Tag Archives: av manufacture

Securing Mother-SCADA.

Hi all!

We’re always assessing the state of the world of computers by prodding it with various hi-tech instruments in different places, taking measurements from different Internet sensors, and studying “information noise”. From the information we glean from all this, plus data from other sources, we constantly evaluate the overall body temperature and blood pressure of the computer world, and carefully monitor the main risk areas. And what we’re seeing at the mo – that’s what I’ll tell you about in this post.

To many, it seems that the most diseased elements of the digital world are home computers, tablets, cellphones and corporate networks – that is, the computer world that most folks know about – be it of a work or home/consumer coloring. But they’d be wrong. Despite the fact that the majority of cyberattacks occur in “traditional” cyberspace (cyberespionage, cybercrime, etc.), they don’t represent the main threat. In actual fact, what should be feared most of all are computer attacks on telecommunications (Internet, mobile networks) and ICS (automated Industrial Control Systems).

One particular investigation of ours, conducted as part of our ongoing secure OS project, detected a seriously low level of “computer immunity” for control systems of critically important infrastructure. ICS, including SCADA, all of which is made up of software and computerized hardware, is responsible for controlling – and the smooth, uninterrupted running of – tech-processes in practically every sector of industry, be it the power industry, transportation, the mass media, and so on. Computer systems control critical aspects of all modern cars, airplanes and trains; every power station and waterworks, every factory, and even every modern office building (lifts, electricity and water supply, emergency systems like smoke alarms and sprinklers, air conditioning, etc.). SCADA and other ICS – it’s all imperceptible, working in the background in some corner or other nobody takes any notice of… but a whole lot around us depends on it.

Alas, as with any other computer systems, SCADA & Co. can be exposed to malware and hacker attacks, as was clearly demonstrated by the Stuxnet worm in 2010. Therefore, protection of critically important systems has become one of the main strategic priorities of computer security in most developed countries of the world, while in response to cyberattacks on critical infrastructure some countries are ready to go to war – real tanks-and-bombs war (if they can find out which country is responsible). So indeed, the situation’s sure hotting up.

Of course, we’re on the case with SCADA security, and have been for a while. Over the last several years we’ve been conducting detailed analysis of ICS, been establishing the fundamental principles of SCADA security, and also developing a prototype solution for guaranteed SCADA protection from malware threats – based on traditional endpoint security and our secure OS. Products fit for consumption aren’t ready just yet, but active work is currently underway – so they should be soon…

Now, while continuing our usual analysis of SCADA security, earlier today we stumbled upon one heck of a big surprise: we came across “Mother-SCADA”, the chief, predominant, all-powerful ICS of the whole world, on whose smooth and uninterrupted operation relies literally everything on the planet: from how breakfast tastes and the size of annual bonuses, to the hours of night and day time and how fast the sun and the stars move across the skies.

Yep, we’ve gone and found the SCADA that manages all the technological processes in the Matrix!

Mother SCADA admin panel

More: Mother SCADA controls your annual bonus!…

King of the castle: triple crown turns from yellow to green.

In astrology – squares are bad news. They represent conflict. (How or why I might know this I’ll not share with you here. Cough.) But in IT-industry analysis – squares are good. Real good! To get into one of four squares – ok, they like to call them quadrants – and especially the best of the four (leader/visionary) is no mean feat, so breaking and entering a square – especially leader/visionary – is all the more fantastic.

We are now in three such quadrants (actually, one quadrant, one “scape”, and one wave) – those of Gartner, IDC, and Forrester. All three have unanimously made us “leaders” in the class of corporate endpoint security! But this isn’t just the usual round of yet more medals being fastened to the old KL lapel. Oh no. We’ve received the honored “triple crown” from the three most respected international analytical agencies. Incidentally, this crown has only ever been worn by one other – our competitor with the soft spot for all things yellow. Well, now the triple crown is a nice shade of green.

IDC MarketScape (*)

IS01V MarketScape Graphic

More: see you in quadrants!… ->

One in twenty is the sad truth.

In brief.

  • Approximately 5% of home computers around the world are infected. That’s at least 50 million machines.
  • We discovered this from our free Kaspersky Security Scan after analyzing requests to an “antivirus cloud”.
  • We’re only talking about Windows PCs – we don’t know how many infected Macs and Linux machines there are out there.

Now for all the gory details.

So, just how many infected computers are there in the world right now (to within two or three parsecs)? It’s a pertinent question. And that’s just PCs; no Macs (quite a few of which are infected too). And let’s restrict it to just home users. In any case, it’s still interesting to know. What do you need to do to find out that sort of information? Well, a large selection of computers needs to be scanned for malware, and that’s a large selection in terms of geography as well as numbers. The antivirus tool not only needs to be good at catching viruses – it mustn’t conflict with other antivirus programs.

Well, we have just the thing – Kaspersky Security Scan (KSS).

Kaspersky Security Scan

More: KSS – a nifty little thing…

Enter your email address to subscribe to this blog
(Required)

Obama: patents patently barmy.

A serious issue I’ve been critically writing and talking about for several years now has finally made its way up through the echelons of power to find itself being officially recognized – and condemned – by no less than the President of the USA! Indeed, the day before President’s Day Barack Obama issued a strong rebuke against patent trolls! When asked to comment on the current situation as regards the protection of intellectual property and abuses of patents, he came out with the following gem:

“The folks that you’re talking about [patent trolls] are a classic example; they don’t actually produce anything themselves. They’re just trying to essentially leverage and hijack somebody else’s idea and see if they can extort some money out of them.”

Ye gods. At last some sense from the top! He went on to say that patent trolls (not the term he used!) represent one of the main things very wrong with the current American patent system. Then he commented on his administration’s attempts at patent reform:

“I do think that our efforts at patent reform only went about halfway to where we need to go, and what we need to do is pull together additional stakeholders and see if we can build some additional consensus on smarter patent laws.”

You can read a bit more on Obama’s comments here, or check this video out – from the 16th minute:


More: How to stop feeding these parasites?…

It’s Not All Just Antivirus, You Know. Introducing Kaspersky Security for Business.

It’s been little more than a year since the release of the previous version of our corporate product (Endpoint Security 8), but we’ve already rolled out a new (need I say it – much improved) one. Yesterday, as per tradition in New York, we had our global launch of Kaspersky Endpoint Security for Business (KESB) – a nifty bit of software kit in which all sorts of new stuff comes together – from a flock of new functionality to a new name and a new product line.

This post gives you a peak at all these newbie bits and bobs featured in KESB. But first, as a bit of background to make all the new stuff a little easier to get your head round (I hope), let me give you a historic overview what’s gone on in the past and which has brought us to this year’s culmination: KESB.

More: In the beginning there was antivirus…