Connect with us

Cyber Security

HVAC Connection to Target Data Breach “Chilling”

Avatar

Published

on

Reading Time: 1 minute

Could a breach at a HVAC company specializing in supermarket refrigeration have led to the Target Data breach? Apparently so, according to mega retailer Target and Pennsylvania based Fazio Mechanical Services. This raises a “chilling” possibility that hackers are even more sophisticated in their planning than most believed and can identify and exploit relatively obscure vulnerabilities.

Although Fazio remotely monitors the HVAC systems of many of its customers, leading to concern that this is a point of vulnerability, they assert that this was not the case with Target. Hackers first infected systems at Fazio and then migrated their malware to the Target network through a common connection used to submit bills, and exchange other documents between the companies.

Was this connection simply a “target of opportunity” identified by the hackers during their breach of Fazio or was the Fazio breach part of a campaign against Target where the Fazio connection was identified as a weak link? Either way, it is clear that criminal hackers are borrowing pages from the Advance Persistent Threat playbook original written by cyber war attacks between government, nation and government operatives. Instead casting a wide net with indiscriminate phishing and random spread of malware, APT involves targeting specific victims and elaborate research and planning.

Endpoint security has to be grounded in the principal, not matter how clichéd it may sound, that you are only as strong as you weakest link. One weak link in the Target network has resulted in the compromise of data for as many as 100 million target customers.

It’s too bad they were not using Comodo Endpoint Security, which provides the most advanced malware protection technology, including a malware free warranty.

TEST YOUR EMAIL SECURITY GET YOUR INSTANT SECURITY SCORECARD FOR FREE Source: https://blog.comodo.com/e-commerce/hvac-connection-to-target-data-breach-chilling/

Cyber Security

Airgain unveils extended portfolio of 5G OMNIMAX Dipole series antennas for M2M and IoT apps

Avatar

Published

on

Airgain announced the release of its OMNIMAX Next Dipole antennas, the latest addition to Airgain’s 5G product portfolio designed to deliver ultra-wideband connectivity for 5G NR sub-6GHz IoT and M2M applications.

The OMNIMAX Next Dipole series includes 5G NR sub-6GHz products for low profile and shock resistant outdoor applications, including “salt shaker” style antennas, indoor dipole “paddle” antennas, and outdoor “candlestick” dipole antennas.

Each product is designed to blend into the environment, with flexible mounting options while providing ultra-wideband connectivity for virtually any indoor or outdoor cellular module, modem, or gateway. The 5G ready OMNIMAX Next Dipole series provides future-proof performance, with backward compatibility from 5G to 4G and 3G global frequency bands.

“Supporting sub-6GHz 5G, particularly the lower bands approaching 600MHz, is challenging for the form factors of these products,” said Kevin Thill, Airgain’s Senior Vice President of Engineering.

“These antennas achieve excellent broadband performance without compromising the form factor, while outperforming competing solutions that we have seen in the market today. These antennas feature a unique and patent pending Coplanar Waveguide feed, which is key to enabling the ultra-wideband performance in the given form factors.

“We are excited to offer the expansion of our product portfolio of 5G ready antennas designed to accommodate wider bandwidth requirements demanded by 5G. The OMNIMAX Next Dipole series provides a cost-effective solution while delivering dependable quality.”

Building on Airgain’s antenna design expertise of CENTURION Next, the industry’s first 9-in-1 5G and Wi-Fi 6 fleet antenna, the OMNIMAX Next Dipole series includes 617 MHz to 6 GHz wideband cellular 5G support. OMNIMAX Indoor Dipole Next, OMNIMAX Outdoor Dipole Next, and M2M SN Next are available through our trusted channel partners or direct at 1-855-AIRGAIN.

Source: https://www.helpnetsecurity.com/2020/07/09/airgain-omnimax-next-dipole-antennas/

Continue Reading

Cyber Security

You Are The Weakest Link

Avatar

Published

on


Tom Finan on human imperfection and cyber security culture




A craftsman never blames their tools. It is not the systems  that ultimately fail cyber security professionals- it’s the people. Insider threats do abound but more often than malfeasance, misfeasance is the key to a breach. It wasn’t the firewall that failed Capitol One, it was a misconfiguration. Tom Finan dives in on culure vs. strategy quoting both Peter Drucker and…Barbara Streisand.  

Episode Overview

Covid 19 has changed 2020 in unprecedented ways in how we work, live our lives, and measure Cyber Risk. Listen to Episode #141 of Task Force 7 Radio as the Cyber Growth Leader from Willis Towers Watson, Tom Finan and Co-Host Andy Bonillo dive into how the “Cyber Security Superheroes” are working together to manage the human element during the pandemic. As claims data shows, effective Cyber Risk prevention and mitigation is largely a people problem. In response, companies need to assess and analyze the elements of their cultures that shape both positive and negative cyber attitudes and behaviors that makes the human element one of the largest risks to a company.

Listen Now

Source: https://www.cshub.com/executive-decisions/articles/you-are-the-weakest-link

Continue Reading

Cyber Security

Axio360 platform to provide holistic view and identify financial impact of risk for Archer’s clients

Avatar

Published

on

Axio announced a strategic partnership with cybersecurity consulting firm Archer. This partnership will merge Archer’s expertise in critical infrastructure protection with the Axio360 platform and allow clients to measure cyber risk exposure in financial terms and manage their cybersecurity program from a holistic point of view.

The Axio360 platform will assist Archer’s clients in identifying cyber risks across business units and threat vectors that may not have previously been considered. The platform estimates all-in costs of exposure and evaluates how specific controls and mitigations will reduce risk.

“The Axio platform was built to fundamentally redefine how organizations solve cybersecurity problems. Our intention is to enable business-centric decision-making by putting the risk in financial terms,” said Brendan T. Fitzpatrick, Senior Vice President of Channels & Partnerships for Axio.

“Our operating system aligns all key constituents and delivers clarity in real-time. This partnership with Archer allows our software to make critical infrastructure safer and more secure.”

“This partnership allows our asset owners to receive tailored recommendations from Axio and our dedicated team. For the first time, our clients will be able to measure their cybersecurity program and benchmark it across their industry peers,” stated Patrick C. Miller, Managing Partner for Archer.

“This collaboration will help the overall assessment and understanding of cybersecurity risk for critical infrastructure.”

Axio360’s methodology and software empowers organizations to continuously answer the four most critical questions for cyber risk:

  • What’s my exposure in financial terms?
  • How should I manage my cyber program?
  • Do I have the financial ability to recover?
  • Where should I invest?

Source: https://www.helpnetsecurity.com/2020/07/09/axio-archer/

Continue Reading

Trending