Post by Moshe Ben Simon, TrapX Security Vice President and Co-Founder, TrapX Labs General Manager
At TrapX Labs we work hard to identify new threats to our IT infrastructure. Most of you in the security teams within major corporations know we are at a state of war with organized crime over cyber activity.
This newest Anatomy of an Attack report covers our research into the internet of things (iot) and additionally chronicles our efforts to successfully hack the NEST Thermostat(tm) per the attack vector previously described at the 2014 BlackHat. Our team has done a great job to better understand and document these threats.
I can tell you, for sure, that the IOT threat will grow tremendously over the short term. There are an incredible number of these devices installed within major organizations without virtually any security software that can monitor their internal state or activity. So these are becoming the place for malware to “root” and establish a backdoor to attack the entire enterprise. It is my belief that organized crime has targeted these devices as they know most of the enterprise defense cannot cover them well if at all.
Lots to talk about. Also note that DeceptionGrid can detect the great majority of this advanced malware. When installed backdoors, malware, etc., create opportunity to move laterally we nail them down immediately. Then we know that the device is compromised. Then you SOC team can crush it pretty fast.
Please find this TrapX Labs report and download it here.
By the way I’m always looking for the smartest (and the toughest) cyber warriors out there. Please look over our open positions and send us a resume. No Fear.