In the third and final installment of the “Leaking Beeps” series, Trend Micro’s Forward-Looking Threat Research team reveal the risks posed by pager technology used in IT systems throughout various industries, including, healthcare, ICS, universities and enterprises. Once again, we were surprised by the vast amount of unencrypted data cybercriminals are able to access by…
Read More
In a follow-on report to our recent one involving the use of pagers in healthcare, Trend Micro Forward-Looking Research (FTR) team also analyzed the use of pager communications in industrial environments. This report will look at how and why these environments still utilize pagers and the potential security concerns due to this unencrypted channel. The…
Read More
Over the last year, synchronized and coordinated attacks against critical infrastructure have taken center stage. Remote cyber intrusions at three Ukrainian regional electric power distribution companies in December 2015 left approximately 225,000 customers without power. Malware, like BlackEnergy, is being specially developed to target supervisory control and data acquisition (SCADA) systems. Specifically, adversaries are focusing…
Read More
Do you think that understanding the cyberthreats the mining industry faces will be helpful for you and your organization’s security? Unless you work in mining, the odds are your answer to the question is a quick “no.” That’s understandable. For most people, mining is an industry that barely registers. Mining conjures up images of men with…
Read More
Successful cyber attacks against critical infrastructure have been steadily increasing in frequency and complexity over the last ten years. In our 2015 “Cyber Security of Critical Infrastructures in Americas” report, more than 575 public and private owner operators from 20 countries were surveyed, and the results were beyond eye-opening. Fifty-three percent said critical infrastructure (CI)…
Read More
For years physical security has been imperative for political officials, with body guards and teams of agents securing the leaders of the world. In 2015, the need for protection has begun shifting from the “physical” to the “virtual” as cybercriminals and cyber-spies have started to target leaders. As noted in the third quarter security roundup, Hazards Ahead: Current Vulnerabilities Prelude…
Read MoreThere is a likely acceleration date which may require you to switch all your SHA-1 certificates to SHA-2 certificates by June 1, 2016, instead of the previous deadline of December 31, 2016. In 2013, Microsoft announced that SHA-1 certificates will have significant security problems in the following years, and therefore cannot be issued after Jan 1,…
Read More
The Internet has without doubt transformed the way we live and work today – changing lives around the world for the better. But whenever a new opportunity arises, new threats to exploit it are quick to follow. Critical infrastructure is a growing area of concern for governments and private providers everywhere. These important systems have…
Read More
Latin America has one of world’s fastest growing Internet populations. While this is bringing great social and economic benefits to the region, it has also heralded a more unwelcome trend: cyberattacks. The critical national infrastructure (CNI) industry is particularly vulnerable here, with IT managers historically relying too much on “security by obscurity” to keep legacy…
Read More
Over the past 5 years there has been a dramatic modernization of Latin American criminality. Non-state actor groups have migrated online for the purposes of cybercrime; counter intelligence against law enforcement; and digital money laundering. Many of these crews have begun to target critical infrastructures for the purpose of activism and geopolitics. The recently published Report on…
Read More
