{"id":15072,"date":"2021-05-28T03:15:00","date_gmt":"2021-05-28T03:15:00","guid":{"rendered":"https:\/\/eodishasamachar.com\/en\/2021\/05\/28\/smart-manufacturers-face-a-security-conundrum-as-they-tackle-emerging-5g-threats\/"},"modified":"2021-05-28T03:15:00","modified_gmt":"2021-05-28T03:15:00","slug":"smart-manufacturers-face-a-security-conundrum-as-they-tackle-emerging-5g-threats","status":"publish","type":"post","link":"https:\/\/eodishasamachar.com\/en\/2021\/05\/28\/smart-manufacturers-face-a-security-conundrum-as-they-tackle-emerging-5g-threats\/","title":{"rendered":"Smart Manufacturers Face a Security Conundrum as they Tackle Emerging 5G Threats"},"content":{"rendered":"<p> \n<\/p>\n<div id=\"\"><!--<a class=\"format-txt\" href=\"{baseURL}\/View\/{release.id}?_download=1\">View this article in .txt format<\/a>--><\/p>\n<p class=\"subheadline\">\n                               Trend Micro Research reveals multiple proof-of-concept attacks on connected systems                             <\/p>\n<p>HONG KONG SAR &#8211;\u00a0<a href=\"https:\/\/www.media-outreach.com\/\">Media&#13;<br \/>\nOutReach<\/a>\u00a0&#8211; 28 May 2021 &#8211;\u00a0<a href=\"https:\/\/www.trendmicro.com\/en_hk\/business.html\"\/> (<a href=\"https:\/\/www.google.com\/finance?q=TYO:4704\"\/>;<a href=\"https:\/\/www.trendmicro.com\/us\/about-us\/investor-relations\/index.html\"\/>),&#13;<br \/>\na global&#13;<br \/>\ncybersecurity leader, released in-depth research highlighting new&#13;<br \/>\nthreats to 4G\/5G campus networks, many of which capitalize on the difficulty&#13;<br \/>\norganizations have in patching critical OT environments.<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>The report&#13;<br \/>\ndetails multiple attack scenarios and possible mitigations, using a testing&#13;<br \/>\nenvironment designed to mimic a smart factory campus network. <\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p><b>To read&#13;<br \/>\nthe &#8220;<i>Attacks From 4G\/5G Core Networks: Risks of the Industrial IoT in&#13;<br \/>\nCompromised Campus Network&#8221;<\/i> report, please visit: <\/b><a href=\"https:\/\/www.trendmicro.com\/vinfo\/hk\/security\/news\/internet-of-things\/the-transition-to-5g-security-implications-of-campus-networks\">https:\/\/www.trendmicro.com\/vinfo\/hk\/security\/news\/internet-of-things\/the-transition-to-5g-security-implications-of-campus-networks<\/a>\u00a0<b>. <\/b><\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>&#8220;Manufacturers&#13;<br \/>\nare at the cutting edge of IIoT deployment, gearing up with 5G to tap the power&#13;<br \/>\nof connectivity everywhere to drive greater speed, safety and efficiency. But&#13;<br \/>\nwith new technology comes new threats added to legacy challenges,&#8221; said Yohei&#13;<br \/>\nIshihara, security evangelist for Trend Micro. &#8220;As the report warns, many are&#13;<br \/>\nstuck in a bind\u2014unable to afford the downtime necessary to patch critical&#13;<br \/>\nsystem vulnerabilities that may otherwise be exploited. Fortunately, our&#13;<br \/>\nextensive research also highlights multiple mitigations and best practices to&#13;<br \/>\nprotect the smart factories of today and tomorrow.&#8221; <\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>The report&#13;<br \/>\nidentifies several key entry points for attackers to compromise a core&#13;<br \/>\n4G\/5G network:<\/p>\n<ul>\n<li><b style=\"font-size: 1rem\">Servers hosting core network services: <\/b><span style=\"font-size: 1rem\">targeting&#13;<br \/>\nof vulnerabilities and weak passwords in these standard COTS x86 servers.<\/span><\/li>\n<li><b style=\"font-size: 1rem\">VMs&#13;<br \/>\nor containers: <\/b><span style=\"font-size: 1rem\">these&#13;<br \/>\ncan also be exposed if the latest patches aren&#8217;t applied promptly.<\/span><\/li>\n<li><b style=\"font-size: 1rem\">Network&#13;<br \/>\ninfrastructure:<\/b><span style=\"font-size: 1rem\">&#13;<br \/>\nappliances are often overlooked during patching cycles.<\/span><\/li>\n<li><b style=\"font-size: 1rem\">Base&#13;<br \/>\nstations:<\/b><span style=\"font-size: 1rem\"> also contain&#13;<br \/>\nfirmware which needs to be updated from time-to-time.<\/span><\/li>\n<\/ul>\n<p>Once the attacker gets in the core network from any of these entry&#13;<br \/>\npoints, they will attempt lateral movement in a bid to intercept and change&#13;<br \/>\nnetwork packets. By attacking industrial control systems in smart manufacturing&#13;<br \/>\nenvironments like the test site, attackers could steal sensitive data, sabotage&#13;<br \/>\nproduction, or hold organizations to ransom.<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>From the 11&#13;<br \/>\nattack scenarios demonstrated, one of the most potentially damaging involves&#13;<br \/>\ntargeting Microsoft Remote Desktop Protocol (RDP) servers, which are commonly&#13;<br \/>\nused by IT and field engineers. The upgrade to 5G doesn&#8217;t automatically protect&#13;<br \/>\nRDP traffic, so attackers could use this access to download malware and&#13;<br \/>\nransomware, or directly hijack industrial control systems. RDP v 10.0 is the&#13;<br \/>\nmost secure version and may offer some protections against these attacks, but&#13;<br \/>\nagain it may be difficult for organizations to upgrade. <\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>\u00a0<\/p>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>Among the recommendations made in the report to protect 4G\/5G&#13;<br \/>\ncampus networks are:<\/p>\n<ul>\n<li>VPN&#13;<br \/>\nor IPSec to protect remote communication channels, including to remote sites&#13;<br \/>\nand base stations<\/li>\n<li>Application-layer encryption (<span style=\"font-size: 1rem\">HTTPS, MQTTS, LDAPS, encrypted VNC,&#13;<br \/>\nRDP v10, and secure industrial protocols like S7COMM-Plus)<\/span><\/li>\n<li>EDR,&#13;<br \/>\nXDR or MDR to monitor attacks and lateral movement inside the campus and the&#13;<br \/>\ncontainerized core network<\/li>\n<li>Proper&#13;<br \/>\nnetwork segregation with VLAN or SDN<\/li>\n<li>Prompt&#13;<br \/>\npatching, where possible, of servers, routers and base stations<\/li>\n<li>Anomaly&#13;<br \/>\ndetection products, like Trend Micro Mobile Network Security, which are campus&#13;<br \/>\nnetwork-aware and provide a robust way to cut off unlisted device\/SIM card&#13;<br \/>\npairs<\/li>\n<\/ul>\n<p>&#13;<br \/>\n&#13; <\/p>\n<p>Building a mobile network in an enterprise environment&#13;<br \/>\ninvolves both the end users as well as various stakeholders, including service&#13;<br \/>\nproviders and integrators. In addition, private 4G \/ 5G networks are&#13;<br \/>\nlarge-scale infrastructure and have a long life, so once built, they are&#13;<br \/>\ndifficult to replace or modify. Therefore, it is essential to implement&#13;<br \/>\n&#8220;security by default&#8221; to identify and mitigate security risks at the&#13;<br \/>\ndesign stage.<\/p>\n<p>&#13;<br \/>\n&#13; <\/p><\/div>\n\n<br \/><a href=\"https:\/\/www.media-outreach.com\/news\/2021-05-28\/79548\/smart-manufacturers-face-a-security-conundrum-as-they-tackle-emerging-5g-threats\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Trend Micro Research reveals multiple proof-of-concept attacks on connected systems HONG KONG SAR &#8211;\u00a0Media&#13; OutReach\u00a0&#8211; 28 May 2021 &#8211;\u00a0 (;),&#13; a global&#13; cybersecurity leader, released in-depth research highlighting new&#13; threats to 4G\/5G campus networks, many of which capitalize on the difficulty&#13; organizations have in patching critical OT environments. &#13; &#13; \u00a0 &#13; &#13; The report&#13; &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[60],"tags":[],"_links":{"self":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts\/15072"}],"collection":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/comments?post=15072"}],"version-history":[{"count":0,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts\/15072\/revisions"}],"wp:attachment":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/media?parent=15072"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/categories?post=15072"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/tags?post=15072"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}