How can a vulnerability be converted into an attack

Such malware also includes backdoors that can communicate with a remote user, and spyware that can steal online banking credentials and personally identifiable information PII from the infected system. Until systems are updated, computers remain open to threats that abuse vulnerabilities. Unfortunately, not all users are keen on applying these updates. Other vendors, such as Google Chrome and Flash are also known to release updates automatically and invisible to users.

Despite its benefits, not all users regularly update their systems with the latest security releases. The report also reveals the following reasons why users do not readily update their software:. Which threats take advantage of vulnerabilities? Here are some examples of threats that typically target software vulnerabilities to successfully infect systems:.

Blackhole exploit kit. These attacks typically arrive via email and usually mimic well-known organizations. The message contains a link to a compromised website that redirects users to a malicious website or landing page. This page then attempts to exploit vulnerabilities in the system.

If successfully exploited, it downloads data-stealing malware variants like ZeuS or Cridex. The high amount of legitimate-looking email related to the Blackhole exploit kit is a reason why this poses a noteworthy threat. Attacks using old, but reliable vulnerabilities. Instead of exploring new security flaws to target, potential attackers may also rely on previously reported vulnerabilities to successfully infect their targets.

We already wrote about attacks that continue to use MS , a vulnerability reported and patched two years ago. This shows that such vulnerabilities still work and users do not regularly updating their systems.

Vulnerabilities in mobile apps. With everyone going mobile, it was only a matter of time before attackers hit the mobile platform by exploiting the OS and apps.

One of the earliest threats we saw that targeted iOS was the jailbreaking tool JailbreakMe , which uses a malicious. HLA to exploit a vulnerability in Safari. Apple has already provided a patch to the said software flaw. Android-based mobile devices were not spared. If exploited, it allows a remote attacker to gain root privileges which grants remote attackers complete control over the vulnerable devices.

Android apps were also fair game. A spam run made the rounds through a compromised Android-based device. This may have been caused by attackers taking advantage of a vulnerability in the Yahoo! Mail Android app. If these tables were modified the results would be similar to launching a malicious application program. An employee with access to the system and appropriate passwords could also run system-level utilities such as a file manager that would erase essential system software and shut the system down.

The efficacy of such an attack is questionable since one would hope that backup copies of the system would be stored locally and off-site in a safe and protected location. A system could probably be restored to full operation in about an hour in most cases, presuming that no physical damage was inflicted probably not a safe assumption. It has also becoming more prevalent for critical SCADA systems to be supported by backup systems, located at alternate geographical sites.

Any action that totally shut down the primary SCADA system site such as an earthquake, flood, terrorist attack or really effective Cyber attack would cause the backup site to assume control. A similar action could be taken as part of an inside attack. An immediate, wholesale download to multiple remotes would have a much greater impact. It is important to remember that not all RTUs and protocols support remote downloading over the telecom channel but many PLCs do!

Replacing this logic with malicious logic, or merely downloading dangerous settings, could inflict damage on pipeline equipment and operations. Again, these sorts of attacks would require high-level access plus a fair degree of system knowledge and expertise. They were designed to be tolerant of minor human error and to keep out the honest. Some critical SCADA systems have been architected to survive natural catastrophes, which makes them less likely to totally fail under a cyber assault.

Many older systems would be nearly immune to a remote cyber attack or much more difficult to attack using conventional hacking methods. The IT world has developed a range of technologies and techniques for protection IT assets. All SCADA systems are open to internal attacks, although an internal cyber attack not a physical attack will generally require a high degree of technical knowledge about the system.

PLC equipment is also more vulnerable to remote reprogramming due the inherent design of these devices and their origins on the factory floor. Job board. Show all jobS. Today's most popular news. Hydro One and Peak Power launch innovative new pilot program to enhance power resiliency using electric vehicle chargers The program leverages two-way Vehicle-to-Home charging technology to provide back-up power during outages.

Show all events. Private zone Subscription details Archived documents Transferred documents Contact list Forgot your password. Security Websites. Vulnerability Assessment Definition Zero Trust. Best Windows 10 Anti Virus Software. Best Antivirus Software. Antivirus for Android. Antivirus for Windows 8. Antivirus for Windows 7.

Malware Removal. Spyware Removal. Managed Detection and Response. SOC as a Service. Incident Handling. Threat Detection. Alert Monitoring. Managed Security Information Management. Website Down. EDR Endpoint Protection. EDR Security.