Oct 10, 2019 SOURCE: PR NewsWire

SafeBreach Discovers New Critical Vulnerability In HP Touchpoint Analytics

SUNNYVALE, Calif., Oct. 10, 2019 /PRNewswire/ -- SafeBreach, the leader in Breach and Attack Simulation (BAS), today announced that its SafeBreach Labs research team had discovered a critical security vulnerability in Open Hardware Monitor, a free open source software program that monitors temperature sensors, fan speeds, voltages, load and clock speeds of a computer. Tens of millions of computers use Open Hardware Monitor as part of monitoring systems, including HP Touchpoint Analytics. The critical vulnerability was the second of its type found by SafeBreach Labs during the past four months. Previously, SafeBreach Labs discovered a vulnerability in PC-Doctor, a monitoring and diagnostics packaged licensed to Dell and other major OEMs, that is run on hundreds of millions of systems. Both offer attackers the capability to take over machines and read and write to device memory, among the most serious types of security risks.

"These types of vulnerabilities are alarming because they indicate the ease with which malicious hackers could mount supply-chain attacks targeting and breaching highly trusted elements of our software ecosystem," says Itzik Kotler, CTO and Co-Founder at SafeBreach. "And this should be a clear signal to security teams that they need to increase their frequency of testing and analysis of their security envelope in order to match the pace of criminals who are constantly innovating ways to hack into the most vulnerable parts of IT systems."

HP Touchpoint Analytics ships as a default monitoring component of most HP Windows laptops and desktops. HP patched the vulnerability but SafeBreach researchers believe that any machine using the Open Hardware Library was at risk.

A number of potential attacks could result from exploiting this vulnerability giving attackers the ability to load and execute malicious payloads using a signed service, effectively whitelisting those applications. This capability for "Application Whitelisting Bypass" and "Signature Validation Bypassing" might be abused by an attacker for different purposes such as execution and evasion, to name two. Using Open Hardware Monitor's driver, which has the highest level of privileges in the operating system, an attacker can exploit this vulnerability and will be able to read and write to hardware memory.

This is only the latest instance of supply-chain attack vectors, which are among the most dangerous because they compromise trusted components and allow for attackers to go months or years unnoticed enjoying privileged access to devices and systems without being discovered. SafeBreach Labs filed a vulnerability report and has added this instance to its industry-leading Hacker's Playbook, the largest compendium of attack types. The Hacker's Playbook contains over 7,000 breach methods, all generated in programmatically addressable formats that are accessible via API. This research is part of SafeBreach's ongoing efforts to continuously test the most critical assets in the software supply chain for vulnerabilities and weaknesses to further the broader goal of enhanced cybersecurity for all.

For more information on this finding, please visit: https://safebreach.com/Post/HP-Touchpoint-Analytics-DLL-Search-Order-Hijacking-Potential-Abuses-CVE-2019-6333

About SafeBreach

SafeBreach is a leader in breach and attack simulation. The company's groundbreaking patented platform provides a "hacker's view" of an enterprise's security posture to proactively predict attacks, validate security controls and improve security operations center (SOC) analyst response. SafeBreach automatically executes thousands of breach methods from its extensive and growing Hacker's Playbook(TM) of research and real-world investigative data. Headquartered in Sunnyvale, California, the company is funded by Sequoia Capital, Deutsche Telekom Capital Partners, DNX Ventures, Hewlett Packard Pathfinder, PayPal and investor Shlomo Kramer. For more information, visit www.safebreach.com or follow us on Twitter @SafeBreach.

Media Contact:

Danielle Ostrovsky
Hi-Touch PR
410-302-9459
Ostrovsky@Hi-TouchPR.com

View original content:http://www.prnewswire.com/news-releases/safebreach-discovers-new-critical-vulnerability-in-hp-touchpoint-analytics-300936406.html

SOURCE SafeBreach

Related News

Global Customer Experience Management (CEM) Market by Component, Touchpoint, Deployment Type, Organization Size, Vertical and Region - Forecast to 2025

B2X Global Recognized By Hewlett Packard Enterprise As Authorized Parts Distributor

ePRINTit USA, LLC. is Honored by Hewlett Packard Inc. (HPI) with the 2020 Customer Driven Innovation Partner of the Year Award

Top Executive from Hewlett Packard Joins CEO Coaching International

Global Network Traffic Analyzer Market Outlook to 2027, Featuring Key Company Analysis Including Cisco Systems, Hewlett Packard and More

NCS Technologies, Inc. Named "HP Inc. Partner of the Year"

New Relic Introduces Vulnerability Management

TouchPoint One Agent Coaching Solution Receives 2020 Contact Center Technology Award from CUSTOMER Magazine

View all News

Latest Procurements

Market Sounding - Defence Infrastructure Panel – Construction Major Works

To assist the Commonwealth of Australia (Commonwealth), represented by the Department of Defence, in considering the potential establishment of a standing offer for the undertaking of major construction works described...

ATM 24/2948 drone-mounted Magnetometer

Provision of a drone-mounted Magnetometer to the Australian Antarctic Division

ANSTO Engineering Design Services Panel

The ANSTO Engineering Panel will be established to support the design and development of new facilities, major projects, minor works, and ongoing building renovation and refurbishment needs across many different...

View all Procurementsp

Agenda

June

FranceParc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024, 17 - 21 June 2024, Parc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024 There can be no sustainable world without peace and security. Founded in 1967, the exhibition...

May

Paris Marriott Rive Gauche & Conference Center

Future Artillery, 21-23 May 2024, Paris Marriott Rive Gauche & Conference Center, France

DELIVERING FIRES IN THE MULTI-DOMAIN BATTLESPACE As artillery reasserts itself as the ‘King of Battlefield’ in the wake...

May

United Arab EmiratesADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR Abu Dhabi 2024, 21-23 May 2024, ADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR ACCELERATING TRANSFORMATION IN THE NATIONAL SECURITY ECOSYSTEM ISNR Abu Dhabi is the region’s most trusted...

View All Events

Companies

ORITEST spol s r.o.

Iteco S.A.

Naser Mohamed Al-Sayer Asphalt Production Co. W.L.L.

View All Companies