https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Security


Security Central: U.S. Energy Grid Powers Up, Avast Secures SMBs and MSPs

  • Written by Allison Francis
  • September 12, 2017
This week’s Security Central takes a peek inside the recent power company hacks, explores Avast’s new security solution, and takes a look at the second wave of Locky ransomware.

Over the course of the past nine months, there has been an attack on power. An organized hacking group has wreaked havoc on dozens of U.S. power companies, compromising them to the extent that some of them could have been shut down – production, distribution, everything (according to Symantec, the cybersecurity company that discovered the attack).

Vikram Thakur, principal research manager at Symantec, said that in few cases, this involved access to sensitive company operation details, engineering plans and equipment, in some cases even down to the level of controlling valves, pipes or conveyer belts.

The level of access could have led to “pretty strong impacts,” said Thakur. “It could have taken out the business for a period of a day or two or maybe a month,” he said.

The core focus seems to have been companies that focus on power generation, transmission and distribution, Symantec said (as reported by USA Today).

Joel Brenner, a senior research fellow at the Massachusetts Institute of Technology, thinks that these attacks shouldn’t really be that shocking to anyone who’s worked in intelligence. According to Brenner, who has nothing but the sunniest of outlooks, states that the goal of the attacks has been “to make clear to the United States that its systems are vulnerable and thus make the president think twice before engaging in any kind of military action, with the looming threat of darkened cities a possibility.”

There are a few examples of this already happening, that is, power companies being attacked. One such example is the 2015 and 2016 hacks that hit Ukraine’s power grid, causing blackouts that affected over 200,000 people. The Ukrainian government has blamed Russian-supported hackers for the attacks. At this stage, and at least at this stage, Symantec believes it might have been a “proof of concept” attack, more or less a taunt. Sort of an “I can, and I could, but I won’t” type thing. A thumbing of the nose showing to prove to whatever entity was sponsoring the attackers that they had the capability.

“This confirms, again, that advanced adversaries are targeting and gaining access to the world’s critical infrastructure” said Galina Antova, co-founder of Claroty, a company that provides security for industrial control networks. “This gives bad actors the ability to harm our systems and possibly people when they choose — as a political statement, during the next conflict, before our during a war,” she said.

This could potentially be part of a new wave of “proof we can hack you” attacks, where systems are infiltrated but not harmed. The potential is always there, though, which is what experts and providers must be aware of.

Our second story takes a look at Avast’s recent launch of Avast Business. The new security solution combines technology from AVG and Avast, and is aimed at smaller businesses and managed service providers.

The solution provides one portfolio designed to meet today’s SMB security needs and provide strong security protection and greater efficiencies for channel partners. The portfolio includes three new endpoint protection solutions customized for SMB security needs across device, data and identity protection. Avast also integrated this new endpoint protection (device, data and identity protection) into their managed service solutions Managed Workplace and CloudCare.

“Since last year, our focus has been on combining the best of both business product portfolios, partner programs, tools, and systems to eliminate the complexity around protecting businesses, while delivering the most powerful security engine on the market,” says Kevin Chapman, senior vice president and general manager of Avast’s SMB business (as reported by BetaNews).

Avast Business Endpoint Protection Solutions for SMBs delivers three tiers of protection.

  1. At the basic level is Avast Business Antivirus, a fully-featured antivirus solution to protect against malware, viruses, and other threats.
  2. One step up is Avast Business Antivirus Pro, which adds data protection capabilities, such as secure servers, permanent file deletion, and third-party software updating.
  3. Finally Avast Business Antivirus Pro Plus, delivers antivirus, data protection, and identity protection capabilities, including secure connections and password management.

The other solution is Avast Business Managed Services Solutions for Service Providers. This solution is aimed at channel partners, and allows them to deliver remote security services and network management to their customers. CloudCare is a managed endpoint protection solution that makes it faster and less complicated for service providers to effectively monitor threats, resolve any issues that crop up and deliver multiple layers of protection to their customers. There’s also Managed Workplace which entails a full-stack, remote monitoring and management platform equipped with its own native security engine. This means that MSPs can quickly assess, secure, and monitor their SMB customers.

See the full press release for further details. Our final story of the week examines a second wave of new but related IKARUSdilapidated Locky ransomware attacks that has occurred. These attacks are related to the ones discovered by the Comodo Threat Intelligence lab in August (which other researchers referred to as Diablo6). This particular campaign also uses a botnet of zombie computers that carry out phishing attacks which specialize in sending malicious emails appearing to be from your organization’s scanner/printer or other legitimate-seeming sources. The result? The campaign encrypts the victims’ computers and demands a bitcoin ransom. Fun huh?

This second wave of phishing carrying IKARUSdilapidated is actually two different campaigns launched three days apart.

  • The first (featuring the subject “Scanned image from MX-2600N”) was discovered by the Lab to have commenced over 17 hours on Aug. 18
  • The second (a French language email purportedly from the French post office featuring a subject including “FACTURE”) was executed over a 15 hour period on Aug. 21

“In contrast to the initial (Aug. 9) 2017 IKARUSdilapidated Locky campaign, which distributed malware with the ‘.diablo’ extension and a script that is a Visual Basic Script, both new attacks have interesting variations to fool users with social engineering and to fool security administrators and their machine learning algorithms and signature-based tools,” researchers said in a technical analysis of the attack (as reported by ThreatPost).

Fatih Orhan, director of technology at Comodo, has a strong message and warning to experts and partners. “This shows that the malware authors are evolving and changing methods to reach more users and bypass security methods,” Orhan said.

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs Security Technologies

Related


  • Select a Hire
    AvePoint Taps Ingram Micro, Palo Alto Networks Vet to Lead Channel
    He held channel exec roles at Ingram and Palo Alto Networks
  • Word conclusion on paper
    Microsoft Conclusion on SolarWinds Hack 'Conflicts' with Other Messages
    A concerning aspect of this attack is that security companies were a clear target.
  • Hybrid clouds
    IBM, Oracle, Dell, VMware Put Hybrid Cloud Center Stage
    We highlight platforms and initiatives each company has so far unveiled in February.
  • Black History Month
    Black History Month: Celebrating Tech Pioneers
    From the 19th century to present day, their accomplishments are remarkable.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Getting Clients Ready for an 88% Increase in Cloud Adoption
  • Calligo Acquires Decisive Data, Beefs Up Data Insights Services
  • New Zomentum Funding to Directly Benefit MSPs, SMBs
  • Disaster Recovery Planning Includes Ensuring That Data Can Be Recovered

Galleries

View all

Channel Partners Virtual 2021 Is the Hottest Ticket in Town

February 26, 2021

Industry Perspectives

View all

The “Roaring 20s” Are Coming

February 25, 2021

Three Ways MSPs Can Improve Supply Chain Security

February 24, 2021

SASE: The Key to Mitigating Business Transformation Risk

February 22, 2021

Webinars

View all

A Partner’s Perspective on Channel Success in 2021

March 17, 2021

XDR and Why it Matters to MSPs

March 24, 2021

Top Security Trends Impacting Technology Security Providers In 2021

March 25, 2021

White Papers

View all

Ready To Add Cutting Edge IoT Solutions To Your Portfolio?

  • 1
February 25, 2021

What Is The Value Of Distribution For The Internet Of Things?

February 25, 2021

The Internet of Things (IoT): Where do You Begin?

  • 1
February 25, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Amazon WorkSpaces @awscloud DaaS client will be available on @IGEL_Technology virtual endpoint client OS.… twitter.com/i/web/status/1…

February 26, 2021
ChannelFutures

.@VMware cutting more workers in California as part of ongoing #workforcerebalancing. #layoffs… twitter.com/i/web/status/1…

February 26, 2021
ChannelFutures

#CPVirtual is March 2-4. It’s the hottest ticket in town — any town, since it’s 100% online — so make sure you have… twitter.com/i/web/status/1…

February 26, 2021
ChannelFutures

.@datto, @ThreatLocker partner to streamline #MSP secure business operations. dlvr.it/RtYvJK https://t.co/nKGnwbblNO

February 26, 2021
ChannelFutures

Infographic: Why Partner with Sierra Wireless and GetWireless? dlvr.it/RtYh1m https://t.co/KcBFzXIx7l

February 26, 2021
ChannelFutures

Infographic: The Sierra Wireless Essential Series dlvr.it/RtYgxv https://t.co/CatxbRHzXr

February 26, 2021
ChannelFutures

#Threatprotection is no small matter for #MSSPs. Find out what vendors say you have to do this year to protect your… twitter.com/i/web/status/1…

February 26, 2021
ChannelFutures

Cloud strategies and cybersecurity are key, and #COVID19 will have more impact than #Brexit on U.K. channel, says… twitter.com/i/web/status/1…

February 26, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X