Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
How One Companys Cybersecurity Problem Becomes Another's Fraud Problem
Newest First  |  Oldest First  |  Threaded View
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/30/2018 | 11:32:29 PM
Re: Fraud
@Dr.T: Sure, virtualization and gapping measures can be great for security and tenant isolation...but more to the point, certain systems have to interact with each other -- and the security issues flow just as readily as does the communication itself.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/30/2018 | 11:30:40 PM
Re: Honan example
@Dr.T: Actually, nope, that's not what happened; this was not a case of PEBKAC. The problem lay with security issues at Amazon and Apple respectively.

Here's Honan's account of his digital nightmare: wired.com/2012/08/apple-amazon-mat-honan-hacking/
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:35:34 AM
Reputation
"cyber-enabled fraud," which we define as fraud that is facilitated though the use of malware exploits, social engineering, and/or lateral movement through a compromised website, network, or account. This would be problematic for companies reputation, it is still their lack of security that enabled attackers to cause the damage.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:32:49 AM
Cloud A and B
f Cloud A and Cloud B are willing to work together and exchange threat intelligence information, ... This is the major problem in the industry, they do not share security related information with each other.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:30:25 AM
Say something
It's taking the concept of "when you see something, say something" into cyberspace. This would be a way to go. It requires a good security awareness programs to achieve it.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:28:52 AM
Re: Honan example
compromise of his Apple ID, which in turn was able to be compromised via information gained by compromising Honan's Amazon account! Yes. Most liley the same account names and passwords are used. A common problem..
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
8/30/2018 | 9:27:21 AM
Fraud
But the larger end result is that my cyber problem has just become everybody else's fraud problem because my infected system is now set up to attack other systems. This makes sense. Best approach against this is segregation of the systems so one is compromised but the rest can still be protected.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/29/2018 | 11:04:13 PM
Honan example
An even more insidious example can be seen in the case of Wired's Mat Honan -- whose entire online/computer life was compromised in 2012 via a compromise of his Apple ID, which in turn was able to be compromised via information gained by compromising Honan's Amazon account!


44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
Firms Improve Threat Detection but Face Increasingly Disruptive Attacks
Robert Lemos, Contributing Writer,  2/20/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-9351
PUBLISHED: 2020-02-23
An issue was discovered in SmartClient 12.0. If an unauthenticated attacker makes a POST request to /tools/developerConsoleOperations.jsp or /isomorphic/IDACall with malformed XML data in the _transaction parameter, the server replies with a verbose error showing where the application resides (the a...
CVE-2020-9352
PUBLISHED: 2020-02-23
An issue was discovered in SmartClient 12.0. Unauthenticated exploitation of blind XXE can occur in the downloadWSDL feature by sending a POST request to /tools/developerConsoleOperations.jsp with a valid payload in the _transaction parameter.
CVE-2020-9353
PUBLISHED: 2020-02-23
An issue was discovered in SmartClient 12.0. The Remote Procedure Call (RPC) loadFile provided by the console functionality on the /tools/developerConsoleOperations.jsp (or /isomorphic/IDACall) URL is affected by unauthenticated Local File Inclusion via directory-traversal sequences in the elem XML ...
CVE-2020-9354
PUBLISHED: 2020-02-23
An issue was discovered in SmartClient 12.0. The Remote Procedure Call (RPC) saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp (or /isomorphic/IDACall) URL allows an unauthenticated attacker to overwrite files via vectors involving an XML comment and /.. pat...
CVE-2020-9355
PUBLISHED: 2020-02-23
danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled.