Hardware Vulnerability

Vulnerability a weakness. A day-by-day Technology get update with million lines of code, number of programmers & a human mind. It creates threats in the environment which invites and which attack by the unethical. Vulnerability mostly created in Network, Hardware, Software.

Hardware Vulnerability as a proprietor of Teckneon I get a chance to work on this kind of Vulnerability.

Unused Computers, Unprotected Storage, Unencrypted Data this are major regions of venerability.

In Banking industry major Hardware Vulnerability reason is Unused computer which are not in used but connected to system and these computers are not a vulnerability because of unused it is a vulnerability because of older version of Operating system & software. 

Vulnerability risk for Older Verion Operating Systeam & Software 

Once Operating Systeam reaches End-Of-Life there is no support provide by the OS Developers and also there is Lack of Security updates are missing due to this kind of Systeam it is easy to Exploit. After getting exploit it easy to insert Malwares and risk of network explosion small hardware vulnerability can create a major loss of money and the reputation of Organization.

Let's take a look at Soth Korean bank incident:

Using malware knowns as "Dark Seoul", attackers were able to brick computers, disrupt Finacial networks and crash ATMs.

Let's take a look out what DarkSeoul contents:

"Dark Seoul " rates as highly advanced, It is able to parlays target network. It deactivates Security products like Antivirus, firewalls, IDS, IPS, Encryption tools. It is also attack on Database it is design for deleting Data Dark Seoul Included Linux Wiping Capability. Under South Korean Bank Attack 5000+ computers are infected under this attack and the website of South Korean Banks are inaccessible for a weak

 The Exploit point of this attack is a older version device which was used by the bank persons for multiple functions according to South Korean forensic team.

According to research published by Symantec, the malware -- which it dubbed Trojan.Jokra -- "is a Trojan horse that attempts to wipe the hard disk of the compromised computer" and can infect numerous versions of Windows (Windows 2000, Windows 7, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista and Windows XP) as well as Linux systems.

The malware wiped Windows computers by overwriting their master boot record (MBR) and any data stored on the PC, then instructed the PC to shut down, "which renders the computer unusable as the MBR and the content of the drive are now missing," according to Symantec's analysis.

Microsoft Windows has updated security against Dark Seoul. 

-Ashitosh Ghate