Malware Will Cripple Cloud And IoT Infrastructure If Not Contained

The Malware Cloud Concern

This year we’ve had two cyber attacks in which malware was used to cripple government computer systems. Unless counter-measures are deployed, similar malware attacks can be used against cloud and IoT infrastructure.

2017 started with the Shamoon2 cyber attack on Saudi Arabian government systems.  The attack wiped out data on 50,000 compute devices and servers.  More recently a cyber attack against the Ukraine government called NotPetya wiped out data as well as disabled energy management systems.

The destructive power of both malware attacks derived from the difficulty to patch large numbers of compute devices. Thus while the attacks were not “zero-day”, cyber attackers created weapons-grade malware by adding the ability to laterally search for vulnerable systems.

For organizations migrating to the cloud or deploying IoT infrastructure the recent cyber attacks should be a wake up call to the destructive power of malware that can autonomously hunt for targets!

The increasing number of personal compute devices and supply chain partners connecting to enterprise clouds makes universal endpoint protection impossible. Subsequently, malware can find and propagate from infected compute devices to cloud-based applications. Once infected, hosted apps can become malware super spreaders. However as bad as the risk of malware is to enterprises, the risk to IoT systems is even greater.

The new generation of IoT devices has the ability to autonomously communicate locally and globally.  As IoT devices come in hundreds of different variations with specialized software modules, patching IoT systems is far more difficult than personal compute devices.

Infected IoT devices can spread malware from autonomous vehicles and energy management systems to consumer products and cloud computers – and then back again.  A malware attack on billons of networked IoT devices would take months or years to correct.

Malware Cloud Concern

Fortunately there is a proven counter-measure to weapons-grade malware that is a Software Defined Perimeter (SDP) based application layer access control solution.

Vidder developed an application layer access control solution under the PrecisionAccess brand two years ago.  At that time enterprises with high value intellectual property wanted a counter-measure agianst the office of Personnel Management (OPM) cyber attack.

The OPM attack utilized stolen credentials in combination with lateral movement to find classified data that was hidden deep in the data center.  To ensure similar attacks didn’t happen again, Vidder developed an access solution that verified identity (to stop credential theft) and then provisioned an application layer tunnel (to stop lateral movement).

Application layer access control protects cloud assets by ensuring only authorized devices are granted connectivity.  Only whitelisted applications on the user’s device are allowed access to a specific port on the application server.  If a hosted app should become infected, application layer connectivity ensures that malware can’t spread from the cloud back to the user’s device.

Similarly application layer access control can protect IoT infrastructure from lateral movement malware by only allowing authorized process-to-process connectivity.  Subsequently malware cannot re-task IoT devices or backend cloud infrastructure.

With cyber attackers now developing malware that can hunt for vulnerable compute devices, we must deploy proven counter-measures to protect cloud and IoT assets.  Application layer access control, such as Vidder’s PrecisionAccess, is a proven counter-measure that should be deployed before disaster strikes.

By Junaid Islam

Gilad David Maayan

Leveraging Managed Kubernetes to Improve Your Operations

Leveraging Managed Kubernetes Kubernetes simplifies container orchestration, but sometimes companies are struggling with Kubernetes adoption. Many organizations do not have the required expertise to configure and manage Kubernetes by themselves. Managed Kubernetes is a good ...
Big Data Explosion

Developing Machine Learning-based Approach for Optimizing Virtual Agent (VA) Training

Optimizing Virtual Agent (VA) Training Achieve NLU model’s precision, recall & accuracy up to 78% The success of any Virtual Agent (VA) depends on the training of its Natural Language Understanding (NLU) model prior to ...
Building a Robust Virtual Agent (VA) Rollout Strategy for DSPs

Building a Robust Virtual Agent (VA) Rollout Strategy for DSPs

Building a Robust Virtual Agent (VA) Rollout Strategy for DSPs Proven methods to increase VA containment & customer satisfaction The virtual agent’s market is at an all-time high and is garnering more and more interest ...
Scott Leatherman

Beware the Perils of Blind Cloud Provisioning

The COVID-19 Rush to the Cloud Results in Steep Costs and Chaos For many companies, their data center capacity was not built for the instant tsunami-sized jolt of increased load caused by the global pandemic ...
Mark Barrenechea

Information is at the Heart of Your Business

Information Business Even though digital information is evolving at a rapid pace, the world is still document-centric. Documents, whether created by a human or generated by a machine, underpin every operation, communication exchange and innovation ...

Episode 8: Managing Cloud Strategy During the Chaos of 2020, Plus an Outlook for 2021

An Interview with Kash Shaikh, CEO of Virtana Companies are wrestling with the idea of moving to the cloud, staying on-prem or finding a hybrid solution. Kash Shaikh, the new CEO of Virtana, looks at ...