New router-based solution protects home IoT devices

As we bring more and more smart devices into our homes, we potentially open ourselves up to a variety of new risks with devices opening back doors into networks or falling prey to botnets.

German antivirus company Avira is launching a new approach to home security which needs no new infrastructure on the domestic network and no configuration done by the user.

SafeThings sits within the home router and works with cloud-based machine learning. Avira licenses the product to router manufacturers and internet service providers, enabling them to protect networks from misuse and to deliver value-added IoT security services directly to end users.

"At Avira, we have been at the forefront of Artificial Intelligence innovation for a decade, being the first vendor within the security industry to identify how to apply AI to our field and to do it," says Travis Witteveen, CEO of Avira. "We have a wealth of experience in protecting both the privacy of end-users and the security of their traditional devices. Today we stand alone in the cyber security industry with the introduction of Avira SafeThings, an innovative router app and behavioral threat intelligence platform that secures all IoT devices in the home. We've designed SafeThings to effectively solve the IoT vulnerabilities without being too invasive, expensive, or complicated for the end user -- and we've done this in a way that provides additional benefits for the internet service providers and router manufacturers."

SafeThings is made up of a number of modules, Protection Cloud builds category and individual device profiles to create device management and rule definitions and automatically protect the device functionality. By analyzing metadata on gateway traffic, no invasive deep packet inspections are needed.

The Sentinel module is a software agent positioned at the gateway to each smart home, embedded in the firmware on the router, Sentinel fingerprints IoT devices and collects packet header metadata for AI analysis. After communicating with Protection Cloud, Sentinel enforces protection and communication rules.

A web-based user interface shows users in real time what each IoT device in their network is doing and enables them to see and modify firewall policies and device rules. There's also a Data Forefront API service that lets service providers and OEMs access and control SafeThings functionality, for example to drill down into specific details and control rules and actions to be taken in case of a compromised device.

It also allows for custom plugins to let SafeThings clients offer their end users additional security apps via a branded secure app store. These integrated services such as VPN or parental controls would operate at router level with management in the cloud.

"We see SafeThings as a 'B2B2C' product, providing consumers with the security and privacy protection they need while delivering it to them via the internet service providers and router manufacturers. As an embedded software solution, SafeThings is imminently flexible according to each client’s technical and marketing needs,” adds Witteveen.

You can find out more on the Avira website.

Image Credit: lucadp / depositphotos.com

via betanews

Read more »

Quimitch: The first Mac malware of 2017

The first Mac malware of 2017 has been detected and brings to question whether Macs still safe from bad guys or whether malware lurks there undetected.

Mac users usually feel safe when it comes to malicious software attacking their systems. Viruses, worms and other kinds of malware are relatively rare comparing with Microsoft Windows users. However, in the last couple of years, the situation has been changing and it seems that the attention of malware creators is turning towards Mac users.

Key Points

• The malicious code is extremely simple and consists only of two files.
• The code of malware seems truly ancient with calls dating to pre-OS X times and open source libraries, with the latest update being from the last century.
• Malware targets specific institutions – biomedical research centers. This points to the fact that it could be an attempt to steal research data or other kinds of espionage.
• Malware needs access to the webcam and to capture the screen, exfiltrating data from everything it can access.

Overview

There are few interesting things about Quimitchin, the name comes from the Aztec spies that infiltrated other tribes (That’s because the code of the malware itself is ancient or at least it seems so!) – first and foremost, it might have been running on specific systems undetected for years. Why was it undetected? Targeted attacks are much more difficult to detect because of their limited exposure and this is the case with Quimitchin, which is most likely espionage tool. The malware tries to access the webcam with primitive calls, dating back to pre-OS X times. It also tries to screen capture, has rudiments of a remote control function, with possibility to receive commands like change the position of mouse cursor or simulate mouse clicks.

It consists of two files – one for keeping the client alive and another Perl script – for communication with command and control servers, taking screenshots, accessing the webcam and other activities. It can also scan your network, build a map of all devices, try and connect to them or report IP addresses and other information.

What’s even more interesting, the malware code has Linux shell commands too. This might point that there is similar malware existing in Linux systems. Up to this date, the existence of such cannot be confirmed. However, communications with the same command and control center were reported a couple of times to Virus Total before. 

No one knows how this piece of malware is installed, who created it and for how long it was stealing scientific research data and this mysterious twist is one of the reasons why Quimitchin is one of the most interesting pieces of malware early in 2017. Although who the creators are isn't clear, as researchers dig into it, time will reveal who was standing behind the curtain.

Relevance to your security

This malware can infect your Mac computer. Although, unless you are working at a biomedical research institution, you shouldn’t worry too much. On the other hand, the discovery of this malware, using such ancient techniques, might show that there can be a lot of bad things happening undetected with your OS X and Mac computer.

Webcam access: Possibility to capture images, record video. Though further investigation of code is needed.

Capture screen: Capture what is happening on your screen and transferring images. 

Remote control: It can remotely control your computer – simulate key presses, mouse clicks, cursor position and gather your network data – IP addresses, network names and port that it uses.

Conclusion

Quimitchin is one of the mysteries of early 2017 that surfaced in cyber security field. There are more things unknown than known regarding activities of this malware, creators, purpose and for how long it was being used undetected.

Read more »

EnGenius' SOHO wireless router

Create your own wireless network with the EnGenius' SOHO wireless router. EnGenius ESR Series will provide you with a low-cost high powered Wi-Fi router that will extends your network's wireless range. Connect the ESR Series to any broadband modem and wirelessly share your high-speed Internet connection. Enjoy surfing the web, checking e-mail, and chatting with family and friends online. Reach the places your previous router would not go with EnGenius ESR Series high powered radio and extended range coverage.

Parents can also use EnShare to remotely monitor Cloud Router usage or disconnect devices connected to the IoT Cloud Router whenever they're away from home via an Internet connection.

Learn more >>>

EnGenius ESR350 802.11b/g/n Router with 4 ...
The ESR350 is a 2.4 GHz Wireless N300 IoT Cloud Router with a 4-Port Gigabit Ethernet s... [More]

Price: $81.99

Buy Now

The ESR350 is a 2.4 GHz Wireless N300 IoT Cloud Router with a 4-Port Gigabit Ethernet switch, Gigabit Ethernet WAN port and USB port. With the free EnShareT app, families can use their Apple iPhones, iPads or Android-based tablets or smartphones to transfer video, music and other files to and from a router-attached USB hard drive when they are in the home or when they are away from home.

Features:

• ESR350 2.4GHz Wireless-N 802.11b/g/n router with 4 port GigE switch.
• Broadband Frequency Band: 2.4 GHz
• Data Rate: 300 Mbit/s
• Frequency Range: 2.412-2.472 GHz
• WiFi Deployment Type: Standalone / Controller-Based
• WiFi Standard: 802.11b / 802.11g / 802.11n
• WiFi Security: WEP / WPA / WPA2
• Environment: Indoor
• Temperature Range: 0-40 deg C
• Data Connectors: 1x Gigabit WAN Port, 4x Gigabit LAN Ports, 1x USB 2.0 Port
• Power Supply: DC IN, 12V 1.5A
• Mfg. Warranty: 1 Year

Read more »

Nine Wi-Fi gadgets that reflect IoT momentum

With predictions of billions of new devices with wireless connectivity over the coming years, the “Internet of Things” is expected to have a major influence on multiple verticals and consumers’ everyday lives. And it turns out that already, everything from dog dishes to stuffed animals to vacuums and home appliances are getting connected.

Cisco’s Mobile Visual Networking Index for 2016 estimates that machine-to-machine connections will grow from 604 million last year to 3.1 billion by 2020, reflecting five-fold growth.

“M2M connections – such as home and office security and automation, smart metering and utilities, maintenance, building automation, automotive, health care and consumer electronics, and more – are being used across a broad spectrum of industries, as well as in the consumer segment,” Cisco concluded. In the wearables market specifically, Cisco projects there will be 601 million devices globally by 2020 – and most of those devices will be connected by a noncellular technology such as Bluetooth or Wi-Fi, with only 7% expected to be cellular-equipped.

While Linksys’ H2O router claimed to provide Wi-Fi coverage up to 10,000 feet underwater was an April Fool’s joke, there are more than enough real envelope-pushing Wi-Fi gadgets on the market or in development to prove that for Wi-Fi, the IoT is already here. Some of these include:

-Amazon.com’s Wi-Fi-enabled Dash buttons currently serve more than 100 brands with one-touch reordering in the home, enabling consumers to push a button and automatically place an order with Amazon. The buttons are available at $5 a pop, with the cost recouped in a $5 credit on the first product order. Perhaps more interestingly, Amazon is now partnering with other brands to incorporate Dash ordering capabilities in its Dash Replenishment Program and has released an API to encourage such development. Samsung, General Electric and others have signed up to build hardware that can re-order products without any intervention. A Whirlpool Smart Dishwasher, for example, can calculate how much product it has used compared to what’s available in a typical product size and re-order via Dash when the supply is running low.

-San Diego, California-based start-up BIGaVu connects teddy bears via Wi-Fi to provide music and voice messages from parents, and reacts to online games to provide entertainment for children who are in the hospital. The company recently unveiled prototypes of its bears and has a therapies-on-demand hardware and software platform.

-Jenn-Air added the brand’s first Wi-Fi enabled refrigerator to its lineup, which can be controlled via an Apple iOS or Google Android application for monitoring or directing tasks such as making extra ice. It’s set to be available later this year.

-The June computerized counter-top oven sends updates on cooking process to a smartphone app via Wi-Fi and can provide live video from inside the appliance, as well as a push notification when the dish is done. It also gets software updates via Wi-Fi. June recently raised $22.5 million in Series A funding and plans to start shipping ovens for the 2016 holiday season.

-In addition to its Bluetooth-enabled wearables, Fitbit has a Wi-Fi enabled scale that integrates with its Fitbit app. The fitness wearables market is a popular one for the integration of both Bluetooth and Wi-Fi; a new fitness tracking solution recently touted by Naked Labs includes a scanning mirror and a scale that doubles as a turntable so users are presented with a 360-degree view of their bodies and “heat maps” of changing areas to visually track their fitness progress. That offering is expected to be available in March 2017.

-The Petnet Wi-Fi-enabled SmartFeeder for pets has an app (for iOS only) designed to allow an owner to schedule automatic feedings while they are away. The app has a re-ordering option supported by Amazon’s Dash Replenishment Service and also recently added integration with Google’s Nest Cam.

–Foobot is an indoor air quality monitoring device with Wi-Fi connectivity designed to measure volatile organic compounds and particulate in the home, along with carbon monoxide, carbon dioxide, temperature and humidity.

-IRobot introduced embedded Wi-Fi connectivity to its Roomba vacuuming robot product line last year, with the Roomba 980 model that can be remotely controlled and scheduled via an Android or iOS app. Previously, workarounds were available for customers who wanted to control their Roombas via wireless, but the newest addition builds in Wi-Fi capabilities.

via RCRWireless

Read more »