By Talos Group The post was authored by Ben Baker. Qbot, AKA Qakbot, has been around for since at least 2008, but it recently experienced a large surge in development and deployments. Qbot is being Qbot primarily targets sensitive information like banking credentials. Here we are unveiling recent changes to the malware that haven’t been made public yet. […]

Source:: Cisco Security Notice

By Talos Group The post was authored by Ben Baker. Qbot, AKA Qakbot, has been around for since at least 2008, but it recently experienced a large surge in development and deployments. Qbot is being Qbot primarily targets sensitive information like banking credentials. Here we are unveiling recent changes to the malware that haven’t been made public yet. […]

Source:: Cisco Security Notice

By Omar Santos The Common Vulnerability Scoring System (CVSS), which is used by many in the industry as a standard way to assess and score security vulnerabilities, is evolving to a new version known as CVSSv3. These changes addressed some of the challenges that existed in CVSSv2; CVSSv3 analyzes the scope of a vulnerability and identifies the privileges […]

Source:: Cisco Security Notice

By Omar Santos The Common Vulnerability Scoring System (CVSS), which is used by many in the industry as a standard way to assess and score security vulnerabilities, is evolving to a new version known as CVSSv3. These changes addressed some of the challenges that existed in CVSSv2; CVSSv3 analyzes the scope of a vulnerability and identifies the privileges […]

Source:: Cisco Security Notice

SCADA Security-Report 2016

ScadaKomponenten zur Industriesteuerung sind immer häufiger Angriffsziele von Cyber-Attacken. Oftmals schlecht oder gar nicht gesichert, weil bei der Einführung noch niemand an derlei Angriffe gedacht hat, sind Steuerungsanlagen einfache Angriffsziele, die mit wenig Aufwand maximalen Schaden verspricht.

Lesen Sie hier den (englisch-sprachigen) Blog-Beitrag der Sicherheitsforscher unseres Technologiepartners Fortinet.

Doch auch hierzulande wird das Thema beleuchtet und es gibt auch in Deutschland bereits Fälle, die hier durch die Medien gingen.

Hier wird von heise Security  beispielsweise deutlich geschildert, wie einfach Anlagen angrefibar sind, die nicht geschützt werden: Scada-Sicherheit: Siemens-PLC wird zum Einbruchswerkzeug

Dass dieses Thema nicht nur in IT-Kreisen diskutiert wird, sondern bereits größere Dimensionen erreicht wird deutlich, wenn etablierte Medien, wie z.B. die WELT, es aufgreifen.

 Oberberg-Online bietet mit Fortinet Rugged Geräten die industrietaugliche Lösung für rauhe Umgebungen an, die eben nicht nur klassische Firewall-Funktionen bietet, sondern explizit auch Signaturen zum Schutz von SCADA-Umgebungen liefert.

Sehen Sie sich dazu auch die Aufzeichnung des Herstellervortrages anlässlich unseres letzten Security-Tages an.

Sprechen Sie mit uns über die Absicherung Ihrer Infrastruktur und Produktionsanlagen. Einfach 02261 9155050 wählen und einen Termin vereinbaren.

By Talos Group Talos posted a blog, September 2015, which aimed to identify how often seemingly benign software can be rightly condemned for being a piece of malware. With this in mind, this blog presents an interesting piece of “software” which we felt deserved additional information disclosure. This software exhibits several questionable behaviors including: Attempts to detect sandboxes […]

Source:: Cisco Security Notice

By Talos Group Talos posted a blog, September 2015, which aimed to identify how often seemingly benign software can be rightly condemned for being a piece of malware. With this in mind, this blog presents an interesting piece of “software” which we felt deserved additional information disclosure. This software exhibits several questionable behaviors including: Attempts to detect sandboxes […]

Source:: Cisco Security Notice

By Talos Group As a member of the Linux Foundation Core Infrastructure Initiative, Cisco is contributing to the CII effort by evaluating the Network Time Protocol daemon (ntpd) for security defects. We previously identified a series of vulnerabilities in the Network Time Protocol daemon; through our continued research we have identified further vulnerabilities in the software. Read More>>

Source:: Cisco Security Notice

By Talos Group As a member of the Linux Foundation Core Infrastructure Initiative, Cisco is contributing to the CII effort by evaluating the Network Time Protocol daemon (ntpd) for security defects. We previously identified a series of vulnerabilities in the Network Time Protocol daemon; through our continued research we have identified further vulnerabilities in the software. Read More>>

Source:: Cisco Security Notice

Fortinet Reports First Quarter 2016 Financial Results

Source:: Fortinet