Cato Networks SASE Report Finds Enterprise Risk Assessment Undermined by Amazon Sidewalk; Device ID at Risk by Novel Use of Houdini Malware
Wednesday, August 25, 2021
Dark web cloud services make spoofing device identities easier, helping attackers infiltrate companies protected by zero-trust network access (ZTNA) policies. The report also finds risk assessment compromised by Amazon Sidewalk and other consumer applications
TEL AVIV, Israel, Aug. 17, 2021 /PRNewswire/ -- Cato Networks, the provider of the world's first SASE platform, announced today the results of its quarterly analysis of global enterprise networks. The Cato Networks SASE Threat Research Report Q2, 2021 analyzed 263 billion enterprise network flows between April and June 2021. Cato researchers showed a novel use of Houdini malware to promote the spoofing of a device. The report also documents how Amazon Sidewalk and other consumer applications operate on many enterprise networks, undermining effective risk assessment.
"Cybersecurity risk assessment is based on visibility to threats as much as visibility to what is happening in the organization's network," says Etay Maor, senior director of security strategy at Cato Networks. "With lines blurring between the home office and the corporate network - more devices and applications find their way to the organization's network but not necessarily to the organization's risk assessment."
Houdini Exploits Network Layer to Exfiltrate Device Configuration Information
For years, enterprises have relied on device identity to authenticate users. More recently, the development of ZTNA and SASE architectures called for using device ID (in addition to user identity and location) to decide user access rights to corporate resources. Spoofing device IDs has been a top priority for attackers, evolving from simple point solutions to cloud-based services. As such, device identification verification became crucial for strong user authentication.
Our research suggests that device identity spoofing threatens to become far more prevalent. Houdini is a well-known remote access trojan (RAT), but our research shows this particular use is novel. Houdini exfiltrated data within the user agent field, an approach often undetected by legacy security systems. Cato Research Labs only identified such threats by cross-correlating security and network information.
Spoofing-as-a-Service offerings, where cybercrime forums provide virtual or physical machines based on specified requirements for attackers to launch an attack. "With cybercriminals offering, a hard-to-come-by solution is now more widely available," says Maor. "The bar for launching attacks against organizations is lower -- enabling and motivating newcomers in the cybercrime field." For additional information about Spoofing-as-a-Service and its implications, read this blog.
Amazon Sidewalk, Consumer Applications Undermine Enterprise Risk Assessment
In addition, the report found that the rapid move to work-from-home and adoption of bring-your-own-device have blurred the lines between professional and personal networks. Cato Research Labs found hundreds of thousands of Sidewalk flows, with some enterprises having hundreds of such devices. "How can you possibly assess company risk when there is no visibility to what devices and applications truly reside on the network?" asks Maor.
To read the report in full, visit https://go.catonetworks.com/Q221-SASE-Threat-Research-Report.html
About Cato Networks
Cato is the world's first SASE platform, converging SD-WAN and network security into a global, cloud-native service. Cato optimizes and secures application access for all users and locations. Using Cato, customers easily migrate from MPLS to SD-WAN, optimize connectivity to on-premises and cloud applications, enable secure branch Internet access everywhere, and seamlessly integrate cloud datacenters and mobile users into the network with a zero-trust architecture. With Cato, the network, and your business, are ready for whatever's next.
View original content:https://www.prnewswire.com/news-releases/cato-networks-sase-report-finds-enterprise-risk-assessment-undermined-by-amazon-sidewalk-device-id-at-risk-by-novel-use-of-houdini-malware-301356840.html
SOURCE Cato Networks
|
|
|
|
|
 |
Indusface redefines WAAP user experience with industry-first innovations in AppTrana | Mar 28, 2025
|
|
EXECUTIVE PRODUCER BRADLEY COOPER'S FILM CAREGIVING TO PREMIERE ON PBS FOR NATIONWIDE BROADCAST JUNE 24 STREAMING BEGINS MAY 27 | Mar 28, 2025
|
|
Trend Micro Launches Voice-Enabled ScamCheck Capability to Help Protect Consumers from the Rising Threat of Global Scams | Mar 28, 2025
|
|
Splitit Unveils First Fully Embedded White-Label Installment Solution for Shopify Merchants | Mar 28, 2025
|
|
/C O R R E C T I O N -- Bell Canada (MTL)/ | Mar 28, 2025
|
|
Keeper Security Unveils Latest WearOS App for Seamless Password Management | Mar 28, 2025
|
|
Leading Endpoint Protection Solutions for Combatting Cyberthreats Identified in Info-Tech Research Group's New Emotional Footprint Report | Mar 28, 2025
|
|
Hornetsecurity named Top Player in Radicati's Secure Email - Market Quadrant 2025 | Mar 28, 2025
|
|
Ontinue Research Reveals Ransomware Attacks Surged 132% Despite 35% Drop in Payments | Mar 28, 2025
|
|
Identity Theft After a Data Breach? Legal Action May Recover Your Losses | Console & Associates | Mar 28, 2025
|
|
|
