Upload File

mobilesecurity vulnerability assessment tools for the enterprise mobile security vulnerability...

  • Home
  • Documents
  • MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD
20
Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD into your Enterprise Security Testing Program Georgia Weidman

Upload: roy-reed

Post on 18-Jan-2016

220 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Security Vulnerability

Assessment Tools for the Enterprise

Integrating Mobile/BYOD into your Enterprise Security Testing

ProgramGeorgia Weidman

Page 2: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Is this a mobile device?

Page 3: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Toilet Mobile VulnerabilityTrustwave SpiderLabs Security Advisory TWSL2013-020:Hard-Coded Bluetooth PIN Vulnerability in LIXIL Satis Toilet

Controlled via an Android app with a hardcoded pin “0000”

“Attackers could cause the unit to unexpectedly open/close the lid, activate bidet or air-dry functions, causing discomfort or distress to user.”

Page 4: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Is this a mobile device?

Page 5: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Car Hacked through Mobile Modem

Page 6: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Is this a mobile device?

Page 7: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Risks

Page 8: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Risks

Page 9: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Remote Attacks

Malicious Carrier Update

Remote Code Execution Bugs

Vulnerable Listening Services

Page 10: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Client Side Attacks

Browser and Web Extensions

Mobile Apps

Mobile Protocols

Page 11: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Phishing Attacks

Page 12: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Malicious Applications

Repackage apps with malicious code Appears normal to the user, malicious functionality in the background Sign apps with stolen developer keys (avoids iOS restrictions), signing

vulnerability (Android master key), or attacker created keys. Stealthy malware can be uploaded into official stores and company app

stores

Page 13: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Post Exploitation• Steal Data (emails, passwords, text messages, location

information)

• Control device (send messages, post on Twitter, record video of user)

• Privilege Escalation (break out of sandboxes, get access to additional information/control)

• Mobile Pivoting (attacking other devices on the network, bypassing perimeter controls)

Page 14: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Pivoting

Page 15: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Pivoting

Page 16: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Security Controls

Enterprise Mobility Management/Mobile Device Management

Mobile Antivirus

Data Containers

Hardened Platforms

Data Loss Prevention at Perimeter

Page 17: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Mobile Security Testing

Getting sensitive data out of a sandbox/container

Known malware running on device undetected

Root/jailbreak undetected

Downloading and running applications outside of policy

Bypass perimeter controls with mobile pivoting

Page 18: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

DEMOS!

Page 19: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Questions to Ask Operations• Is my Mobile Device Management (MDM) solution set up correctly and

providing value? Does it actually do what it says on the box it will do?• Are my users responding correctly to mobile based phishing attacks?

Do my users install apps from 3rd party app stores? • Is my mobile anti-virus solution warning users before they install

something potentially malicious? Does it at least match known threat samples?

• What would a compromised mobile device be able to access over the network? What sort of sensitive data is stored or transmitted through mobile devices?

• Would a compromised mobile device in my network be able to compromise and exfiltrate data?

Page 20: MobileSecurity Vulnerability Assessment Tools for the Enterprise Mobile Security Vulnerability Assessment Tools for the Enterprise Integrating Mobile/BYOD

Contact

Georgia WeidmanBulb Security LLC/Shevirah Inc.

[email protected]

@georgiaweidman


Vulnerability* Managementwith* the*SplunkAppfor* Enterprise*Security* · Splunk*App*for*Enterprise*Security* 14

The Overlooked Vulnerability: BYOD Adoption Tests Enterprise Network Security

Aggregating vulnerability metrics in enterprise …xou/publications/jcs13.pdfJournal of Computer Security 21 (2013) 561–597 561 DOI 10.3233/JCS-130475 IOS Press Aggregating vulnerability

A Conceptual Framework for Risk and Vulnerability in Virtual Enterprise Networks

Mobile Security Apps - AV-TEST · PDF fileTesting mobile security Apps ... ESET MobileSecurity Norton Mobile Security QuickHeal Mobile Security Super Security Trend Micro Mobile Security

Vulnerability Assessment and Penetration Testing€™s the Difference?: Vulnerability Identification versus Penetration Testing: • Vulnerability Assessment: Generally, a vulnerability

Structural Vulnerability Non-Structural Vulnerability ... · Structural Vulnerability Non-Structural Vulnerability Functional Vulnerability Mitigation National Society for Earthquake

Red Hat Enterprise Linux 7 Security Guide · 2020-06-15 · Red Hat Enterprise Linux 7 Security Guide 4. 1.3. Vulnerability Assessment Given time, resources, and motivation, an attacker

Randy Trzeciak Technical Manager - CERT Enterprise Threat ... · Randy is Technical Manager of CERT’s Enterprise Threat and Vulnerability Management Team and the CERT Insider Threat

Wireless Vulnerability Management: What It Means for Your ... · Wireless Vulnerability Management: What It Means for Your Enterprise A Whitepaper by AirTight Networks, Inc. ... security

Controlware Vulnerability Management Service · Security Assessment Vulnerability Management (Proof of Concept) Vulnerability Management (as a Service) Controlware Vulnerability Management

An Introduction to Network Vulnerability Testing Vulnerability Test_wp.pdf · An Introduction to Network Vulnerability Testing A ... An Introduction to Network Vulnerability Testing

Enterprise Network Business Process Incompatible Vulnerability

Network Planning Task Force - University of Pennsylvania · DNSSEC Vulnerability ... Penn+Box, an enterprise service with enterprise support and data protections, comes at higher

2015 Enterprise Vulnerability Managementlp.skyboxsecurity.com/rs/...Vulnerability-Management-Survey-EN.pdfSybo Surit 2015 Et Vulnerabilit M Trends 2 REPORT Executive Summary Vulnerability

The Red RepoRT: CDW.com/mobilesecurity MOBILE SECURITY …€¦ · JAILBREAKING OR ROOTING If left unlocked and unencrypted, lost devices can result in lost organizational data. This

Screen 1 of 20 Vulnerability Vulnerability Assessment LEARNING OBJECTIVES Define the purpose and scope of vulnerability assessment. Understand how vulnerability

Food Provision Vulnerability & Sustainability Social Vulnerability

SAFER ECURITY ALERT FOR ENTERPRISE RESOURCES · sambar server admin access vulnerability.....24 micq remote buffer overflow vulnerability ... solaris arp buffer overflow vulnerability.....34

Audit and Control of Enterprise Vulnerability … and Control of Enterprise Vulnerability Management . Inside view now ... Netscape Messaging Server; ... There should be a concise

Trend Micro ServerProtect™...Trend Micro MobileSecurity、VSAPI、トレンドマイクロ・プレミアム・サポート・プログラム、License for Enterprise Information

As Enterprise Mobility Usage Escalates, So Does Security Riskdocs.media.bitpipe.com/io_12x/io_124407/item... · enterprise: much higher vulnerability to data breaches, malware and

2015 Enterprise Vulnerability Management Trends Report

Vulnerability curves vs. vulnerability indicators ... · M. Papathoma-Köhle: Vulnerability curves vs. vulnerability indicators 1773 ever, it is relatively uncomplicated to develop

The New Enterprise Security Model: Intelligent, Risk-Based ......WHITE PAPER • The New Enterprise Security Model: Intelligent, Risk-Based Vulnerability Prioritization and Management

RISK AND VULNERABILITY MANAGEMENTRISK AND VULNERABILITY MANAGEMENT the organization can visualize these enterprise risks and their potential repercussions across the architecture by

SanDisk Enterprise Secure USB Flash Drive Vulnerability · PDF fileSanDisk Enterprise Secure USB Flash Drive Security Vulnerability Device “CD-ROM” partition can be a host for

CS412 Software Security - Mobile Security [width=4.16667in ... · CS412 Software Security MobileSecurity MathiasPayer EPFL,Spring2019 Mathias Payer CS412 Software Security

Compliance: The Enterprise Vulnerability Roadmap

Vulnerability Assessment Plus Web Application Firewall · 2018. 5. 10. · Vulnerability Assessment Plus Web Application Firewall (VA+WAF) Introduction Inside an enterprise lives

Vulnerability Assessment Course Vulnerability Assessment Tools

Screen 1 of 16 Vulnerability What is Vulnerability? LEARNING OBJECTIVES Understand the concept of vulnerability. Appreciate the difference between vulnerability

Enterprise Vulnerability Management - ZeroNights16

Vulnerability Management - baramundi · 2019-04-09 · White Paper | Vulnerability Management Vulnerability overview2 of various software products While the vulnerability is lying

VULNERABILITY REPORT 2016 - Youthla › wp-content › ...VulnerabilityReport2016-Red-C… · VULNERABILITY REPORT 2016 | 1 VULNERABILITY REPORT 2016. 2 | VULNERABILITY REPORT 2016