All the latest UK technology news, reviews and analysis
|
|
|
26 Oct 2011
Medical equipment, industrial control systems and cars are increasingly at risk of attack in a world in which "everything we touch is IP-enabled", McAfee chief technology officer George Kurtz has warned.
Kurtz said at the firm's Focus customer event in London on Wednesday that the "massive explosion in non-PC devices connecting to the internet" has provided cyber criminals with a whole new set of technologies to attack.
Some 70 million pieces of malware are currently represented in McAfee's signature database, the equivalent of the total number discovered in the past 20 years combined, he said.
In addition, McAfee processes 100,000 new pieces of malicious code every day, 60 per cent of which is unique, while two million infected web sites are detected every month.
These threats are not confined to traditional devices, however, and Kurtz urged manufacturers of life-saving medical equipment to think more about security when engineering products.
He explained how a McAfee team of researchers had managed to hack an IP-enabled insulin pump with ease, for example.
"We were able to quadruple the dose remotely and without authentication," he said. "It really wasn't that hard, and some of the mistakes manufacturers are making are pretty basic."
Likewise, some cars today contain over 10 million lines of code and receive over-the-air updates, making them open to being hacked.
As the ground-breaking Stuxnet worm showed, industrial control systems such as the Scada technology manufactured by Siemens have also been singled out as new targets by malicious actors.
"I think Stuxnet is just the tip of the iceberg," Kurtz said. "It's a prototype, a model of what's already out there. We're already seeing the son of Stuxnet now with Duqu."
Kurtz also used his keynote to highlight the dangers facing smartphone users, arguing that several factors have come together to make platforms, in particular Android, more vulnerable than traditional computing systems.
"We've got an immature platform with not even basic security built in. You can't even get encryption on Android," he said.
"Then you get two or three releases a year, making it difficult for IT. It's a recipe for disaster."
Latest stories from Security
Related videos
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
V3 examines the key strengths and weaknesses of Samsung's latest iPhone killer
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
Java, J2EE Agile Senior Developer, Warrington, Cheshire...
Location: Geneva Client: A well established world...
Location: Geneva Client : A well known company Job...
Location: Lausanne Client: A well established world...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
What cars
If vehicles can be targeted how serious could this really be if an enemy country or terrorist organization could attack and disable automobiles especially when they are on the move?
Posted by: Jim Farrar 28 Oct 2011
And, the power grid, too
And we in the USA want to put our entire power grid (Smart Grid) on line, too?
Posted by: Wayne 27 Oct 2011
The Wild West of Today: the Internet
There has to be a concerted effort by the major countries, similar to the G20, to establish agencies, on the same principles of Interpol, to deal with cyber-crime. Since an increasing number of networks and endpoints are being connected to the Internet we will be at risk of near-catastrophes in the very near future.
Posted by: Jack Shasha 27 Oct 2011