SEO Texas, Web Development, Website Designing, SEM, Internet Marketing Killeen, Central Texas
SEO, Networking, Electronic Medical Records, E - Discovery, Litigation Support, IT Consultancy
Centextech
NAVIGATION - SEARCH

Ways To Manage 5G Security Challenges

Wireless networks have grown a lot from the first generation (1G) to 4G/LTE networks that offer faster speeds. Now, the stage is being set for 5G that will connect a large number of new devices and sensors with future communication technologies while introducing new capabilities and services.

But with great transformation come great risks! Some security professionals are warning that 5G will also empower the hackers with speed and capabilities to launch high-speed malicious activity across larger number of devices in a short span. A survey indicates that approximately 73% of security professionals have shown high to medium concern on potential impact of 5G on cyber security.

Professionals indicate that 5G will introduce new vulnerabilities in:

  • Supply Chain: 5G supply chain will be at risk of vulnerabilities such as malicious software and hardware, counterfeit components, and poor designs, manufacturing processes and maintenance procedures.
  • Deployment: 5G is expected to use more information and communication technology components, so improperly deployment, configuration or management of equipment and networks may be at risk of disruption & manipulation.
  • Network Security: Since 5G builds upon previous generations, it may be expected to carry forward legacy vulnerabilities such as DDoS attacks, etc.

In lieu of potential 5G risks and vulnerabilities, here are some ways to help you manage 5G security challenges:

  • Prioritize Security: Organizations with security-first mindset are prepared to adopt 5G and other emerging technologies. But, also focus on your customers and in case they don’t have a culture that prioritizes security, help them adopt solutions and services that cover all the aspects of cyber security including incident response strategy.
  • Deploy Standards-Based Devices: Organizations should focus on helping their customers and employees choose IoT devices that are embedded with in-built security features and meet established industry standards for security. It is important to make sure that the devices are capable of offering protection, detection, and mitigation.
  • Adopt Virtualization: A large number of connected devices paired with the speed of 5G can act as a perfect playground for hackers and compound the security issues. Organizations can consider introducing virtualized security controls to help their customers in applying security policies across their environment at a quick speed, while employing automated remediation to help mitigate threats.
  • Combine Threat Intelligence With AI: New capabilities of 5G will introduce new types of vulnerabilities and attacks. Organizations should infuse threat intelligence with AI or Machine Learning to immediately identify, detect and response at the point of attack.
  • Zero-Trust: Organizations should implement zero-trust security policies. It includes verifying everything including user login, data access, incoming data, outgoing data, access requests, etc. without any exceptions.

5G can be used to garner business growth and profits, provided appropriate security measures are adopted.

At Centex Technologies, we educate our clients on the security challenges of 5G and required measures. To know more, call Centex Technologies at (972) 375 - 9654.

Use Of Pirated Games To Spread Cryptojacking Malware

Pirated versions of popular games such as Grand Theft Auto V, NBA 2K19 and Pro Evolution Soccer 2018 attract a large number of gamers as they can download these versions free from different forums. However, there might be a hidden cost associated with these pirated versions of popular games. It has been reported that threat artists are using the cracked or pirated versions of popular games to distribute malware. This malware aims at secretly mining cryptocurrency using the infected systems.

The threat has been identified as Crackonosh and has been found to be active since June 2018. The malware wipes out the antivirus programs installed on the target system and uses the system for mining cryptocurrency.

Understanding Crackonosh

The main aim of Crackonosh is to install XMRig on the infected system. XMRig is a coin miner which is then used by the threat actors to secretly mine Monero cryptocurrency using the cracked software downloaded on the infected machine. Reports suggest that the threat actors have mined over $2 Million, or 9000 XMR in total. As of May 2021, the malware was reported to be still getting about 1000 hits a day.

Here is a brief account of how the malware operates:

Disabling Antivirus

Crackonosh caught the eyes of researchers when a large number of people reported that Avast Antivirus programs were removed from their systems. The malware has the capability to remove antivirus software and disabling security software & updates in addition to the use of other anti-analysis techniques. This makes it harder to discover, detect and remove the malware. Crackonosh can delete antivirus programs that use the command - rd <AV directory> /s /q; where <AV directory> is the default directory name that specific antivirus product uses, for example Adaware, Bitdefender, Escan, F-secure, Kaspersky, McAfee (scanner only), Norton and Panda.

Infection Chain

Here is the brief infection process:

  • The target downloads and installs the cracked or pirated software.
  • The installer runs maintenance vbs and starts the installation process using msi.
  • msi registers and runs the main malware executable serviceinstaller.exe.
  • The executable installs a file titled DLL, which extracts winlogui.exe and downloads winscomrssrv.dll and winrmsrv.exe.
  • These files are contained, decrypted and placed in the folder.

Disabling Windows Defender

The malware deletes Windows Defender and Windows Update by deleting a list of registry entries. The motive is to stop Windows Defender and turn off automatic updates. Later, it installs its own MSASCuiL.exe instead of Windows Defender, which adds a Windows Security icon to the system tray. This tricks the user and prevents him from discovering the removal of original Windows Defender.

Conclusion:

Crackonosh attack re-emphasizes on the fact ‘when you try to steal a software, chances are someone is trying to steal from you.’ Such attacks can be prevented by steering away from downloading and using pirated or cracked software. Also, stay cautious and download software from authentic developer.

Centex Technologies has a team of cyber security professionals who help clients in understanding latest cyber security threats and formulate an effective defense strategy. To know more about latest malware attacks, call Centex Technologies at (972) 375 - 9654.