Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack
-
Upload
lacoon-mobile-security -
Category
Mobile
-
view
704 -
download
0
description
Transcript of Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack
![Page 1: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/1.jpg)
Why Heartbleed Doesn’t Give Lacoon Customers a Heart AttackHow Lacoon Helps Enterprises Protect Their Mobile Devices and Data
Lacoon Mobile Security
1
![Page 2: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/2.jpg)
2What is Heartbleed?
Vulnerability that leverages the heartbeat messages of an SSL session to steal information
1
Products that use OpenSSL Versions 1.0.1a through 1.0 are vulnerable – our research shows that many enterprise apps contain the vulnerability.
Because heartbeat messages don’t need to authenticate to the server, when this vulnerability is exploited it is hard to identify.
2 3
Once exploited, attackers can steal up to 64KB of memory at a time. This memory can include anything – passwords, sensitive data, etc.
![Page 3: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/3.jpg)
3What is the Specific Risk for Mobile Users?
Android mobile devices and applications can be vulnerable to Heartbleed
1
If the Device is vulnerable it could expose the information in an application or the browser.
If the Application is vulnerable, both the connection and the data in the application could be exposed.
2 3
Once exploited, attackers can “eavesdrop on communications, steal data directly from services and users and impersonate services and users.”
-Heartbleed.com
![Page 4: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/4.jpg)
4
Requirements to Protect Mobile Devices from Heartbleed
1.Ability to Detect if a Device is Vulnerable - does the OS contain the vulnerability
2.Ability to Detect if any of the Applications on the Device are Vulnerable
3.Ability to Prioritize Remediation Activities – given the sheer volume of potentially impacted devices/apps, IT requires a way to effectively allocate resources
4.Ability to Prevent Data Exfiltration – to give IT and users the time they need to update their OS or applications, without risking the user or enterprise’s sensitive information
![Page 5: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/5.jpg)
5
Lacoon scans the OS’s OpenSSL library on the Android device and validates if it is vulnerable to Heartbleed.
Lacoon MobileFortress Heartbleed Mitigation Capabilities
Lacoon’s Cloud-Based App Reputation scans the Android apps installed on the device and identifies if they are vulnerable for Heartbleed
Lacoon’s Threat Framework assigns a high risks score for vulnerable devices and medium risk score for devices with vulnerable apps. Reporting on risky devices is available on the dashboard
Depending on the policy, Network protection is enabled and redirects the network traffic through the Lacoon Secure Gateways that are loaded with IPS rules to drop Heartbleed packets
1 2 3 4
1 On-Device vulnerable OS detection
![Page 6: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/6.jpg)
6
Lacoon scans the OS’s OpenSSL library on the Android device and validates if it is vulnerable to Heartbleed.
Lacoon MobileFortress Heartbleed Mitigation Capabilities
Lacoon’s Cloud-Based Advanced App Reputation Engine scans the Android apps installed on the device and identifies if they are vulnerable to Heartbleed
Lacoon’s Threat Framework assigns a high risks score for vulnerable devices and medium risk score for devices with vulnerable apps. Reporting on risky devices is available on the dashboard
Depending on the policy, Network protection is enabled and redirects the network traffic through the Lacoon Secure Gateways that are loaded with IPS rules to drop Heartbleed packets
1 2 3 4
1 On-Device Vulnerable OS Detection
2 Cloud-Based Vulnerable Apps Detection
![Page 7: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/7.jpg)
7
Lacoon scans the OS’s OpenSSL library on the Android device and validates if it is vulnerable to Heartbleed.
Lacoon MobileFortress Heartbleed Mitigation Capabilities
Lacoon’s Cloud-Based Advanced App Reputation Engine scans the Android apps installed on the device and identifies if they are vulnerable to Heartbleed
Lacoon assigns a risk score to each device & displays Dashboard Alerts• High for
vulnerable devices
• Medium for devices w/ vulnerable apps
Depending on the policy, Network protection is enabled and redirects the network traffic through the Lacoon Secure Gateways that are loaded with IPS rules to drop Heartbleed packets
1 2 3 4
1 On-Device Vulnerable OS Detection
2 Cloud-Based Vulnerable Apps Detection
3 Affected devices and apps assigned high or medium risk score
![Page 8: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/8.jpg)
8
Lacoon scans the OS’s OpenSSL library on the Android device and validates if it is vulnerable to Heartbleed.
Lacoon MobileFortress Heartbleed Mitigation Capabilities
Lacoon’s Cloud-Based Advanced App Reputation Engine scans the Android apps installed on the device and identifies if they are vulnerable to Heartbleed.
Lacoon assigns a risk score to each device & displays Dashboard Alerts• High for
vulnerable devices
• Medium for devices w/ vulnerable apps
Network protection is enabled , redirecting traffic from high risk devices to the Lacoon Secure Gateway, which can drop Heartbleed packets.
1 2 3 4
1 On-Device Vulnerable OS Detection
2 Cloud-Based Vulnerable Apps Detection
3 Affected devices and apps assigned high or medium risk score
4 Heartbleed traffic is dropped, data is protected.
![Page 9: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/9.jpg)
9
A Quick Look at What Lacoon Customers See When Heartbleed is Detected
All the information IT needs to remediate
![Page 10: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/10.jpg)
10A Little About Lacoon
Who We Are What We Do Develop new mobile security
technologies that can detect and prevent mobile threats
Partner with leading mobile operators and technology companies to provide comprehensive mobile security solutions
Founded by mobile security experts from Military Intelligence and Telco Industries
Supported by a Security Research Team focused on uncovering undiscovered threats to mobile apps and platforms
Well-funded and backed by successful security industry veterans
![Page 11: Why Heartbleed Doesn't Give Lacoon Mobile Security Customers a Heart Attack](https://reader033.fdocuments.in/reader033/viewer/2022052822/554bec11b4c90556328b5063/html5/thumbnails/11.jpg)
11
Want More Information?
Contact [email protected]
Request a Demo at www.lacoon.com
Follow us: @LacoonSecurity