October 3, 2022 2:05 p.m.
As hybrid and remote work continue to be the norm in Southeast Asia (SEA), Kaspersky has foiled here over 47M Remote Desktop Protocol (RDP) attacks during the first six months of 2022.
The number of Bruteforce.Generic.RDP targeting remote workers in the region logged a total of 47,802,037 incidents from January to June this year. On average, Kaspersky solutions blocked 265,567 brute-force attacks in SEA daily.
In this period, Kaspersky secured most users from Vietnam, Indonesia, and Thailand from this type of threat.
These statistics are based on detection verdicts of Kaspersky products received from users who consented to provide statistical data.
Remote Desktop Protocol (RDP) is Microsoft’s proprietary protocol, providing a user with a graphical interface to connect to another computer through a network. RDP is widely used by both system administrators and less-technical users to control servers and other PCs remotely.
A Bruteforce.Generic.RDP attack attempts to find a valid RDP login/password pair by systematically checking all possible passwords until the correct one is found.
A successful Bruteforce.Generic.RDP attack allows an attacker to gain remote access to the targeted host computer.
“Naturally, working from home or anywhere out of the office requires employees to log in to corporate resources remotely from their personal devices. One of the most common tools used for this purpose is RDP. Microsoft 365 is still the preferred software used by enterprises and SEA boasts of more than 680 million people, half of which are under 30 and are highly tech-savvy. So we see the use of this protocol to continue as remote working remains the norm and expect that malicious actors will continue their chase to compromise companies and organizations here through brute-force attacks,” says Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.
While RDP attacks are not conceptually new, Kaspersky notes that cybercriminals exploit the recent trends and the remote and hybrid environment to target enterprises. Brute-force attacks on RDP are not new, but never before have so many employees used these protocols. That is likely the reason why they continue to be the primary focus for attackers in SEA.
While corporate and perimeter security remains important, the recent mass transition to remote or hybrid work has shown all too clearly that even the best corporate security cannot compensate for a lack of user awareness. Especially with 60% of companies allowing employees to use their own devices for work, businesses must train their staff in cybersecurity best practices, so that they are aware of the risks and understand how to work securely with corporate resources.
This cyber hygiene training must also be accompanied by changes in IT administration. IT needs to provide additional support to employees, making sure updates are applied on time and issues with connecting remotely are fixed promptly.
For many businesses, remote work is not a temporary solution. Many have already announced that, even after the pandemic subsides, work-from-home options and a hybrid model will become a permanent fixture of the employee experience.
“Moving forward, businesses have to rethink the way their corporate networks are organized. Since all machines are not located in the office and hence, not connected to the corporate network, adjustments need to be made to ensure endpoints stay secure and corporate resources are protected. Cybercriminals will always be ready to take advantage of disruptive current events. Fortunately, staying protected against an evolving set of cyber risks does not require any high-tech or advanced programming skills. It just requires a little knowledge of basic cyber safety rules,” adds Yeo.
Kaspersky experts also offer tips to help employers and businesses stay on top of any potential IT security issues and remain productive while staffs are working remotely or from home:
- Ensure your employees have all they need to securely work from home and know who to contact if they face an IT or security issue.
- Schedule basic security awareness training for your employees. This can be done online and cover essential practices, such as account and password management, email security, endpoint security, and web browsing.
- Take key data protection measures including switching on password protection, encrypting work devices, and ensuring data are backed up.
- Ensure devices, software, applications, and services are kept updated with the latest patches.
- Install proven protection software, such as Kaspersky Endpoint Security for Business, on all endpoints, including mobile devices, and switch on firewalls.
- Ensure you have access to the latest threat intelligence to bolster your protection solution.
- Double-check the protection available on mobile devices. For example, it should enable anti-theft capabilities such as remote device location, locking and wiping of data, screen locking, passwords, and biometric security features like Face ID or Touch ID, as well as enable application controls to ensure only approved applications are used by employees.
- In addition to physical endpoints, it is important to protect cloud workloads and virtual desktop infrastructure. As such, Kaspersky Hybrid Cloud Security protects hybrid infrastructure of physical and virtual endpoints, as well as cloud workloads whether running on premise, in a datacentre or in a public cloud. It supports integration with major cloud platforms, such as VMware, Citrix or Microsoft, and facilitates migration from physical to virtual desktops.
Most employees fear robot hacking but believe they should be used more in production
December 2, 2022 12:54 p.m.
A recent Kaspersky study on the consequences of automation and increased use of robots showed the growing level of robotization in companies but highlighted the increased number of cybersecurity risks this causes. Today, 79% of employees believe that robots should be more widely used across different industries, however, 85% of them fear robot hacking.
Nowadays, robotics is being used to command industrial control systems, production processes and other information technology.
It replaces manual labor, improving efficiency, speed, quality and performance.
With this in mind, Kaspersky conducted a study to learn the opinion of employees of manufacturing companies and other large organizations around the world about the consequences of automation and increased use of robots.
The goal was to gather employees’ thoughts about the security of robots and automated systems in their companies. The survey was conducted across 15 countries: USA, France, Italy, Germany, Spain, South Korea, Japan, Singapore, Argentina, Brazil, Egypt, South Africa, Saudi Arabia, UAE, and Turkey.
Employees reported an increase in robotization levels in their companies over the last 2 years. Forty-one percent of employees said their organizations already use robots, and 29% of organizations plan to use them in the near future.
One of the findings in the research was that respondents believe robots can help industries increase economic benefits as well as saving people from dangerous duties.
This point of view is shared by more than half of the surveyed employees, as 52% think use of robots can accelerate and increase the efficiency of production processes and cut down costs, and 60% believe robotization can free people from hard or dangerous duties, reducing risks to life and health in the future.
This, in turn, will help employees avoid routine and boring duties and retain more interesting and highly paid positions (36%).
More than one third of respondents consider that one of the key tasks that robots can successfully perform is to build a safe environment and reduce the likelihood of accidents due to human error.
This point of view was shared by 36% of employees.
Another important finding was that cybersecurity risks increase because of robotization.
The majority of respondents (85%) believe that robots can get hacked, and 51% know of incidents such as these occurring in their company or other local businesses.
Respondents are split in their assessment of how protected robots are: almost one half of employees (44%) believe that not enough cybersecurity measures are in place to protect the robots in different industries while 40% believe that sufficient protective measures are in place.
“Cyber-physical systems use industrial robots more often to increase production efficiency. However, new technologies like these bring new cyber risks because they are potentially vulnerable to cyberthreats. Kaspersky sees ensuring that cybersecurity remains at the forefront of robot technology adoption as its mission, helping to tackle the challenges and capitalize on the opportunities that robotization presents,” comments Andrey Strelkov, Head of Industrial Cybersecurity Product Line at Kaspersky.
“In our research, we asked respondents to judge not only how convenient and efficient robots are to use in production, but also their level of safety. It turned out that many employees believe that using robots causes risks. Robots, robotic controllers, automation systems, and supply chains are going to become the prime vector for cyberattacks in the coming years, and they need protection here and now. Before one integrates robots into production, one needs to guarantee network intrusion robustness and overall network security,” says Strelkov.
“Not all modern technologies are designed with security in mind, so only the use of defense-in-depth industrial network protection and multifunctional monitoring platforms will ensure uninterrupted operation of the company. Dedicated solutions like Kaspersky Industrial CyberSecurity may become an efficient assistant for protecting robotics in production,” adds Strelkov.
To keep your industrial computer systems protected from various threats, Kaspersky experts recommend:
- Conducting regular security assessments of OT systems to identify and eliminate possible cyber security issues.
- Establishing continuous vulnerability assessment and triage as a basement for effective vulnerability management process. Dedicated solutions like Kaspersky Industrial CyberSecurity may become an efficient assistant and a source of unique actionable information, not fully available in public.
- Performing timely updates for the key components of the enterprise’s OT network; applying security fixes and patches or implementing compensating measures as soon as it is technically possible is crucial for preventing a major incident that might cost millions due to the interruption of the production process.
- Using Industrial EDR solutions such as Kaspersky Industrial Cybersecurity for Nodes with EDR for timely detection of sophisticated threats, investigation, and effective remediation of incidents.
- Improving the response to new and advanced malicious techniques by building and strengthening your teams’ incident prevention, detection, and response skills. Dedicated OT security training for IT security teams and OT personnel is one of the key measures helping to achieve this.
The full presentation with results and more insights on the consequences of automation and increased use of robots are available via the link.
Infinix launches the all-new HOT 20S, the best value-for-money gaming phone yet
November 27, 2022 7:20 p.m.
Filipinos absolutely live and breathe mobile gaming, and here’s some good news: being the best mobile gamer around no longer has to break the bank.
That’s because Infinix is dropping the brand-new HOT 20S on November 27, which lets you own the competition as a top game assassin–all at an affordable price.
Now, you don’t even have to spend more than P9,000 to enjoy #MoreSmoothGameplay on the HOT 20S. The phone packs a Helio G96 Premium Gaming Processor and up to 13 GB of RAM, which powers all your favorite games and allows it to perfectly handle the toughest and latest titles. You can have a wide selection of games to download and stomp other players in thanks to its 128GB ROM storage.
You’ll also never miss a single detail in the action thanks to the HOT 20S’s 120Hz 6.78-inch Full HD+ HyperVision Gaming Pro display, which gives you bright and vivid high-resolution visuals no matter what you’re running. Your sessions can also go for as long as you want thanks to its 5000mAh Power Monster battery that fills up quickly with its 18W Power Charge.
The whole gaming experience is rounded out by the HOT 20S’s Bionic Breathing Cooling System, which keeps the phone humming and going through great heat and pressure. Meanwhile, the All-Around Gaming Network Enhancement Turbo increases its performance during playtime even further.
For those who still want to upload great-looking content on their social media accounts, the HOT 20S also packs a solid 50MP Super Nightscape Triple Camera setup, which lets you take stunning photos and videos, especially in low-light settings.
So what are you waiting for–be the best game assassin you can be without spending too much, as the Infinix HOT 20S gives you #MoreThanWhatYouPayFor, guaranteed. Get it for a suggested retail price of P8,499 from Lazada, Shopee, TikTok Shop, and official Infinix kiosks nationwide starting November 27. Get it for even less at only P7,849 exclusively on Lazada on November 28, and P7,999 in a limited-time Flash Sale on Lazada, Shopee, TikTok Shop starting December 1. For more info on the HOT 20S, visit the official Infinix website.
JBL SOUND ALL AROUND: Pump up your sound trip with JBL’s new, exciting range of products
November 21, 2022 12:54 p.m.
Everyone is a true original. We march to the beat of our own drums, with the freedom to design our life exactly the way we want it. Goodbye to treading the “traditional,” and here’s to paving our own exciting paths. Whether you like the adrenaline of living it up in the fast lane or taking it slow and steady, cruising through life on your own terms, JBL understands that there’s no such thing as a “one-size” fits all kind of lifestyle. That’s why JBL continues to innovate and provide SOUND ALL AROUND.
JBL is the brand for all your audio needs–encompassing all aspects of sound, whatever your field. From professionals, to students, athletes, gamers, content creators, and more, every person can enjoy unique sound tailored to their own story. And in pursuit of providing only the best for each individual, JBL is introducing a new range of essentials under the gaming, sports, speakers, and True Wireless categories.
Here, find exactly what you need that that reflects your own reality. It’s time to elevate your life and your sound trip with JBL!
For students and professionals, you may find yourself spending countless of hours commuting or hanging out at your work/ study desk, tackling the day’s load. Allow yourself to fully focus on your task at hand or make the trip around the campus or city more enjoyable with JBL’s True Wireless Earbuds.
The JBL Wave Beam and JBL Wave Buds are perfect if you want to bring your sound everywhere. With bass you can feel and a battery life of up to 32 hours, these ear candies deliver crystal clear sound with Smart Ambient technology that keeps you aware of your surroundings.
For the go-getting entrepreneur or professional, the JBL Tune Flex is a flex you should get. Its ergonomic and water-resistant design gives you all-day comfort for any weather. In addition, it’s designed with a simple touch feature that allows you to manage and enjoy calls anywhere, without ambient noises. Now, you can choose whether you want to tune out the world or engage with your surroundings.
Working/ studying from home? No problem. The JBL Live Free 2 and the JBL Live Pro 2 allow you to make clear, perfect calls with six beamforming mics. You can also access your preferred voice assistant for seamless, hands-free control and connection. The Live Free 2 earbuds deliver up to 35 hours of incredible JBL Signature Sound (with 7 hours in the earbuds + 28 hours in the case), speed charging, and Qi-compatible wireless charging for when your batteries need a boost. The Live Pro2 delivers the same amazing benefits with up to 40 hours of incredible JBL Signature Sound (with 10 hours in the earbuds + 30 hours in the case). Each are beautifully designed to fit your aesthetic and give you a stylishly elevated, ergonomic set.
Born to Move
When you’re in the zone, nothing should distract you. JBL’s in-ear sports earphones keep you on track, especially if you want to be unstoppable. For athletes and other active individuals, the JBL Run 2 and the Run 2 B make for a perfect fit.
These wireless sets will get you the motivation you need to push harder. Their FlipHookdesign adapt to an in-ear or behind-the-ear fit for convenience. In addition, the comfortable combination of FlexSoftear tips and TwistLocktechnology guarantees that they will never to hurt or fall out. Heading out into the rain or heat? Thanks to IPX5 waterproof, these wireless headphones keep up with you every step of the way. Enjoy a playback of 10 hours, an in-line microphone, and remote for hands-free control of sound and calls.
Built to Win
Gaming is no longer just a hobby, it’s a real profession. And if you’re looking for a set that helps you stand out, then going with the JBL Quantum 810 is a must! Fully immerse in a new world ushered by the signature JBL QuantumSOUND, which makes even the tiniest audio details come in crystal clear; and JBL QuantumSURROUND, the best spatial surround sound for gaming with DTS Headphone:X version 2.0 technology.
If you’re more on-the-go, JBL Quantum TWS is for you. Play anywhere and hear everything as this innovative pair features True Adaptive Noise Cancelling technology. Lose yourself in the game and limit distractions with accurate surround sound. Easily Fast Pair with Bluetooth smartphones and establish low latency 2.4GHz connections to compatible devices with the included USB-C dongle.
Life of the Party
#YOLO Make every day and every gathering one for the books! Turn your space into a club with the JBL Boombox 3, the most powerful portable Bluetooth speaker now made even better! It’s been redesigned with a new subwoofer unleashing much deeper bass and massive JBL Original Pro Sound, all with lower distortion. Party to 24 hours of play time, hyping you up from your morning workout to the late-night rendezvous with your friends.
For a truly unforgettable experience, grab the JBL PartyBox Encore speaker and the JBL Pulse 5. Sync the lightshow’s rockin’ strobes, ring, and club lights for an awesomely immersive experience. You can also sing along with JBL PartyBox Encore’s premium digital wireless mic, optimized for karaoke with adjustable echo, bass, and treble. Both speakers are dustproof and waterproof so take them from your backyard to the beach and beyond!
Life is what you make it. So, enjoy every moment and dive into the perfect sound trip every day with JBL. Now, that’s a vibe.