DATA SECURITY

Honeywell Cybersecurity Research Reports Significant Increase In USB Threats That Can Cause Costly Business Disruptions

Honeywell | June 22, 2021

According to a report released today by Honeywell (Nasdaq: HON), USB-based threats that can severely impact business operations increased significantly during a disruptive year when the usage of removable media and network connectivity also grew.

Data from the 2021 Honeywell Industrial USB Threat Report indicates that 37% of threats were specifically designed to utilize removable media, which almost doubled from 19% in the 2020 report. The research also highlights that 79% of cyber threats originating from USB devices or removable media could lead to a critical business disruption in the operational technology (OT) environment.  At the same time, there was a 30% increase in the use of USB devices in production facilities last year, highlighting the growing dependence on removable media.

The report was based on aggregated cybersecurity threat data from hundreds of industrial facilities globally during a 12-month period. Along with USB attacks, research shows a growing number of cyber threats including remote access, Trojans and content-based malware have the potential to cause severe disruption to industrial infrastructure.

"USB-borne malware was a serious and expanding business risk in 2020, with clear indications that removable media has become part of the playbook used by attackers, including those that employ ransomware," said Eric Knapp, engineering fellow and director of cybersecurity research for Honeywell Connected Enterprise. "Because USB-borne cyber intrusions have become so effective, organizations must adopt a formal program that addresses removable media and protects against intrusions to avoid potentially costly downtime."

Many industrial and OT systems are air-gapped or cut off from the internet to protect them from attacks. Intruders are using removable media and USB devices as an initial attack vector to penetrate networks and open them up to major attacks. Knapp says hackers are loading more advanced malware on plug-in devices to directly harm their intended targets through sophisticated coding that can create backdoors to establish remote access. Hackers with remote access can then command and control the targeted systems.

Spotlight

As your company handles dozens of documents intended for different hands, how can you find the right software solutions to foster security, scalability and oversight? In this eBook, we discuss how DocuSign Admin Tools helps ensure that three essential objectives—security, scalability and oversight—are always front and center as

Spotlight

As your company handles dozens of documents intended for different hands, how can you find the right software solutions to foster security, scalability and oversight? In this eBook, we discuss how DocuSign Admin Tools helps ensure that three essential objectives—security, scalability and oversight—are always front and center as

Related News

DATA SECURITY, ENTERPRISE SECURITY, SOFTWARE SECURITY

CyberArk Workforce Password Management to Provide Advanced Protection

CyberArk | March 15, 2023

On March 14, 2023, CyberArk, the world leader in Identity Security, announced advancements to Workforce Password Management. The cloud-based business password management solution from CyberArk allows businesses to capture, store, and manage password-based apps and other secrets in a secure manner. Added features offer administrators with increased flexibility and power to minimize risk and enhance security for web-based applications. Workforce Password Management is developed for business environments and offers the privacy, availability and security organizations require, including support for current corporate directories and passwordless authentication controls, unlike personal password managers. Some of the new things are: Application Access Controls Based on Usernames Support for CAPTCHA-Enabled Web Apps Enhanced Reporting for User-Added Applications CyberArk Secure Web Sessions and Workforce Password Management can be used together to further fortify access to critical systems. With the newest release, Secure Web Sessions provides an additional layer of defense called Session Control. Session Control enables administrators to define notification and enforcement rules for specific text fields in business applications that are accessed with credentials stored in Workforce Password Management. For example, administrators can set up a rule to stop users from transferring more than pre-set threshold within their corporate banking applications and notify the IT security team of the attempt. Gil Rapaport, General Manager, Access Management at CyberArk, said, “Traditional password managers typically lack controls and functionalities that enterprises need to secure end-user credentials, which are constantly targeted by attackers.” He added, “Password management must be dynamic to evolve with attacker innovation. We are continuously investing in new features and functionalities for Workforce Password Management to deliver greater usability, security and control for all users within an organization – from developers and business users to IT administrators.” (Source – Business Wire) About CyberArk Founded in Newton, MA, CyberArk is the worldwide leader in identity security solutions. The company is the most comprehensive security solution for any identity, machine or human, across business apps, remote employees, hybrid cloud workloads, and the complete DevOps lifecycle, thanks to its emphasis on privileged access management. The world’s largest organizations entrust CyberArk to help secure their most vital assets.

Read More

DATA SECURITY, ENTERPRISE SECURITY, SOFTWARE SECURITY

DoControl Releases Its SaaS Security Platform on AWS Marketplace

DoControl | February 03, 2023

On February 2, 2023, DoControl, a leading automated software-as-a-service (SaaS) security provider, announced the release of its no-code SaaS security platform on AWS Marketplace, an online catalog that simplifies the provisioning, procurement, and governance of third-party data, software and services. The platform enables joint customers to better protect their business-critical assets by setting up a foundational layer of preventative data access security controls directly through the AWS Marketplace. Individual SaaS applications' native security features are usually poor and do not provide a consistent way to apply data access controls across all SaaS application types. DoControl provides a single security strategy that centralizes the enforcement of least privilege - beyond the network, identity, and device levels - across the entire estate of an enterprise's SaaS applications. Customers with AWS deployments may now use DoControl solutions to safeguard all shared data and files accessed by every identity or entity, including internal employees, third-party collaborators, and third-party OAuth applications. On average, an enterprise has approximately 200 applications in use, with hundreds or thousands of internal and external collaborators. Therefore, data security is of utmost importance across these applications (file-sharing, file storage, messaging, and so on), as breaches can result in lost revenue, severe brand damage, regulatory fines and other financial consequences. DoControl offers SaaS asset management, continuous monitoring, and automated security workflows to security and IT teams to prevent data breaches. In addition, DoControl lowers the physical toil and complexity that security and IT professionals face on a daily basis by replacing manual effort with automation. About DoControl Founded in 2020, DoControl is a No-Code SaaS Security Platform that provides organizations with automated, self-service tools needed for SaaS applications data access monitoring, orchestration, and remediation. It takes a distinctive, customer-focused approach to the labor-intensive challenge of security risk management and data exfiltration prevention in popular SaaS applications. DoControl helps lower the work overload and complexity that Security and IT teams face on a daily basis by replacing manual work with automation. The company is backed by investors, including StageOne Ventures, Insight Partners, RTP Global, Cardumen Capital, and CrowdStrike's CrowdStrike Falcon Fund.

Read More

ENTERPRISE SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

WatchGuard Announce Unveiling New Line of Firewall Products

WatchGuard Technologies | February 20, 2023

WatchGuard® Technologies, an industry leader in unified cybersecurity, has recently announced the launching of new tabletop firewall appliances: Firebox T25/T25-W, Firebox T45/T45-POE/T45-W-POE, and Firebox T85/T85-POE. By leveraging WatchGuard's Unified Security Platform® architecture to provide comprehensive security and streamlined management through WatchGuard Cloud, these new firewalls are built to give the performance that distributed, and remote business environments require to protect themselves against the latest network security threats. WatchGuard's new Firebox product line, which features increased memory and processing speeds for improved throughput, enables WatchGuard partners, MSPs and IT administrators to protect branch offices, office equipment, retail point-of-sale (POS) software, remote devices, and remote users from complex and emerging threats with minimal network configuration and management overhead. "This new generation of Fireboxes takes full advantage of our Unified Security Platform architecture, enabling MSPs to provide the robust solutions and simplified management they require to meet the needs of a wide range of customers and deployment scenarios," said Ryan Poutre, Product Manager at WatchGuard Technologies. (Source - GlobeNewswire) Key features for the new Firebox products include as follows: WatchGuard Firebox T25/T25-W: Offer small offices, home offices, and retail environments with stand-alone or centrally managed protection with complete enterprise-level network security. WatchGuard Cloud's zero-touch deployment enables speedy setup at remote sites to ensure a secure connection. WatchGuard Firebox T45/T45-POE/T45-W-POE: Provides stand-alone or centrally managed enterprise-level protection to small and medium-sized businesses. Improves visibility into network activity and security events. Offers flexible management tools that facilitate faster and more secure business connection setup at remote locations. WatchGuard Firebox T85-POE: Provides enterprise-level security with high performance that evolves with the network requirements. It offers users with two Power-over-Ethernet (PoE+) ports that enable power to peripheral devices. About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is one of the leading companies in unified cybersecurity. The company's Unified Security Platform® is a unique way for managed service providers to get world-class security that helps their businesses grow and move faster while making their operations more efficient. Its award-winning products and services include network security and intelligence, multi-factor authentication, advanced endpoint protection, and secure Wi-Fi. They are used by more than 17,000 security service providers and resellers to shield more than 250,000 customers. The company's headquarters are in Seattle, Washington, and it has offices all over North America, Europe, Asia-Pacific, and Latin America.

Read More