Cyber Defense eMagazine July 2020 Edition

More documents

Recommendations

Info

Don’t Be Breached When Using Commercial Software Products By Randy Reiter CEO of Don’t Be Breached In May, 2020 the software giant SAP made available eighteen security fixes for its Adaptive Server Enterprise (ASE) database system (formerly Sybase ASE). ASE is used by SAP products and 30,000 organizations worldwide. 90% of the top 50 banks and security firms use ASE. Four of the eighteen security fixes had a CVSS score of 8 or higher. Common Vulnerability Scoring System (CVSS ) is a free and open industry standard for assessing the severity of computer system security vulnerabilities. Vulnerabilities are scored from 0 to 10 with 10 being the most severe. One of the security fixes was for SQL Injection Attacks. This vulnerability allowed any user of a database regardless of their permission level to gain Administrator access to the entire database. Wow. SAP software products are comprehensive and complex. SAP customers have added on average up to 2 million lines of custom code to their deployment. This makes applying security patches a lengthy process due to comprehensive application testing requirements prior to deployment of the security fixes. Other 2020 Database Security Vulnerabilities: • June, 2020. KingMiner botnet operation targets SQL Server databases with brute force attacks. The KingMiner botnet has been active since 2018. Once KingMiner gains access to SQL Server it is capable of gaining root access to the Windows server. • May, 2020. Hacker leaked online the database for 7,600 websites serviced by Daniel’s Hosting. Daniel’s Hosting is the largest free web hosting provider for Dark Web services. The leaked Cyber Defense eMagazine –July 2020 Edition 42 Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.
database included 3,000+ email addresses, 7,000+ account passwords and 8,000+ private keys for .onion (dark web) domains. How to Protect Confidential Database Data from Insider Threats and Hackers? Confidential database data includes: credit card, tax ID, medical, social media, corporate, manufacturing, law enforcement, defense, homeland security and public utility data. This data is almost always stored in Cassandra, DB2, Informix, MongoDB, MariaDB, MySQL, Oracle, PostgreSQL, SAP Hana, SQL Server and Sybase databases. Once inside the security perimeter a Hacker or Rogue Insider can use commonly installed database utilities to steal confidential database data. Non-intrusive network sniffing can capture and analyze the normal database query and SQL activity from a network tap or proxy server with no impact on the database server. This SQL activity is very predictable. Database servers servicing 10,000 end-users typically process daily 2,000 to 10,000 unique query or SQL commands that run millions of times a day. Advanced SQL Behavorial Analysis of Database Query and SQL Activity Advanced SQL Behavioral Analysis of the database SQL activity can learn what the normal database activity is. Then from a network tap or proxy server the database query and SQL activity can be nonintrusively monitored in real-time and non-normal SQL activity immediately identified. Non-normal SQL activity from Hackers or Rogue Insiders can be detected in a few milli seconds. The Hacker or Rogue Insider database session can be immediately terminated and the Security Team notified so that confidential database data is not stolen. Advanced SQL Behavioral Analysis of the query activity can go even further and learn the maximum amount of data queried plus the IP addresses all queries were submitted from for each of the 2,000 to 10,000 unique SQL queries sent to a database. This type of data protection can detect never before observed query activity, queries sent from a never observed IP address and queries sending more data to an IP address than the query has ever sent before. This allows real-time detection of Hackers and Rogue Insiders attempting to steal confidential web site database data. Once detected the security team can be notified within a few milli-seconds so that a data breach is prevented. About the Author Randy Reiter is the CEO of Don’t Be Breached a Sql Power Tools company. He is the architect of the Database Cyber Security Guard product, a database data breach prevention product for Informix, MariaDB, Microsoft SQL Server, MySQL, Oracle and Sybase databases. He has a Master’s Degree in Computer Science and has worked extensively over the past 25 years with real-time network sniffing and database security. Randy can be reached online at rreiter@DontBeBreached.com, www.DontBeBreached.com and www.SqlPower.com/Cyber-Attacks. Cyber Defense eMagazine –July 2020 Edition 43 Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Security, Convenience & Privacy: A
Page 3 and 4: IOT Security Embedded in Memory Car
Page 5 and 6: @MILIEFSKY From the Publisher… Ne
Page 7 and 8: Welcome to CDM’s July 2020 Issue
Page 9 and 10: Cyber Defense eMagazine -July 2020
Page 17 and 18: Your website could be vulnerable to
Page 25 and 26: Industry giants have chosen to appr
Page 27 and 28: emotely is governed correctly via u
Page 29 and 30: 3 Practices to Avoid Security Risk
Page 31 and 32: Simplifying personal endpoint devic
Page 33 and 34: What can you do to protect your wor
Page 35 and 36: System Updates / Antivirus Security
Page 37 and 38: access to remote employees, and thi
Page 39 and 40: Organizations: It’s Time to Rethi
Page 41: While newer technologies, such as a
Page 45 and 46: It is impossible to know whether Jo
Page 47 and 48: to prioritize higher-risk employees
Page 49 and 50: About the Author David Sanders is D
Page 51 and 52: On the other hand, buying a SOC sol
Page 53 and 54: In 2020, SOCs Are Understaffed Yet
Page 55 and 56: Figure 2: SOC leaders believe that
Page 57 and 58: it will create a team that is respo
Page 59 and 60: Figure 6: SOC managers drive metric
Page 61 and 62: • By then, our global cities may
Page 63 and 64: Managing Small Business Cybersecuri
Page 65 and 66: There are multiple risks when emplo
Page 67 and 68: Security in memory card format Swis
Page 69 and 70: About the Author Hubertus Grobbel i
Page 71 and 72: More variants: 439,000 new malware
Page 73 and 74: About the Author Lt. Commander (Ret
Page 75 and 76: What Are the Different Types of Thr
Page 77 and 78: Even though DHS recommends using tw
Page 79 and 80: To make matters even more complicat
Page 81 and 82: Should We Be Worried About Vehicle
Page 83 and 84: Still, with these cases attracting
Page 85 and 86: Cyber Attacks at Sea: Blinding Wars
Page 87 and 88: North Korean hackers.5 Later this y
Page 89 and 90: 200-300 million for Q3 2017.17 More
Page 91 and 92: About the Author Julien Chesaux is
Page 93 and 94:
Why not just keep using a jailbreak
Page 95 and 96:
Conclusion Jailbreak-free acquisiti
Page 97 and 98:
ut the case is if such a behavior i
Page 99 and 100:
How Bad Guys Could Take Advantage o
Page 101 and 102:
How it Works Whenever you sign in t
Page 103 and 104:
Understanding the Types of Single S
Page 105 and 106:
About the Author Ayman is founder o
Page 107 and 108:
According to research conducted by
Page 109 and 110:
Source: Apple Insider It is also im
Page 111 and 112:
Post COVID-19: Cloud, Remote Work a
Page 113 and 114:
The Rise of COVID-19 Phishing Attac
Page 115 and 116:
Donation Solicitations - The Most D
Page 117 and 118:
Post COVID-19: Password Extinction
Page 119 and 120:
The Future Of Security - Prediction
Page 121 and 122:
Post COVID-19 Cybersecurity and Fut
Page 123 and 124:
picture of access in the cloud and
Page 125 and 126:
connectivity? To ensure comprehensi
Page 127 and 128:
About the Author Stan Lowe,Global C
Page 129 and 130:
For many organizations, the Securit
Page 131 and 132:
Fig 1: AI Meme This article documen
Page 133 and 134:
Fig 3: Screengrab of Crypto’s UI
Page 135 and 136:
hon() Fig 4: Screengrab of Honeypot
Page 137 and 138:
with high-precision and also send k
Page 139 and 140:
References “Security in Computing
Page 141 and 142:
Cyber Defense eMagazine -July 2020
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Meet Our Publisher: Gary S. Miliefs
Page 157 and 158:
Free Monthly Cyber Defense eMagazin
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
show all

Cyber Defense eMagazine July 2020 Edition

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?