CUPID —The New Heartbleed

by

June 3, 2014

The Heartbleed SSL Bug, one of the most serious vulnerabilities to ever hit the Internet,caused problems for enterprise wireless and wired networks about two months ago.  Since then, it has been patched and dealt with.  Or so we thought.  Now, a similar vulnerability is causing problems — CUPID.   

CUPID uses the same exploit as the Heartbleed Bug, but occurs in data intercepted between Android devices and WiFi routers.

It exploits the catastrophic Heartbleed vulnerability against wireless networks and the devices that connect to them.  It plucks passwords, e-mail addresses, and other sensitive information from vulnerable routers and connected clients.

A client attacking a router doesn’t require a password. The clients that are vulnerable are handsets running versions 4.1.0 and 4.1.1 of Google’s Android mobile operating system.  CUPID attacks Android devices via a WiFi network, and can affect other connected devices such as desktops, VoIP devices, printers, and more.

Everyone, and every business using online devices are at risk.

To learn how you can protect your business from CUPID, contact Integris at (888) 330-8808 or sales@integrisit.com.

We're Integris. We're always working to empower people through technology.

Keep reading

Benefits of a NIST Cybersecurity Framework Risk Assessment

The National Institute of Standards and Technology (NIST) released the cybersecurity framework risk assessment in 2014. It is an impressive and detailed resource that allows a wide range of industries to better manage and understand their cybersecurity efforts. Many...

Information Technology Consulting Firms: Tips for Common IT Problems

When you run a business, you will run into standard information technology (IT) issues. Security breaches, broken technology, lost data, and forgotten login information will happen in only a matter of time – which is why it’s crucial to have information technology...