Smart Manufacturers Face a Security Conundrum as they Tackle Emerging 5G Threats
DALLAS, May 27, 2021 /PRNewswire/ -- Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, released in-depth research highlighting new threats to 4G/5G campus networks, many of which capitalize on the difficulty organizations have in patching critical OT environments.
The report details multiple attack scenarios and possible mitigations, using a testing environment designed to mimic a smart factory campus network.
To read a fully copy of the report, Attacks From 4G/5G Core Networks: Risks of the Industrial IoT in Compromised Campus Network, please visit: https://www.trendmicro.com/vinfo/us/security/news/internet-of-things/the-transition-to-5g-security-implications-of-campus-networks.
"Manufacturers are at the cutting edge of IIoT deployment, gearing up with 5G to tap the power of connectivity everywhere to drive greater speed, safety and efficiency. But with new technology comes new threats added to legacy challenges," said Yohei Ishihara, security evangelist for Trend Micro. "As the report warns, many are stuck in a bind—unable to afford the downtime necessary to patch critical system vulnerabilities that may otherwise be exploited. Fortunately, our extensive research also highlights multiple mitigations and best practices to protect the smart factories of today and tomorrow."
The report identifies several key entry points for attackers to compromise a core 4G/5G nework:
Once the attacker gets in the core network from any of these entry points, they will attempt lateral movement in a bid to intercept and change network packets. By attacking industrial control systems in smart manufacturing environments like the test site, attackers could steal sensitive data, sabotage production, or hold organizations to ransom.
From the 11 attack scenarios demonstrated, one of the most potentially damaging involves targeting Microsoft Remote Desktop Protocol (RDP) servers, which are commonly used by IT and field engineers. The upgrade to 5G doesn't automatically protect RDP traffic, so attackers could use this access to download malware and ransomware, or directly hijack industrial control systems. RDP v 10.0 is the most secure version and may offer some protections against these attacks, but again it may be difficult for organizations to upgrade.
Among the recommendations made in the report to protect 4G/5G campus networks are:
Building a mobile network in an enterprise environment involves both the end users as well as various stakeholders, including service providers and integrators. In addition, private 4G / 5G networks are large-scale infrastructure and have a long life, so once built, they are difficult to replace or modify. Therefore, it is essential to implement "security by default" to identify and mitigate security risks at the design stage.
About Trend Micro
SOURCE Trend Micro Incorporated