{"id":97281,"date":"2017-04-12T07:20:25","date_gmt":"2017-04-12T12:20:25","guid":{"rendered":"http:\/\/www.ict-pulse.com\/?p=97281"},"modified":"2017-04-19T08:41:01","modified_gmt":"2017-04-19T13:41:01","slug":"expert-insights-2-cyber-threats-security-caribbean-2017-update","status":"publish","type":"post","link":"https:\/\/ict-pulse.com\/2017\/04\/expert-insights-2-cyber-threats-security-caribbean-2017-update\/","title":{"rendered":"Expert insights 2: Cyber threats and security in the Caribbean 2017 update"},"content":{"rendered":"<p><em>Our 2017 Expert Insight series on network intrusion and security in the Caribbean\u00a0continues with Hector Dias, a network\/IT security professional based in the Dominican Republic.<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>In this the second in our Expert insights series for 2017 on cyber threats and security in the Caribbean, we are thrilled, once again, to have Hector Diaz of Cylance, a cybersecurity products and services company, who is based in the Dominican Republic. Previously, Hector was Regional Account Manager, Caribbean, at Intel Security (formerly known as McAfee). He has extensive experience in the IT security space, and possesses a diverse skills set, which includes a strong technical background in infrastructure and security.<\/p>\n<p><strong>ICT Pulse: \u00a0Hector, give us a quick recap of what have been the most prevalent types of incidents in the Dominican Republic and\/or in the Caribbean region over the past year or so? How has the threat landscape changed?<\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong>Hector Diaz:<\/strong>\u00a0 \u00a0Hi Michele, thanks for having me as part of the series once again in 2017. The threat landscape in Caribbean region has evolved to incorporate new techniques and to cover a wider spectrum of targets. Every year more and more companies and consumers are depending on technology for pretty much each process from CRM systems to an individual purchasing some goods on the web. Per the 2016 Verizon Data Breach Report, and I quote \u201c<em>in a [whopping] 93% of the cases they analyzed, systems were compromised in minutes or less and data exfiltration happened within minutes in 28% of cases. But even where exfiltration took days, the criminals didn\u2019t need to worry. In 83% of cases, victims didn\u2019t find out they\u2019d been breached for weeks or more<\/em>\u201d.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">If we add to this the growing and visible threat of ransomware, I think we still have a lot of room for improvement in the region in the adoption of proper policies and user education which should be complemented also with technologies that can coexist with the user and provide protection without interfering with business processes or the actual user computing experience.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In terms of providing real\/objective data about incidents in the region, it is almost impossible to get our hands in some reliable data other than telemetry that vendors can collect to identify the origin of a threat or the number of detections that occur in a region, other than that, the region still lacks of regulations that obligate them to disclose IT security incidents.<\/span><\/p>\n<p><strong>ICTP: \u00a0Over the past year, ransomware incidents appeared to have been quite plentiful across the region. Are they still as huge a threat? <\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"82345\" data-permalink=\"https:\/\/ict-pulse.com\/2016\/05\/expert-insights-2-cyber-threats-security-caribbean-2016-update-part-2\/pic_hdiaz\/\" data-orig-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2016\/05\/Pic_HDIAZ.png?fit=243%2C269&amp;ssl=1\" data-orig-size=\"243,269\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"Pic_Hector DIAZ (Source H Diaz)\" data-image-description=\"\" data-image-caption=\"\" data-medium-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2016\/05\/Pic_HDIAZ.png?fit=243%2C269&amp;ssl=1\" data-large-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2016\/05\/Pic_HDIAZ.png?fit=243%2C269&amp;ssl=1\" class=\"alignright size-full wp-image-82345\" src=\"https:\/\/i0.wp.com\/www.ict-pulse.com\/wp-content\/uploads\/2016\/05\/Pic_HDIAZ.png?resize=243%2C269\" alt=\"\" width=\"243\" height=\"269\" \/>HD: \u00a0<\/strong>Ransomware continues to be the most prevalent and visible threat and it has evolved from our last conversation on this topic, criminal campaigns today are more advanced compared to what we have seen in the past, with the added problem that samples and toolkits can be easily obtained and used successfully by criminals that have little to no hacking skills, often referred to as Ransomware as a Service (RaaS) and there are plenty of examples of this \u201cbusiness model\u201d where cybercriminals even provide Service Level Agreements (SLA) and Technical support to their \u201ccustomers\u201d massifying this problem to exponential levels, <\/span><span style=\"font-weight: 400;\">these ransomware-as-a-service (Raas) offerings are being released more and more frequently.\u00a0Only three years ago, we would see maybe three or four legitimate RaaS offerings appear every year. Now, we see far more, often several per month.<\/span><\/p>\n<p>Some of the features that some of these ransomware as a service \u201csubscriptions\u201d include:<\/p>\n<ul>\n<li><span style=\"font-weight: 400;\">Full interactive technical support, with an SLA of 24 or 48 hours on complex issues<\/span><span style=\"font-weight: 400;\">\u00a0<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Ful<span style=\"color: #000000;\">l C2 f<\/span>unctionality for tracking and managing infected hosts<\/span><\/li>\n<li><span style=\"font-weight: 400;\">The ability to generate multiple binaries (the actual ransomware). The system appears to require between 5-10 minutes between requests<\/span><\/li>\n<li><span style=\"font-weight: 400;\">The ability to create multiple, unique campaigns, and assign binary generation to those campaigns<\/span><\/li>\n<li><span style=\"font-weight: 400;\">The ability to interact and chat with infected clients<\/span><i><span style=\"font-weight: 400;\">\u00a0(a feature rooted in PadCrypt &#8211; more on that soon)<\/span><\/i><\/li>\n<li><span style=\"font-weight: 400;\">Ransom amounts that can be altered per binary or per campaign<\/span><\/li>\n<\/ul>\n<p><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"97293\" data-permalink=\"https:\/\/ict-pulse.com\/2017\/04\/expert-insights-2-cyber-threats-security-caribbean-2017-update\/c2-security-meaning\/\" data-orig-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?fit=575%2C192&amp;ssl=1\" data-orig-size=\"575,192\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"C2 security meaning\" data-image-description=\"\" data-image-caption=\"\" data-medium-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?fit=300%2C100&amp;ssl=1\" data-large-file=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?fit=575%2C192&amp;ssl=1\" class=\"wp-image-97293 aligncenter\" src=\"https:\/\/i0.wp.com\/www.ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?resize=314%2C105\" alt=\"\" width=\"314\" height=\"105\" srcset=\"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?w=575&amp;ssl=1 575w, https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/C2-security-meaning.png?resize=300%2C100&amp;ssl=1 300w\" sizes=\"(max-width: 314px) 100vw, 314px\" \/>In addition to that, we are seeing ransomware being used for much more than just the typical ransoms.<\/p>\n<p><span style=\"font-weight: 400;\">Our Cylance SPEAR research team have seen it used as a diversion; first harvesting credentials for later use, and then encrypting the drive to keep IT staff occupied while the attacker covers their tracks and accomplishes even more nefarious objectives. And more recently, we are seeing highly opportunistic campaigns that encrypt entire networks in an organization and delete host backups prior to encryption, leaving the entire organization held hostage and unable to operate.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Another problem with Ransomware\u2019s proliferation is how easy is for an attacker to create a new variant of a known piece of malware making it invisible for most Antivirus solutions that rely on signatures or file hashes to provide protection, that\u2019s why we have seen so many cases where a user or company gets infected a ransomware, they report the situation to their provider and despite the fact that they generate a signature to protect from this threat, maybe a couple of weeks after, the person or company gets affected again by the same problem. That makes evident that a new approach is needed to provide an appropriate level of protection and we have seen how many innovators are now exploring and developing new and innovative ways to tackle this problem, some of them from an endpoint detection and response perspective and some others, like Cylance, from a prevention standpoint.<\/span><\/p>\n<p><strong>ICTP: \u00a0What are some of the new and emerging threats of which we should be more aware? And are there any areas of concern that you have for Caribbean organisations?<\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong>HD: \u00a0<\/strong>At Cylance, we focused on how threats evolve to adapt to security products and still evade security controls, we have seen several areas where threats have evolved in a special manner and we have written extensive blogs and research papers on the following areas, some of this are not new but attackers are still using the same methods, they just adapt them to evade security solutions, some of these are:<\/span><\/p>\n<ul>\n<li><b>Universal Unhooking:<\/b><span style=\"font-weight: 400;\"> a very technical threat to explain in this interview, but in a nutshell, Code hooking is a technique used for redirecting a computer&#8217;s execution flow to modify software. Essentially, a \u2018hook\u2019 is something that will allow the developer to see, view, and interact with something that is already going on in the system. Code hooks can perform a wide variety of functionality both innocent and nefarious, including:<\/span>\n<ul>\n<li><span style=\"font-weight: 400;\"> \u00a0Patching a bug<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Performance monitoring<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Disabling digital rights management systems<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Capturing keystrokes (AKA keylogging)<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Hiding processes and files (rootkits)<\/span><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p style=\"padding-left: 30px;\"><span style=\"font-weight: 400;\">The antivirus (AV) industry uses code hooking to monitor processes for potentially malicious behavior, protect applications by injecting anti-exploitation checks, and isolate processes by sandboxing or virtualization. The technique can also be used by the bad actors, for instance to implement a rootkit to hide processes and network connections from the end-user and security software. Cylance has done extensive research on how attackers are using these techniques to evade traditional endpoint security solutions and become invisible in the victim\u2019s machine.<\/span><\/p>\n<ul>\n<li><b>POS Malware:<\/b><span style=\"font-weight: 400;\"> Point-of-Sale Malware is nothing new in the region, but we have seen how attackers are modifying existing pieces of POS malware to create new samples that are again, invisible to traditional security solutions. A couple of examples we have seen in the wild are:<\/span>\n<ul>\n<li style=\"font-weight: 400;\"><b>RAWPoS Malware:<\/b><span style=\"font-weight: 400;\"> where attackers have even removed functionality from their programs to create new variants and obfuscate the code to make it difficult to identify by signature-based solutions or file hash lookups having a big impact on companies that rely on POS systems to conduct business.<\/span><\/li>\n<li style=\"font-weight: 400;\"><b>Flokibot POS Malware:<\/b> <span style=\"font-weight: 400;\">this is a piece of malware that uses RAM scraping<\/span><i><span style=\"font-weight: 400;\">\u00a0<\/span><\/i><span style=\"font-weight: 400;\">to search for and collect credit card information that is exposed briefly during a PoS transaction. After a period, this data is then exfiltrated off-site to an attacker-controlled server. Flokibot, like most PoS malware, attempts to gains access to PoS devices via phishing attempts, stolen credentials, or a rogue insider. We have seen many cases of this malware attacking not only POS systems but ATMs as well in the region.<\/span><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<ul>\n<li style=\"font-weight: 400;\"><b>Social Engineering:<\/b><span style=\"font-weight: 400;\"> This is still one the biggest problems in achieving a good level of security in companies of all sizes and at Cylance we consider this as the second most dangerous problem after malware execution, when attackers are not able to execute a piece of malware, they jump into social engineering techniques to try to get information about the user\u2019s identity so they can later utilize this in more elaborated attacks. We have written some blog entries on this problem, identifying campaigns on popular social media websites such as Linkedin: <\/span><a href=\"https:\/\/www.cylance.com\/en_us\/blog\/social-engineers-target-linkedin-how-to-protect-your-organization.html\" target=\"_blank\"><span style=\"font-weight: 400;\">https:\/\/www.cylance.com\/en_us\/blog\/social-engineers-target-linkedin-how-to-protect-your-organization.html<\/span><\/a><span style=\"font-weight: 400;\"> and also one effective technique that hackers commonly use which is to drop usb\u2019s around the building and wait for someone to connect it on a company\u2019s computer: <\/span><a href=\"https:\/\/www.cylance.com\/en_us\/blog\/social-engineering-beware-strangers-with-candy.html\" target=\"_blank\"><span style=\"font-weight: 400;\">https:\/\/www.cylance.com\/en_us\/blog\/social-engineering-beware-strangers-with-candy.html<\/span><\/a><span style=\"font-weight: 400;\"> we think education is the only way to strengthen security against this threat.<\/span><\/li>\n<\/ul>\n<p><strong>ICTP: \u00a0At the CARICOM\/regional level, there has been a growing awareness of cybercrime and cybersecurity, and calls by leaders for something be done. In your opinion, has there been any improvement in the cybersecurity-associated resources or support structures in the Dominican Republic, and\/or perhaps regionally? What might still be missing?<\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong>HD: \u00a0<\/strong>The Caribbean region\u2019s awareness on cybersecurity is growing, we see more and more efforts from governments across the region to take this issue seriously. We have seen an increased participation of security professionals in multiple conferences representing their respective countries to advance the conversations around the implementation of cybersecurity laws and best practices.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">We have seen also the creation of multiple regulations and guidelines for public entities to follow and implement those which is a dramatic advancement in the way public institutions are dealing with cybersecurity.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In my personal case, I\u2019ve been invited to meetings where the CIOs of multiple Caribbean countries have outlined their plans and policies and it\u2019s been good to see cybersecurity as a big part of their general Information technology frameworks.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The region lacks of orchestration and\/or regional guidelines on how to tackle the cybersecurity problems and the level of maturity varies from country to country.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">You can see more information around the state of cybersecurity laws and regulations on this report from OAS: <\/span><a href=\"https:\/\/publications.iadb.org\/bitstream\/handle\/11319\/7449\/Cybersecurity-Are-We-Prepared-in-Latin-America-and-the-Caribbean.pdf?sequence=1\" target=\"_blank\"><span style=\"font-weight: 400;\">https:\/\/publications.iadb.org\/bitstream\/handle\/11319\/7449\/Cybersecurity-Are-We-Prepared-in-Latin-America-and-the-Caribbean.pdf?sequence=1<\/span><\/a><\/p>\n<p><strong>ICTP: \u00a0Does it even make sense for small companies to send their network administrators to security training courses when security is not their full-time job, and given the pace at which the security landscape is changing? Or should such companies just accept the fact that they need to outsource this function?<\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong>HD: \u00a0<\/strong>I think the problem lately has been the focus on learning about point products (which is also important) and not necessarily an investment in cybersecurity knowledge, this is also changing, we have seen an increase in the number of certified security administrators in multiple certifications in variety of contexts from risk management to actual penetration testing as well security awareness training for the general employees.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Per ISACA, <\/span><span style=\"font-weight: 400;\">82 percent of organizations expected to experience a cyberattack. But, they felt they were relying on a workforce that was not qualified to handle complex threats and <\/span><span style=\"font-weight: 400;\">on average, 59 percent of enterprises got at least five applicants for each open cyber security position, but most of these applicants are unqualified.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">When asked how long it takes for an enterprise to fill a cyber security position, only six percent of respondents indicate that they cannot fill open positions, 55 percent of respondents indicate that open positions take at least three months to fill.<\/span><\/p>\n<p>This gives you an idea on how important is to prepare a training strategy for cybersecurity responders against this reality of more and more advanced threats targeting business processes.<\/p>\n<p><strong>ICTP: \u00a0Do you agree that user naivet\u00e9 is the number one security threat facing organisations? If not, what do you think is the most significant threat?<\/strong><\/p>\n<p><strong>HD: \u00a0<\/strong>I think social engineering and user dependence on technology for virtually everything is one of the main threats, but we need to understand that for the regular user, cybersecurity is not their domain, it is not what they do for a living or an important part of their day to day task list. Over the years, the security industry has built several complex solutions increasing what we call \u201ccontrol friction\u201d which is how much we affect the user experience for the sake of security.<\/p>\n<p><span style=\"font-weight: 400;\">At Cylance we believe that the industry should focus on providing a decent level of security while reducing that friction, making security solutions effective and also making them easy to use for the regular user and also to make the lives of cybersecurity responders more focused on prevention, control and prediction.<\/span><\/p>\n<p><strong>ICTP: \u00a0Should any organisation still be using tapes for data backup purposes?<\/strong><\/p>\n<p><span style=\"font-weight: 400;\"><strong>HD: \u00a0<\/strong>In this case I will say that backup is still a big part of an incident response and disaster recovery plan, the way companies store this information is beyond the scope of my experience and I know some folks at backup companies that can comment with much more authority in this portion of the interview, but again, backup is VERY important and staying on top the latest advancements in this area is something that every CISO should be paying attention to.<\/span><\/p>\n<p><strong>ICTP: \u00a0And finally, what are the top three (3) things businesses should be doing this year to improve your network\/IT security?<\/strong><\/p>\n<p><strong>HD: \u00a0<\/strong><\/p>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Reassess their security strategy to reduce control friction and increase the preventative and predictive capabilities of that control strategy.<\/span><\/li>\n<\/ul>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Invest in consulting services and education<\/span><\/li>\n<\/ul>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Participate in associations, communities and professional groups to exchange information about best practices, trends and overall security awareness<\/span><\/li>\n<\/ul>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Align Cybersecurity with the Business, we cannot continue to be a technology division, a Cybersecurity strategy most consist of having all the key areas of a company, together to enhance the way we address and also understand security risk because today everything is connected and we depend on technology for pretty much every process in a modern business.<\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><em><strong>Do you have any questions for Hector, or views you would like to share? Please leave them in the Comments section below.\u00a0<\/strong><\/em><\/p>\n<p>&nbsp;<\/p>\n<p><em>Image credits: \u00a0<a href=\"https:\/\/www.flickr.com\/photos\/rihard-photos\/\" target=\"_blank\">Rihards<\/a> (flickr); \u00a0H Diaz<\/em><\/p>\n<p>____________<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Our 2017 Expert Insight series on network intrusion and security in the Caribbean\u00a0continues with Hector Dias, a network\/IT security professional based in the Dominican Republic. &nbsp; In this the second [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":97286,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","om_disable_all_campaigns":false,"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[82],"tags":[105,38,39,207,15],"class_list":["post-97281","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-business","tag-cybercrimecybersecurity","tag-data-protection","tag-equipment-security","tag-expert-insights-series","tag-trends","et-has-post-format-content","et_post_format-et-post-format-standard"],"jetpack_publicize_connections":[],"aioseo_notices":[],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/ict-pulse.com\/wp-content\/uploads\/2017\/04\/System-is-corrupt-Rihards-flickr.jpg?fit=1024%2C570&ssl=1","jetpack_shortlink":"https:\/\/wp.me\/p2iE1G-pj3","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/posts\/97281","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/comments?post=97281"}],"version-history":[{"count":5,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/posts\/97281\/revisions"}],"predecessor-version":[{"id":97484,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/posts\/97281\/revisions\/97484"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/media\/97286"}],"wp:attachment":[{"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/media?parent=97281"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/categories?post=97281"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ict-pulse.com\/wp-json\/wp\/v2\/tags?post=97281"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}