Watch out for one of the latest outbreaks, it has made many high-profile victims in just a few hours. Over 57.000 were reported in just a few hours. The RansomWare Wanna Cry (WCry) is coming through spam, in which fake invoices, job offers and other lures are being sent out to random email addresses. Within the emails is a .zip file, and once clicked that initiates the WannaCry infection. But the most concerning aspect of WannaCry is its use of the worm-like EternalBlue exploit. "This is a weapon of mass destruction, a WMD of ransomware according to Crowdstrike's Vice President Adam Meyers. Once it gets into an unpatched PC it spreads like wildfire," he told Forbes. "It's going through financials, energy companies, healthcare. It's widespread."
Given the malware is scanning the entire internet for vulnerable machines, and as many as 150,000 were deemed open to the Windows vulnerability as of earlier this month, WannaCry ransomware explosion is only expected to get worse over the weekend.
Consider already visiting www.nomoreransom.org, an initiative by Europol EC3, McAfee, the Dutch High Tech Crime Unit and Kaspersky and increasingly supported by many across the globe, including LSEC. The website offers some free support against ransomware attacks. If you have been exposed and the platform has a cleansing solution (without having to pay the ransom), you can feely download the decrypt mechanisms. They are committed in updating their anti ransom libraries regularly.
LSEC is contributing to this year's WEBIT Festival Europe, joining respected speakers and attendees from around the globe from Google, DHL, McAfee, the European Commission and crossing the bridge between IT, education, healthcare, logistics, manufacturing, culture & arts. WIth TED-like talks, WEBIT is one of the most inspiring conferences around the globe, focusing on multiple attention points and raising things such as Artificial Intelligence, Quantum Computing, Social Web of Services, Social Enterprises, e-Educational programs, Industrial challenges and developments and security.
Learn more about WEBIT and its activities at : http://www.webit.bg/security.php
Industrial environments, manufacturing and other automation driven systems have been part of our core expertise for over a decade. LSEC is working closely with its Core Members and Individual Members helping them to not only improve the security, but also to better understand the opportunities and challenges the fourth industrial revolution (referred to as Industrie 4.0) might bring. For this reason LSEC has joined the Industrial Internet Consortium, and is leading the efforts on bringing together available expertise on industrie40.vlaanderen and in the 3IF.be and Connected Factories projects. 3IF is promoting digital technologies in manufacturing environments, providing insights in the ICT developments allowing for breakthrough innovations and adapting to new business models and advanced customer demand. LSEC is on the edge of the digital transformation and provides insights into its impact on security; or reversely, indicating how the ICT security domain can embrace exciting new developments for the Factories of the Future.
More information on the white paper opportunities for ICT security industry in the evolving industrial automation space, with links and documentation can be found in of the 3IF.be website.
Join in for regular events and activities, such as inspiration workshops, security workshops and more.
LSEC coordinates and collaborates actively with its members in innovative industrial collaborations, where end user members and industrial ict security companies bring the best of their expertise, and learn about most innovative developments in Europe.
3IF.be : Industrial Internet of Things, Industrie 4.0 and Industrial Internet for manufacturing companies, industrial automation and industry at large in combination with security expertise for IoT: www.3If.be
IPACSO : Innovation Framework for Cyber Security & Privacy Innovations, IPACSO Innovation Awards and business support for ICT Security companies
ACDCCTI : the European Cyber Threat Intelligence Platform, with over 10 million vulnerabilities exchanged, from over 750 sensors in 28 European countries.
3IF stands for “Industrial Internet In Flanders”. During 2015 throughout 2019, LSEC and SIRRIS as main project partners will be developing a series of activities to support Manufacturing Companies, Integrators, Technology Providers, System Integrators, Security Companies and Innovators; in developing and integrating Internet of Things, Smart Sensors in Industrial Environments; supporting new business opportunities, identifying and mitigating challenges and positioning Flanders internationally.
3IF will kick off in Leuven, on 28 May, and you are invited! For more information click here
LSEC is supporting IoT technology development, Enterprise IoT and Industrial Internet
The Internet of Things is the internet of connected smart sensors and objects with an internet connections such as home automation devices for lightning, domotics; but also connected cars and the connected industry. LSEC's experts have been focusing for the last years in enabling security measures for Enterprise IoT and Industrial IoT. LSEC experts can provide advisory services and technology for embedded systems and technologies.
Some more documentation on LSEC's IoT activities can be found :
Upcoming events and activities on IoT, Industrial Internet and :
April 30th : 2015, the year all things break loose, the second IoT activity, with an interest in Security and Privacy of the Embedded Devices and platforms
May 28th : Industrial Automation Security 2015, how security systems are being put in action in industrial environments and how they are impacting the business
Documents and White Papers available : get yourself informed with this collection of relevant recent documents and materials.
Future programs for IoT:
LSEC is launching the 3IF project in May 2015, a program to support the transformation of manufacturing companies towards becoming factories of the future, by utilizing smart sensors, IoT technologies and components. For more information stay in touch with LSEC and www.3IF.be
Internet of Things, Internet of Everything the indication that the world is becoming increasingly more connected. All sorts of devices and appliances are getting an embedded or attached wired or wireless connection to the world wide network, allowing to receive sensor information and control the activities with an increased level of efficiency, effectiveness and automation.
In this world of over 50 billion anticipated devices, of which the majority will be lit in Asia, Europe and the Americas, the challenge to secure both the activities and the privacy of the citizen are a challenge for consideration.
LSEC is coordination various activities in this domain, including a working group, events and thought leadership.
Some background materials :
Internet of Things - 2015 the year all breaks loose event :
(To be able to access these files, you will need to be registered as an individual member to LSEC. This is free of charge, but requires registration or login.)
The Internet of Things describes the concept of a world with different devices connected via the internet. This provides a great opportunity, not so much for toasters and fridges to be hyperconnected for no good reason, but especially for sensors, process automation tools, connected cars, industrial processing devices, home automation and healthcare monitoring.
The world of things is expected to grow significantly towards 2020, with challenges related to the number of devices connected, typically without the current state of the art of security measures. As a result, the devices are not only becoming rogue access points in networks, but are also behaving badly - sensing, recording and transmitting sensitive data - without the owners knowing about this.
On top, many devices have been developed with low level low cost components and open source instructions which have not been updated recently to the latest vulnerability challenges, sometime not even capable of being upgraded.
As a result, similar to mobile security challenges, threats can be expected from device level, the embedded chips, up to the application layers where typically small webservers can be reached remotely.
These devices can be hacked in to relatively easily, can be used as familiar access point to the rest of the network, or could even serve as trusted device internally while acting as a sensitive data transmission device.
LSEC and its members have been building in depth expertise on the topic, both on the embedded layers, the wireless and communication protocols, the programming layers, secure software development, the (management and operation) platforms, and the applications.
More information can be found at some of the recent activities and events held, or following the iot.leadersinsecurity.org dedicated page.