Germany

US tops as Malware Hosting Nation

January 19th, 2014

Solutionary’s Security Engineering Research Team (SERT) Quarterly Threat Intelligence Report for Q4 2013 states that the United States was the leading malware-hosting nation. US host 44 percent of all malware which was five times more than the second-leading malware-hosting nation, Germany. Later was responsible for 9 percent of all malware in Q4 2013. Report predominantly focused on distribution and analysis of malware. SERT used cloud-based Solution Active-Guard Platform and global threat intelligence network to get the results.

Solutionary SERT director of research Rob Kraus said in a statement ,“We aren’t just talking about foreign espionage campaigns, APTs and breaches; many of these malicious activities are taking place within U.S. borders,” and continued saying, “Malware and, more specifically, its distributors are utilizing the technologies and services that make processes, application deployment and website creation easier.”

Reports mentioned that over 40 antivirus fail to detect malware Researchers found that majority of malware applications are related to PUA’s i.e. potentially unwanted applications which are installed Microsoft Windows 32-bit portable executables (PE32) files.

SERT also mentioned about the malicious actors turning to cloud for malware distribution. It found that malware distributors are widely using cloud computing either by buying services directly or compromising legitimate domains. They are also hiding behind the reputed hosting providers like Google, Godaddy and Amazon to avoid geographic black listing. This type of modus operand has enabled distributors for cost effective ways of spreading malware through easily making them online.

Reports also provide recommendations to Internet Service Providers to limit the risk associated with malware distributions by sites hosted and domain name registered. Ultimately it is up to providers to take action for stopping the proliferation of malware.

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

Data Theft by Former NATO employee

December 20th, 2013

A former NATO employee was sentenced for seven years in jail by the German court for spying after the IT expert and copying secret data in order to sell it to a foreign intelligence service.

Identified as Manfred K., the 61-year-old man had worked for the transatlantic military alliance at the US airbase of Ramstein in Germany but left his job after a dispute.

The court found “The disclosure of the files would allow a potential enemy of NATO to gain access to the secret network of NATO”.

Court rejected Manfred’s claim that he was trying to point out security gaps when he copied the data and hid it on USB memory sticks in his kitchen and basement.

The court in the western city of Koblenz found that the man copied passwords, server locations and other information for NATO computer systems that would have enabled a cyber attack.

The IT expert, who had worked for NATO for more than 30 years, copied the data in March 2012 and failed in an attempt to obtain more in June but left NATO shortly afterward. He was been in detention since his arrest in August 2012.

Andreas Voelpel, presiding judge said that the data were the “crown jewels” and “operative heart” of the system and would have allowed a foreign power to launch a cyber attack with devastating impact.

According to the Court, Chinese or Russian intelligence services were the suspected potential takers for the data.

The defendant had earlier denied the charge, saying “I was never a traitor. I am not and never was an enemy of NATO, only of the security sloppiness of employees.”

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

Data Theft hits Vodafone customers

September 13th, 2013

Mobile phone and broadband provider Vodafone Deutschland was attacked by a large-scale data theft affecting the personal details of their two million German customers.

Spokesman Alexander Leinhos said that a computer specialist who worked at Vodafone was accused of this data theft incident.

Vodafone Germany said in a statement that the unnamed suspect launched a “criminal attack” on one of the company’s servers to steal the customers’ names, addresses; dates of birth, bank codes and account numbers.

Alexander said the company was advising its customers to take special care while providing their details to access its services, he claimed it was hardly possible for the attacker to access the bank accounts of affected customers.

The company referred to accused as a “hacker” who had knowledge of Vodafone Germany’s IT systems, a UK technology magazine has labeled the accused as a contract IT worker of Vodafone.

German media reports stated that the suspect worked at Vodafone as a system administrator for an external service provider, which employed him full-time.

In particular, added Die Welt, a Vodafone Germany spokesman – Alexander Leinhose cited security checks that all “external employees of service providers” must pass, which the accused reportedly did.

Vodafone stated on its website that there was a raid conducted at the house of accused, he was cooperating with the authority. They also asked him for the data theft to remain under wraps so their investigation would not be compromised.

The Mobile phone and broadband provider added: “The security of data has highest priority for Vodafone. We shall take all necessary steps to further improve the security of our systems and to protect against future criminal attacks”.

Vodafone has more than 32 million mobile phone customers and more than three million broadband subscribers in Germany. It is a wholly owned subsidiary of Vodafone Group.

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Enhanced by Zemanta