Computer Security Updates Week 3 of May 2013

Refer to Computer Security Updates Week 2 of May 2013; in which the biggest news was Reuters reported Pentagon cleared Samsung, BlackBerry devices to adopt multi-vendor environment.

For this week / last week, here are / were the biggest news.
  • Kaspersky Lab signs agreement with Qualcomm Technologies to provide preloaded mobile security solutions for mobile devices.
  • Trend Micro publishes Q1 2013 Security Roundup.
  • Sophos UTM Connected makes web surfing outside corporate network secure.
  • Reuters reported one of the biggest ever bank heists cyber crime.
  • Kaspersky published analysis on spam in Q1 2013.
  • Sophos sees explosive growth for MDM and Mobile Security.
  • Check Point introduces enterprise-level security appliance for SMBs.

PETALING JAYA, MAY 15, 2013 - Kaspersky Lab Has Signed an Agreement with Qualcomm Technologies

Kaspersky Lab has signed an agreement with Qualcomm Technologies, Inc. (QTI), under which Kaspersky Lab has agreed to offer special terms relating to the preloading of Kaspersky Mobile Security and Kaspersky Tablet Security solutions onto Android devices powered by QTI’s Qualcomm Snapdragon™ processors. Kaspersky will be offering these special terms to a wide range of customers, who are manufacturing or having manufactured on their behalf Snapdragon-enabled mobile devices or tablets running on Android.

To date, Qualcomm Snapdragon processors can be found in more than 770 commercially available or announced products, with another 550 product designs in the pipeline, from 70+ device customers.

KL, May 15, 2013 - Trend Micro publishes Q1 2013 Security Roundup

With regards to ICT security happenings for Q1 2013, Trend Micro brings to our attention a few important updates.

Leveraging on the 2013 Q1 Computer security review by It-Sideways, a few important points will be briefly highlighted.

The Q1 2013 can be summarized with a few trends:

1.) Zero-days exploits - The wrong reason which both Oracle and Java were caught in the limelight. Oracle Java was no.1 most frequently exploited software in 2012. In Q1 2013, both companies have aggresively published security fixes for zero-days exploits.

2.) Some old threats rear their ugly heads - exploit kits, malicious JavaScript code, Spam Botnets and trojans c&c powered botnet were detected by Trend Micro. March 2013 showed the most number of detections; U.S was the country with most number of hosted botnet C&C servers and infected PCs.

The top 3 malwares identified by Trend Micro were WORM_DOWNAD, TROJ_ZACCESS/SIREFEF and ADW_PRICEGONG.

News events dominated the social engineering lures in the first quarter, with the election of a new pope making the loudest noise. Technology-related topics like Google Glass and Windows 8 were also frequently used.

3.) Uprising of mobile threats - phishing, mobile backdoor and fake gaming apps were found to be common.

Android threat volume reached 509K by Mar 2013. It is also interesting to take note the trend of distribution of Android Threat Types which consist of:
  • Premium service abuser - 47.72%
  • Adware - 31.99%
  • Data stealer - 11.34%
  • Malicious downloader - 6.4%
  • Hacktool - 2.09%
  • Backdoor - 2.58%
  • Others - 1.08%

4.) APTs - three APTs were identified.

1.) MBR Wiper Attacks on South Korea; 2.) FAKEM RAT and 3.) RARSTONE Backdoor

Get more details.

Kuala Lumpur, Malaysia, May 14, 2013 –Sophos Unified Threat Management Connected Makes Web Surfing Secure Everywhere

Sophos today announced latest updates for Sophos UTM Connected. This release introduces expanded UTM managed endpoint protection with unique Web in Endpoint functionality, broader wireless coverage for large scale wireless deployments and higher performance networking.

Through a unique integration of gateway, endpoint and cloud technology, the Sophos UTM now provides administrators with full web protection and control for endpoints roaming outside of the corporate network. As systems roam the globe, this integration enables complete oversight and security for endpoints as though they are in the office. Policies can be updated and reporting data accessed in near real-time for every protected endpoint.

UTM is the evolution of the traditional firewall into an all-inclusive security product able to perform multiple security functions within one single appliance.

Get more details.

Reuters, May 9, 2013 - Reuters reported one of the biggest ever bank heists cyber crime.

As reported by Reuters, in one of the biggest ever bank heists, a global cyber crime ring stole $45 million from two Middle Eastern banks by hacking into credit card processing firms and withdrawing money from ATMs in 27 countries.

Hackers hacked into credit cards companies and then increased the available balance and withdrawal limits on prepaid MasterCard debit cards issued by Bank of Muscat of Oman, and National Bank of Ras Al Khaimah PSC (RAKBANK) of the United Arab Emirates.

This is followed by money withdrawal by cashers equipped with counterfeit debit cards around the world; in total, cashers made some 40,500 withdrawals in 27 countries during the two coordinated incidents.

Get more details and here.

Petaling Jaya, May 9, 2013 – Spam in Q1 2013: History repeats itself

Kaspersky graciously published its analysis on the trend of Spam in Q1 2013.
  • Spam emails accounted for the average 66.55% with slight growth of only 0.53% over last quarter.
  • The increase in the proportion of emails with malicious attachments was also small, reaching 3.3%, while the share of phishing emails fell 4.25 times to 0.0004%.
  • Two common techniques were significant; 1.) "white text” technique; 2.) legal URL technique.
  • China (24.3%) and the US (17.7%) remained the most active spam distributors. South Korea came 3rd with 9.6% of all distributed spam in Q1 2013.

Get more details.

Kuala Lumpur, Malaysia, May 9, 2013 – Sophos Sees Explosive Growth for Mobile Device Management and Mobile Security

Sophos’ mobile device management (MDM) solution, Sophos Mobile Control, now manages more than two million devices, marking a 100 percent increase in less than five months.

And in less than two years since its inception, Sophos Mobile Control now counts more than 4,500 customers worldwide, with significant traction across North America, Europe and Asia/Pacific. Sophos secured more than 800 new MDM customers in March, 2013 alone.

These latest milestones follow the launches of two key mobile security offerings, Sophos Mobile Control 3.0 and Sophos EndUser Protection.

Offered both on-premise and as-a-service, Sophos Mobile Control 3.0 added new support for Samsung SAFE™ devices, granting tighter control over how devices are used and making BYOD policies easier to define and enforce. It also provides integration with Sophos Mobile Security, which protects Android smartphones and tablets from malicious apps.

Sophos EndUser Protection combines mobile and endpoint protection in a single solution—protecting all of the devices a user has with just one license. With EndUser Protection, an organization can protect every tablet, phone, laptop or desktop—from Windows and Macs to mobile devices like iPhones, iPads and Android devices—wherever users go.

Additionally, the company recently launched the latest version of its free Android security app, Sophos Mobile Security. Sophos Mobile Security 2.5 protects Androids from malware and now includes SPAM filter capabilities for text messages and calls. The app was recently recognized as being “AV-TEST Certified” by leading independent lab AV-TEST.

Singapore, May 8, 2013 - Check Point Introduces Big Security for Small Businesses

Check Point® Software Technologies Ltd. launched its new 600 Appliances, delivering powerful Fortune 100 security to protect small businesses against the latest cyber attacks, including viruses, spam, malicious Websites, among others. The 600 Appliances provide an affordable, all-in-one security solution with market leading performance of 1.5 Gbps of firewall throughput and 37 SecurityPower(TM) units.

The 600 Appliances come pre-loaded with enterprise-class capabilities, including firewall, VPN, intrusion prevention (IPS), anti-virus, anti-spam, application control, and URL filtering. Most notably, the 600 Appliances run the same industry-leading next-generation firewall and threat prevention capabilities found on Check Point products used by all of the Fortune 100.

Get more details.