Snow
Forest
Mountains
Snow
Snow

Monthly Archives: September 2019

Why Shopping Mall is being targeted by Hackers?

Category : Blog

Why Shopping Mall is being targeted by Hackers?

Last few years were critical for many companies in the E-commerce sector, due to the high amount of cyber-attacks and emerging threats.

 

Study of Business Insider shows that for the period of one year at least 16 separate security breaches have occurred at large retailers. Many of them are due to security flaws in payment systems.

 

Recent report by shape Security showed that many people that log in to a retailer’s E-commerce site are hackers using stolen data. This is the highest percentage of any sector. Some of the largest retailers like Adidas, Macy’s, Best Buy, Forever 21 and others have been affected. Large amount of compromised data is being sold on “dark web”, including databases with personal data, credit card numbers and confidential corporate data, used by the competitors.

 

Lets See What CEO of Indian Cyber Security Solutions, Mr. Abhishek Mitra has said about this

 

 

 

Another issue in the sector is being caused by the high amount of IoT devices, which allow more and better ICMP and DDOS attacks to be crafted. Many vulnerabilities are caused due to input validation errors, client side gaps, vulnerabilities in database servers or network related vulnerabilities.

It is very important for an E-commerce organization to provide layered security infrastructure, as well as to perform regular assessments in order to check the security of their systems, networks, web and mobile applications and employees.

GDPR and other law requirements provide a strong challenge for most organizations, operating with personal data.

In the white paper we will observe the following topics:

  • Some of the issues that you can face.
  • Famous attacks in the sector.
  • Protection mechanisms.
  • Basic security measures.

 

 

Attacks Shopping mall industry have seen in past

 

Malware

Malware is malicious software, developed by malicious hackers to gain access or cause damage to a computer system or network, often without the knowledge of the affected user.
Malware is often called ‘computer virus’, although there are big differences between these types of malicious software.

Magento and other E-commerce platforms are particularly vulnerable to widespread malware infections due to their prevalence in the market. Malware can perform an extremely wide range of activities. It can use your computer as part of a botnet in order to launch DDOS attacks, steal credit card numbers or sensitive account information from the users of your website. A famous malware, intended to target Magento sites, had the functionality to extract credit card information and store it in images so that the attacker could easily access it without raising any alarms.

 

 

 

 

Log Injection

Log files can be used by an attacker to inject malicious content or forge log entries if there is a vulnerability which allows unvalidated user input to be written in the logs.

Log injection vulnerabilities occur when the data comes from an untrusted source or the data is written to an application or system log file.
Log files are typically used by the applications to store a history of events or transactions which could be later reviewed. Logs could also be used for statistics gathering, or debugging. Depending on the application’s functionality, log files could either be reviewed manually or with the help of automated tool that automatically reads logs and searches for trending information or important events.

Log files might get corrupted if an attacker can supply data to the application that is subsequently logged verbatim.

 

 

 

 

Bad bots

Bots have many names – crawlers, spiders, Internet robots, web bots and more. They are frequently used to perform repetitive jobs and simple tasks, like indexing a search engine. However they often come as part of a malware. They are used to gain full control over a computer system. Some of them have the functionality to infect the host and connect back to a CNC (command and control) central server(s), which could be used to control a network of compromised computers and hosts.

 

  • Fraud – Bots can prevent your legit users from purchasing items by sending many purchasing requests for an item in order to make it appear out of stock for your clients. They can also list your items for sale in other sites at a lower price. Bots could also be used to attempt to brute-force the credentials of your consumers. In case of a successful login they can also resell the information to a third party. In case that someone is able to use the credit card of your clients, that could ruin the trust among them.

 

  • Price Scraping – Price scrapping is a technique used to craw an online store for its prices along with product catalog information, with the help of bots. It is often used by competitors in order to steal the dynamic pricing of a website, which is extremely important in the E-commerce platforms. The reason for this is that many consumer-buying decisions and revenue forecasts rely on the real-time dynamic pricing. Such hacking method would allow the competitors to set prices lower than baseline prices in the marketplace and therefore attract more consumers.

 

  • Analytics Bots can have a high impact on the analytics of your selling campaign, by imitating human behavior. Many of them use scripting code like JavaScript, which is also the mechanism most analytics tools are using to bounce rate, conversion rate, count page views and more. Such attacks could convince you to spend more money on advertising, compromise your metrics and lower your conversion rate.

 

Phishing

Hackers may try to attack your E-commerce business by launching phishing campaigns. For the purpose they might craft fake emails, phone calls and SMS messages. Hackers can also inject malicious JavaScript snippets to checkout pages in popular E-commerce platforms like Magento, Woo Commerce, PrestaShop and others. Many merchants use PayPal as a payment method, which means that if PayPal account gets suspended it will limit the consumer’s ability to purchase new items. That makes merchants to consider important if they receive an email claiming to suspend their account due to malicious or unusual activity. If they lack security awareness, merchants may follow a fake page link and according to the instructions provide their login credentials. They can also download, complete and submit invoices, bills and proposals in the form of attachment, which will provide the cybercriminal with their user names and passwords and full access to the merchant’s PayPal account. The attachment could also auto-install malicious software on the victim’s computer.

 

DDoS

 

A distributed denial-of-service (DDoS) attack is a malicious attempt to disrupt normal traffic of a targeted server, service or network by overwhelming the target or its surrounding infrastructure with a flood of Internet traffic. DDoS attacks achieve effectiveness by utilizing multiple compromised computer systems as sources of attack traffic. Online stores are especially vulnerable to those attacks especially during discount periods, like Black Friday. However, there are easy to implement measures, to protect against such type of attacks.

 

Vulnerabilities in firewall

 

Firewalls are usually important assets of every network security infrastructure. Their job is to restrict the inbound do outbound access and vice versa to specific IP addresses and networks. Firewall vulnerability might be caused because of an error made during firewall design, implementation, or configuration that can be exploited to attack the trusted network behind the firewall. Some common firewall vulnerabilities and misconfigurations include:

  • Allowed ICMP traffic.
  • Blocking traffic, instead of dropping it.
  • Lack of port restriction.
  • Unrestricted access to specific IPs and networks.
  • Unnecessarily open TCP and UDP ports.

 

 

Preventive measures in Shopping Mall industry:

  1. Trademark your company name and logo
  2. Use a trusted ecommerce platform
  3. Use HTTP with SSL = HTTPS
  4. Make sure your site is PCI DSS compliant
  5. Keep your site updated
  6. Require strong passwords
  7. Know the signs of fraud

5 most demanding skills in cyber security

Category : Blog

5 most demanding skills in cybersecurity

 

The demand for cybersecurity professionals has become an essential part of all modern organizations. Due to the lack of expertise and insufficient skills, companies are unable to find and locate suitable candidates for this field. If you want to start your career in cybersecurity and have the ability to get an advantage of this opportunity, then you must increase your expertise and build the right skills.

 

The main issue is, technology is reshaping itself with the new innovations hence a cybersecurity professional must have to be active and updated with the new sets of technology. This article will help you to take a look at the required cybersecurity skills for 2019.

 

 

Internet of Things (IoT):

Although people understand the importance of “internet of things” (IoT) but still security loopholes exist. The cybercriminals get advantages of such loopholes and also they try to exploit the gaps. Therefore, you must need to develop your skills in IoT in order to safe interconnected networks and devices. With IoT practices being adopted by numerous industries, from agriculture to commercial, management to energy, picking up strong IoT security skills can aid you seriously in the coming years.

iot picture icss

 

Vulnerability Valuation:

 In the modern organization, a large amount of big data is used and transferred from one device to another. Data continues to increase in value hence you must need to apply new rules and regulations to safe data effectively. In modern devices, all the data gathered by manufacturers, businesses, and banks contain personally identifiable data that can also be used for malicious activities, like financial fraud and identity theft, etc. To secure your data on a regular basis, you need to continue with a vulnerability assessment.

 

VAPT Vulnerable

 

Customer Services:

In many organizations, the IT section requires a vast and energetic number of people working in tandem to fulfill tasks and meet necessities. These teams, including cybersecurity, must possess the customer service skills as there is a persistent need to communicate with the organizations’ internal staff or other partners, clients, and co-workers.

 

customer service

 

Malware Defense:

 Organizations including small enterprises never want their personal information and privacy to be leaked on the internet. Numerous incidents are observed where companies lost their precious data and brand perception after cyber-attack. Therefore, you must have the skills to handle such situations. In order to understand the need of the modern world, EH Academy offers the all-time best “Complete Ethical Hacking Bundle”. This bundle is well-designed and equipped with modern techniques of ethical hacking.

 

malwar

 

 

Artificial intelligence & Machine Learning:

Modern technology has minimized the involvement of humans. The same rule applies to cybersecurity professionals. You must have sufficient skills to use machine learning and artificial intelligence to identify new loopholes and weaknesses and averting malicious botnet or Ransomware attacks.

 


Why IOT industry is being targeted by Hackers?

Category : Blog

Why IOT industry is being targeted by Hackers?

We are living in a connected world, where nearly all devices are becoming connected.

The internet of things (IoT) is coming up in a big way and with amazing opportunities – but it also brings serious security threats.

IoT connects physical devices, so the hacking of IoT devices has the potential to cost human lives.

Further implications can be access to unauthorized and potentially confidential data that can then be used for other crimes.

 

Let Us See what our CEO, Abhishek Mitra have to say about IoT Hacking:

 

What type of attacks IOT based industry have seen in past?

 

 IoT devices have potential security vulnerabilities like weak passwords and other poor default security settings, lack of encryption when devices communicate over the network, and poor (or non-existent) user-serviceable device management.

Due to these vulnerabilities, many IoT devices are surprisingly easy to attack.

 

Ransom attack

Researchers at cybersecurity firm McAfee called the past months “the quarter of data dumps” in an alarming report released on Wednesday. 

The 40-page survey of the security landscape found more than 2.2 billion stolen account credentials were made available on the cybercriminal underground this quarter and hackers had even figured out ways to break into Wi-Fi enabled coffee makers.

“The impact of these threats is very real,” said Raj Samani, McAfee fellow and chief scientist.

“It’s important to recognize that the numbers, highlighting increases or decreases of certain types of attacks, only tell a fraction of the story. Every infection is another business dealing with outages, or a consumer facing major fraud. We must not forget for every cyberattack, there is a human cost.”

News from where this incident have been taken.

 

 

It is a small video on Ransom Attack:

 

 

IOT BOTNET ATTACK

A new IoT botnet named Ares is infecting Android-based devices that have left a debug port exposed on the Internet.

Among this botnet’s most common victims are Android set-top boxes manufactured by HiSilicon, Cubetek, and QezyMedia, cyber-security firm WootCloud said today. Check Out Here

 

VIDEO ON BOTNET RECENTLY SHOWCASE IN 2019:

 

 

 

What kind of action or preventive measures have saved the industry from being hacked and face humiliation?

 

  1. Learn how to maintain the security of IoT devices.Consumers need to protect their IoT devices the same way they would their smartphones, tablets and home computers. Look for ways to set strong passwords, reading the manuals for instructions on how to lock down these devices.

 

  1. Clean out old apps.Many of us tend to keep apps indefinitely, even if we don’t use them. Check your devices periodically and delete apps you no longer use.

 

  1. Own your online presence.Understand what information your devices collect and how they it is managed and stored.

 

  1. Do your research.Before you purchase an IoT device, do a search to see if it has had security problems with it and if it can be easily hacked.

 

  1. Change the default setting on the home router.This is worth reiterating: Strong passwords on home routers can prevent the type of DDoS that happened last Friday to Dyn.