Making the Shoemaker walk Barefoot – the emerging hackers’ sport

Author: Amir Gil, MetaAccess Business Director, OPSWAT

Hackers are doing their best to hack brand name Cyber vendors and making them sweat, and the latest victim is… Avast with the 2nd time their Popular Ccleaner tool is hacked.

Avast is part of an on-growing ‘club’ of Cyber and IT vendors that are being targeted by hackers- private ones, organized and state level groups.

Success in such attacks gains a lot of recognition by the Hackers’ colleagues/ employers in their networks (Darknet etc.). Moreover – the bigger the vendor exposed is, it’s not only recognition motivated but economically motivated. The bigger the vendor is, the better is the economic potential of the hack. Some of the companies hacked in the recent years are covering Millions and sometimes hundreds of Millions in many industries and making them exposed to Ransomware attacks and other $ based attacks.

Here are some additional examples from the last years:

So what do you do about it if you are a cyber vendor? Make sure you are not barefoot and in our language, it means – always assume someone is trying to attack you, implement strict security standards like ISO27001, SOC2 and comply to them, make drills (blue vs. Red ones, Pentests) provide Cyber education to the teams etc.

And what do the customers need to do? First of all make sure you are always updated in the latest breaches and assume that every one may be vulnerable. Make sure your endpoints and BYOD:

  • Are compliant to your security policy.
  • Do not carry any known or new Malware.
  • Are fully updated with the latest patches that cover the known vulnerabilities such as Meltdown and Spectre.
  • Apply Zero trust- Trust no file, Trust No device and no application even if it’s an Antivirus software. Verify that this is a version that is not vulnerable, verify it was updated correctly and that the executable file is not ‘loaded’ with unwanted malware payload (the bit9 case).

Want to see how it’s done with MetaAccess? You are welcome for a free trial for 50 users at: https://www.opswat.com/get-started.

Get training at OPSWAT Academy.

Sign up for Blog updates

Get information and insight from the leaders in advanced threat prevention.