Radiflow reports that they discovered cryptojacking software — malware that mines cryptocurrency — running in the monitoring and control network of an unnamed European water utility, the first such discovery, and a point of serious concern about the security and integrity of critical infrastructure to both targeted and untargeted attacks.
The control systems for factories, utilities and other infrastructure are notoriously insecure, since they consist of a mix of physically remote computers than can’t be readily accessed for updates; brittle aggregations of technologies of several different vintages that may stop working altogether if one element is patched; and computers that are assumed to be airgapped (isolated from the internet) and thus considered immune to information attacks.
Cryptojacking represents a tantalizing opportunity for criminals, who are always on the hunt for ways to turn compromised systems and cash; last weekend’s compromise of thousands of systems with cryptojacking scripts was an example of how an easy monetization path incentivizes hackers to find new targets for malware.
Infrastructure systems are a great host for parasitic CPU-hogging malware; typically they already consume huge amounts of electricity, allowing the mining activity to disappear into the background, and they are often idle, tripped only when systems break down. Unfortunately, this means that infections that might critically slow or hang these systems can go undiscovered until they are called to avert catastrophe — and fail.
Radiflow is still assessing the extent of the impact, but says that the attack had a “significant impact” on systems. The researchers note that the malware was built to run quietly in the background, using as much processing power as it could to mine the cryptocurrency Monero without overwhelming the system and creating obvious problems. The miner was also designed to detect and even disable security scanners and other defense tools that might flag it. Such a malware attack increases processor and network bandwidth usage, which can cause industrial control applications to hang, pause, and even crash—potentially degrading an operator’s ability to manage a plant.
“I’m aware of the danger of [malware miners] being on industrial control systems though I’ve never seen one in the wild,” says Marco Cardacci, a consultant for the firm RedTeam Security, which specializes in industrial control. “The major concern is that industrial control systems require high processor availability, and any impact to that can cause serious safety concerns.”
Cryptojacking Found in Critical Infrastructure Systems Raises Alarms [Lily Hay Newman/Wired]
A pair of researchers from Toronto’s storied Citizen Lab (previously) have written an eye-opening editorial and call to action on the ways that repressive states have used the internet to attack dissidents, human rights advocates and political oppositions — and how the information security community and tech companies have left these people vulnerable.
IBM Security’s 2018 survey of 4,000 adults worldwide found that for the first time in the history of their research, the majority of users say that they’d take extra steps in the name of “security” even if it meant that their usage would be less “convenient.”
Security researcher Scott Helme has spotted a third-party exploit that injects a script that mines cryptocurrency on over 4,200 sites, from the UK NHS to the US Courts’ official site to the sites of other esteemed security researchers.
Sound financial understanding doesn’t come to all of us naturally. And, even if you’re not interested in pursuing a career as a Wall Street investor, knowing the essentials of accounting, investing, and the like can net you a host of advantages in your professional and personal lives. The eduCBA Finance & Investments Lifetime Subscription Bundle is […]
Stock audio assets aren’t necessarily the easiest things to come by, and many a designer have been left marred by the steep prices and potential hidden fees that can come with purchasing assets online. However, that’s not to say you’re out of luck. The StockUnlimited Audio Library nets users an unlimited allotment of downloads for premium, […]