Hackers compromised PC microphones using malware embedded in Microsoft Word documents. The attack targeted companies in several industries, including critical infrastructure, news media, and scientific research. The data was siphoned via Dropbox accounts.
The article states that organizations typically don’t prevent end users from accessing Dropbox. In this day in age, that needs to change. DLP strategies for companies in each of these industries should be blocking these cloud sharing sites. Any exceptions to these blocks should be closely monitored.
On another note, I would hate to be the one that had to listen to hours of audio to try to find the sensitive information, intellectual property, trade secrets, and research data!
https://arstechnica.com/security/2017/02/hackers-who-took-control-of-pc-microphones-siphon-600-gb-from-70-targets/
Scott Radaszkiewicz says
Good article Jason. Over the past several years here at my organization, we have pushed users to use cloud storage vs. local storage. I work in a K-12 school district. In fact, our High School and Middle School Students have devices issued to them and they use Google Drive for all of their storage. We even tell students to create a dropbox for extra storage, if needed. It just goes to prove that hackers will continue to target things that people use and feel comfortable with. It’s a never ending battle!