according to reports.

A quarter of all large companies now use containers, and corporate spending on the technology is projected to double over the next two years to US$2 billion, according to 451 Research. Many companies rely on software from Docker, a start-up valued by investors at $1bn. Jay Lyman, an analyst at the research firm, said there is a “gold-rush mentality” to adopt the tool without a full appreciation of the risks. “Security is the number one challenge,” he said.

Docker and StackRox have become close partners, but Mr Bhalotra was not the only one to notice an opportunity. Aqua Security Software, an Israeli firm that secures containers, has attracted funding from the local cybersecurity billionaire Shlomo Kramer and Microsoft Ventures. The San Francisco-based Twistlock has raised some $30 million from Dell and other investors.

Uber is a devotee of the container, as is Alphabet’s Google, which has said every service it offers today runs on the technology. Google uses more than 2 billion containers a week. But these tech juggernauts have highly sophisticated security operations to deal with potential threats. Mr Sullivan said the company created its own software to detect container attacks. “Our security engineering team must be able to blend off-the-shelf security products with a great deal of custom work,” he said.

City National Bank first considered adopting containers last year, but none of its existing security systems could track them. “It’s hard to know if a new container that shows up is really supposed to be there,” said Gene Yoo, the head of information security at City National. Then the Los Angeles bank found StackRox and Docker. It is now moving “aggressively” to containers for its website and payment systems, which is reducing costs. Docker said its technology addresses key security threats that faced apps using earlier approaches without containers.

One feature of containers that hackers are actively exploiting is that they are ephemeral, Mr Bhalotra said. In attacks his company has studied, containers use a kind of suicide switch that controls when they are shut down and hackers who get inside often install malicious software to flip those switches. The code allows them to erase all evidence showing they were there. “Enterprises with advanced IT infrastructures are moving to containers, but they aren’t sure how to address security,” said Mr Stamos, who is also a StackRox backer.

Hackers are eager to take advantage, as StackRox found this spring when it began monitoring a major financial services firm. (Mr Bhalotra asked not to identify certain details about the project to protect the company's work.) StackRox said it detected more than 500 threats aimed at the finance firm's container software during a single month.

For Mr Bhalotra, thwarting malicious hackers is more than just business, it is a calling. "I’ve spent my entire career in security, from Washington DC to Silicon Valley, striving to find better ways to stop the bad guys and drive the security field forward," he says. "At StackRox, I have a simple mantra: build team, build product, serve customers. Our business is about earning trust."

Bloomberg

Company%20Profile
%3Cp%3E%3Cstrong%3EName%3A%3C%2Fstrong%3E%20Takestep%0D%3Cbr%3E%3Cstrong%3EStarted%3A%3C%2Fstrong%3E%20March%202018%0D%3Cbr%3E%3Cstrong%3EFounders%3A%3C%2Fstrong%3E%20Mohamed%20Khashaba%2C%20Mohamed%20Abdallah%2C%20Mohamed%20Adel%20Wafiq%20and%20Ayman%20Taha%0D%3Cbr%3E%3Cstrong%3EBased%3A%3C%2Fstrong%3E%20Cairo%2C%20Egypt%0D%3Cbr%3E%3Cstrong%3ESector%3A%3C%2Fstrong%3E%20health%20technology%0D%3Cbr%3E%3Cstrong%3EEmployees%3A%3C%2Fstrong%3E%20%2011%20full%20time%20and%2022%20part%20time%0D%3Cbr%3E%3Cstrong%3EInvestment%20stage%3A%3C%2Fstrong%3E%20pre-Series%20A%3C%2Fp%3E%0A
THE BIO

Favourite book: ‘Purpose Driven Life’ by Rick Warren

Favourite travel destination: Switzerland

Hobbies: Travelling and following motivational speeches and speakers

Favourite place in UAE: Dubai Museum

Formula Middle East Calendar (Formula Regional and Formula 4)
Round 1: January 17-19, Yas Marina Circuit – Abu Dhabi
 
Round 2: January 22-23, Yas Marina Circuit – Abu Dhabi
 
Round 3: February 7-9, Dubai Autodrome – Dubai
 
Round 4: February 14-16, Yas Marina Circuit – Abu Dhabi
 
Round 5: February 25-27, Jeddah Corniche Circuit – Saudi Arabia
The White Lotus: Season three

Creator: Mike White

Starring: Walton Goggins, Jason Isaacs, Natasha Rothwell

Rating: 4.5/5

The specs

Engine: Four electric motors, one at each wheel

Power: 579hp

Torque: 859Nm

Transmission: Single-speed automatic

Price: From Dh825,900

On sale: Now

Breaking News: The Remaking of Journalism and Why It Matters Now
Alan Rushbridger, Canongate

Key facilities
  • Olympic-size swimming pool with a split bulkhead for multi-use configurations, including water polo and 50m/25m training lanes
  • Premier League-standard football pitch
  • 400m Olympic running track
  • NBA-spec basketball court with auditorium
  • 600-seat auditorium
  • Spaces for historical and cultural exploration
  • An elevated football field that doubles as a helipad
  • Specialist robotics and science laboratories
  • AR and VR-enabled learning centres
  • Disruption Lab and Research Centre for developing entrepreneurial skills
MATCH INFO

Europa League semi-final, second leg
Atletico Madrid (1) v Arsenal (1)

Where: Wanda Metropolitano
When: Thursday, May 3
Live: On BeIN Sports HD

Origin
Dan Brown
Doubleday

The smuggler

Eldarir had arrived at JFK in January 2020 with three suitcases, containing goods he valued at $300, when he was directed to a search area.
Officers found 41 gold artefacts among the bags, including amulets from a funerary set which prepared the deceased for the afterlife.
Also found was a cartouche of a Ptolemaic king on a relief that was originally part of a royal building or temple. 
The largest single group of items found in Eldarir’s cases were 400 shabtis, or figurines.

Khouli conviction

Khouli smuggled items into the US by making false declarations to customs about the country of origin and value of the items.
According to Immigration and Customs Enforcement, he provided “false provenances which stated that [two] Egyptian antiquities were part of a collection assembled by Khouli's father in Israel in the 1960s” when in fact “Khouli acquired the Egyptian antiquities from other dealers”.
He was sentenced to one year of probation, six months of home confinement and 200 hours of community service in 2012 after admitting buying and smuggling Egyptian antiquities, including coffins, funerary boats and limestone figures.

For sale

A number of other items said to come from the collection of Ezeldeen Taha Eldarir are currently or recently for sale.
Their provenance is described in near identical terms as the British Museum shabti: bought from Salahaddin Sirmali, "authenticated and appraised" by Hossen Rashed, then imported to the US in 1948.

- An Egyptian Mummy mask dating from 700BC-30BC, is on offer for £11,807 ($15,275) online by a seller in Mexico

- A coffin lid dating back to 664BC-332BC was offered for sale by a Colorado-based art dealer, with a starting price of $65,000

- A shabti that was on sale through a Chicago-based coin dealer, dating from 1567BC-1085BC, is up for $1,950

TICKETS

Tickets start at Dh100 for adults, while children can enter free on the opening day. For more information, visit www.mubadalawtc.com.

Mercer, the investment consulting arm of US services company Marsh & McLennan, expects its wealth division to at least double its assets under management (AUM) in the Middle East as wealth in the region continues to grow despite economic headwinds, a company official said.

Mercer Wealth, which globally has $160 billion in AUM, plans to boost its AUM in the region to $2-$3bn in the next 2-3 years from the present $1bn, said Yasir AbuShaban, a Dubai-based principal with Mercer Wealth.

Within the next two to three years, we are looking at reaching $2 to $3 billion as a conservative estimate and we do see an opportunity to do so,” said Mr AbuShaban.

Mercer does not directly make investments, but allocates clients’ money they have discretion to, to professional asset managers. They also provide advice to clients.

“We have buying power. We can negotiate on their (client’s) behalf with asset managers to provide them lower fees than they otherwise would have to get on their own,” he added.

Mercer Wealth’s clients include sovereign wealth funds, family offices, and insurance companies among others.

From its office in Dubai, Mercer also looks after Africa, India and Turkey, where they also see opportunity for growth.

Wealth creation in Middle East and Africa (MEA) grew 8.5 per cent to $8.1 trillion last year from $7.5tn in 2015, higher than last year’s global average of 6 per cent and the second-highest growth in a region after Asia-Pacific which grew 9.9 per cent, according to consultancy Boston Consulting Group (BCG). In the region, where wealth grew just 1.9 per cent in 2015 compared with 2014, a pickup in oil prices has helped in wealth generation.

BCG is forecasting MEA wealth will rise to $12tn by 2021, growing at an annual average of 8 per cent.

Drivers of wealth generation in the region will be split evenly between new wealth creation and growth of performance of existing assets, according to BCG.

Another general trend in the region is clients’ looking for a comprehensive approach to investing, according to Mr AbuShaban.

“Institutional investors or some of the families are seeing a slowdown in the available capital they have to invest and in that sense they are looking at optimizing the way they manage their portfolios and making sure they are not investing haphazardly and different parts of their investment are working together,” said Mr AbuShaban.

Some clients also have a higher appetite for risk, given the low interest-rate environment that does not provide enough yield for some institutional investors. These clients are keen to invest in illiquid assets, such as private equity and infrastructure.

“What we have seen is a desire for higher returns in what has been a low-return environment specifically in various fixed income or bonds,” he said.

“In this environment, we have seen a de facto increase in the risk that clients are taking in things like illiquid investments, private equity investments, infrastructure and private debt, those kind of investments were higher illiquidity results in incrementally higher returns.”

The Abu Dhabi Investment Authority, one of the largest sovereign wealth funds, said in its 2016 report that has gradually increased its exposure in direct private equity and private credit transactions, mainly in Asian markets and especially in China and India. The authority’s private equity department focused on structured equities owing to “their defensive characteristics.”

The rules on fostering in the UAE

A foster couple or family must:

  • be Muslim, Emirati and be residing in the UAE
  • not be younger than 25 years old
  • not have been convicted of offences or crimes involving moral turpitude
  • be free of infectious diseases or psychological and mental disorders
  • have the ability to support its members and the foster child financially
  • undertake to treat and raise the child in a proper manner and take care of his or her health and well-being
  • A single, divorced or widowed Muslim Emirati female, residing in the UAE may apply to foster a child if she is at least 30 years old and able to support the child financially
Our legal consultant

Name: Hassan Mohsen Elhais

Position: legal consultant with Al Rowaad Advocates and Legal Consultants.

The Orwell Prize for Political Writing

Twelve books were longlisted for The Orwell Prize for Political Writing. The non-fiction works cover various themes from education, gender bias, and the environment to surveillance and political power. Some of the books that made it to the non-fiction longlist include: 

  • Appeasing Hitler: Chamberlain, Churchill and the Road to War by Tim Bouverie
  • Some Kids I Taught and What They Taught Me by Kate Clanchy
  • Invisible Women: Exposing Data Bias in a World Designed for Men by Caroline Criado Perez
  • Follow Me, Akhi: The Online World of British Muslims by Hussein Kesvani
  • Guest House for Young Widows: Among the Women of ISIS by Azadeh Moaveni

Scores in brief:

  • New Medical Centre 129-5 in 17 overs bt Zayed Cricket Academy 125-6 in 20 overs.
  • William Hare Abu Dhabi Gymkhana 188-8 in 20 overs bt One Stop Tourism 184-8 in 20 overs
  • Alubond Tigers 138-7 in 20 overs bt United Bank Limited 132-7 in 20 overs
  • Multiplex 142-6 in 17 overs bt Xconcepts Automobili 140 all out in 20 overs