Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

12/26/2007
04:00 AM
50%
50%

The Gifts That Keep on Giving

Holiday gifts of gadgets and storage devices can create nightmares for IT

2:00 PM -- With Christmas only one day behind us, are you ready for the influx of new digital gifts into your network? New storage devices in the form of portable musical players and USB thumb drives hidden in a pen. Phones that include digital organizers and PDAs. Laptops. New 802.11 WiFi or Bluetooth wireless networking devices.

These new devices pose a real threat to your organization's security. If you haven't already taken measures to protect yourself, then it's time to hunt down rogue devices that could accidentally lead to a breach in your network.

New laptops plugging into the network are an everyday issue for many organizations. In an ideal world, companies facing this problem will already have a mechanism in place to prevent unknown machines from plugging in: network access control, network port security that restricts access to known MAC addresses, or a program that requires machines be registered before getting a usable IP address.

Some methods for protecting the network against rogue laptops will be similar to those used to restrict mobile device access. Most users don't realize that the convenience of wireless networking, especially when unsecured and unknown to corporate IT, is a huge security risk.

Portable storage devices -- MP3 players, thumb drives, and even digital photo frames -- are a stickier situation. Some organizations take the extreme approach, putting epoxy in the USB ports to prevent their use. This is the poor man’s way of stopping unauthorized USB devices, and it isn't very practical.

There are other ways to handle the problem, such as modifying the Windows Registry or buying a software solution that can control USB devices. Many antivirus vendors are including security features that can control USB device access -- some even allow access only to pre-defined device serial numbers.

These threats aren't new, but they require closer attention during the holiday season, when users get new gifts that they are itching to try out and impress their coworkers with. If you've not already taken measures to protect against these things, it may be too late now. But look on the bright side -- you've got a year to prepare for the next holiday season.

— John H. Sawyer is a security geek on the IT Security Team at the University of Florida. He enjoys taking long war walks on the beach and riding pwnies. When he's not fighting flaming, malware-infested machines or performing autopsies on blitzed boxes, he can usually be found hanging with his family, bouncing a baby on one knee and balancing a laptop on the other. Special to Dark Reading

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21070
PUBLISHED: 2021-04-19
Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with permissions to write to the file system could leverage this vulnerability to escalate privileges.
CVE-2020-7851
PUBLISHED: 2021-04-19
Innorix Web-Based File Transfer Solution versuibs prior to and including 9.2.18.385 contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the internal method. A remote attacker could induce a user to access a crafted web page, causing damage...
CVE-2021-29399
PUBLISHED: 2021-04-19
XMB is vulnerable to cross-site scripting (XSS) due to inadequate filtering of BBCode input. This bug affects all versions of XMB. All XMB installations must be updated to versions 1.9.12.03 or 1.9.11.16.
CVE-2021-23381
PUBLISHED: 2021-04-18
This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.
CVE-2021-23374
PUBLISHED: 2021-04-18
This affects all versions of package ps-visitor. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.