RadarServicesQuarterly-Q4-18 » Radar Cyber Security

Hot Topic

2018 in retrospect

Prevention is better than cure, this proverb is certainly true when it comes to cybersecurity. The Internet of things (IoT) and Operational Technology (OT) are of particular importance in terms of the security of companies.

RadarServices always focuses on cybersecurity. For this reason, it is important to us not only to understand customer’s software, IT landscapes and concerns, but also the environment in which these systems are used. This approach also applies when it comes to possible risks and threats, which we do not view in isolation, but rather in context. In our review, our experts provide tips on a wide range of security areas – from Operational Technology to small and medium-sized enterprises and the Internet of Things. But their cybersecurity tips for more security should be of particular interest for everyone.

Learn more >>

Futurezone Award

We are winners in the category “Hidden Champion”! We are not quite so hidden or unknown. But cybersecurity is still not at the top of the agenda for many companies. It’s also often a topic that executives don’t like to talk about – it could uncover one or two security deficiencies or white spots when it comes to cybersecurity.

The employees of RadarServices were very pleased about the award. Because the award is a nice recognition of the performance of the last months and years.

RadarHub

RadarServices is growing and getting bigger. More employees also require more space. That is why the new research and development location was opened on the 7th of November 2018. The RadarHub offers even more space for employees to develop the highly sought-after solutions and services.

Magazine 04

The latest issue of our magazine has been published. If you do not already hold the magazine in your hands, you can also read all the articles online:

https://itsec4managers.radarservices.com

Brief Report on the current Cybersecurity Threat Situation

The experts at Europe’s largest Cyber Defence Centre keep any eye on what’s happening around the world. Looking back on the fourth quarter of 2018, they report more and more targeted attacks.

The fourth quarter of 2018 brought further malware in addition to Emotet. Experts are currently observing malware known as “Loki-bot/Pony” or “Fareit/Pony” on a regular basis. This is a two-component infection, one representing the initial downloader and the other the actual malware. Ultimately, malware is installed that can steal passwords of any kind. A keylogger is also often integrated with this malware.

In addition, the experts at our Cyber Defence Centre occasionally see Java-based malware. The original version was called “Qarallex”, but now there are several variants circulating. It is often delivered via an RTF, which executes Word commands via an exploit from last year against the formula editor. But also Office macro functionalities are exploited. It is interesting to note that this malware copies larger parts of the Java runtime environment into other directories. Either the recording of logs should be prevented or the malware should be made more robust against attacks.

A third and quite interesting innovation is the target behaviour of malware spam. In recent years, malware spam was either very generic or, if attackers invested a lot of time, sometimes quite targeted.

From a vulnerability point of view, two conspicuous features are worth mentioning. A WordPress GDPR plugin had a severe vulnerability, allowing attackers to take over the WP entity or server. With the gap the account registration could be activated, a new user could be created and be given admin status. Afterwards one could install Malware Plugins among other things, by exploiting these attackers can take over the control over the host. The affected plugin “WP GDPR Compliance” is intended to facilitate compliance with the GDPR. The vulnerability was already exploited even before the patch was available.

Cisco Business Switches were reported again to have undocumented backdoor accesses. For example, the Cisco Stealthwatch Management Console Authentication Bypass Vulnerability allowed regular authentications to be bypassed and any commands to be executed with administrator privileges.

Technology News

Our Research Department is currently evaluating how best to demonstrate why an anomaly reported by the Natural Language Processing Tool is an anomaly. This means that our experts try to calculate which loglines in particular cause a session to be marked as an anomaly. In addition, a new version of the baselining tool is currently being tested on customer data.

Projects

Kick-off for the Radar Academy @ Cybersecurity World Vienna! Several partners took part in the first training sessions in order to expand their technical know-how thanks to the IT experts from RadarServices. New trainings will be held on February the 26th and the 27th, more training offers will follow.

Computacenter announced their partnership with RadarServices. Austrian technologies complement Managed Cyber Security Services. Further information >>

Dekra and RadarServices announce their cooperation: This means more cyber security for SMEs in the future. Further information >>

A1 and RadarServices announce their partnership to offer customers security monitoring and security management at the highest level in the future.

Ectacom and RadarServices announce their distribution partnership with the intention to promote the timely detection of IT risks. Companies as well as public authorities can benefit from this offer either as a solution or a managed service.

Meet our experts

Our experts are at your disposal – meet them at conferences and exhibitions or talk to them in webinars online.

SAVE THE DATE!

February
Swiss Cyber Security Days
27.-28.02.2019, Fribourg, Switzerland
More information: https://swisscybersecuritydays.ch/en/

Annual conference on data protection
27.-28.02.2019, Vienna, Austria
More information: https://www.imh.at/veranstaltungen/seminar/jahreskonferenz-fuer-datenschutz/

13.02.2019, Vienna, Austria: „Cybersecurity World Tour“ at the RadarServices’ headquarters
Register here: https://www.radarservices.com/events/cybersecurity-world-tour/

13.03.2019, Vienna, Austria: „Cybersecurity World Tour“ at the RadarServices’ headquarters
Register here: https://www.radarservices.com/events/cybersecurity-world-tour/

16.05.2019, Vienna, Austria: „Cybersecurity World Tour“ at the RadarServices’ headquarters
Register here: https://www.radarservices.com/events/cybersecurity-world-tour/

Q4 2018 review

a short overview of the most important events we have participated in

Grand Opening of Cyber Defence Centre Vaduz

On the 4th of October the Cyber Defence Centre in Vaduz was officially opened with our partner FL1.  Thomas Hoffman, Managing Director of RadarServices, and Mathias Maierhofer, CEO of FL1, were there to welcome guests. The first Cybersecurity World Tour in Vaduz started in December.

it-sa 2018

From 09th to 11th October, numerous visitors came by our booth in the Nuremberg exhibition halls to learn more about our latest solutions and services. In addition to several presentations, there was an exclusive program with speakers.

TÜV Austrian Yearbook for Risk Management 2019

The Austrian Yearbook for Risk Management 2019 was presented on 23rd of October. Dr. Christian Polster, RadarServices’ Chief Strategy Officer contributed to the book.

protekt

Security is especially important for critical infrastructure. Visitors learned more about cyber security on the 13th and 14th of November at protekt in Leipzig – the conference and trade exhibition for the protection of critical infrastructure.

Mannheim

IT meets Industry! RadarServices and its partner FireEye were at the trade congress in Mannheim to inform guests about the protection of production facilities and critical infrastructure.

Def Camp

Harald Reisinger, Managing Director of RadarServices, visited DefCamp, one of the most important conferences in the Hacking & Information Security environment in Central and Eastern Europe, on November 8th. He participated in a discussion on CPU vulnerabilities, how to withstand future attacks and new technologies and trends in IT security.

In the media

A vast number of newspapers and journals reported on RadarServices. Daily papers and trade magazines reported on us and have the comments of our experts on current cyber-attacks. Find an overview of the media coverage here >>

We use cookies and trackers to optimize your user experience on this website. More information. I do not agree. (limited functionality)

Die Cookie-Einstellungen auf dieser Website sind auf "Cookies zulassen" eingestellt, um das beste Surferlebnis zu ermöglichen. Wenn du diese Website ohne Änderung der Cookie-Einstellungen verwendest oder auf "Akzeptieren" klickst, erklärst du sich damit einverstanden.

Schließen