Apple has ended support for its widely utilized QuickTime media player. Shortly after this announcement, TrendMicro notified the public of multiple zero-day vulnerabilities. Zero-day vulnerabilities suggest that a known vulnerability can be exploited, but no fix has been (or will be in QuickTime’s case) released by the software vendor. This would be very similar to any vulnerability identified in Microsoft XP after the End-of-Life date. It is common for cybercriminals to store up useful exploits like this to release after the end-of-life date, as they know financial institutions and businesses will be sitting ducks. Both the US-Cert and Apple have made official announcements that QuickTime should be removed from computers immediately.
If your institution is running a continuous vulnerability scanning system or you have a detailed software inventory, you should be able to quickly identify the systems that need QuickTime removed and verify that these vulnerabilities have been successfully remediated. Continuous monitoring will provide better security for your institution and a more successful outcome with your annual Vulnerability Assessment and IT Audits.
WHAT CAN SBS DO TO HELP?
In addition to providing Vulnerability Assessments and IT Audit services, we have built educational programs to assist institutions in building out continuous monitoring processes. For more information on the related education, take a look a the Certified Banking Vulnerability Assessor (CBVA) or the Certified Banking Security Technology Professional (CBSTP) online certification courses.
Article Resources: http://blog.trendmicro.com/urgent-call-action-uninstall-quicktime-windows-today/ https://www.us-cert.gov/ncas/alerts/TA16-105A https://support.apple.com/en-us/HT205771
Written by: Chad Knutson, CISSP, CRISC, CISA
President - SBS Institute
Senior Information Security Consultant - SBS
Hacker Hour webinars are a series of free webinars hosted by SBS CyberSecurity. Unlike paid webinars, Hacker Hours are aimed to meet on a monthly basis to discuss cybersecurity issues and trends in an open format. Attendees are encouraged to join the conversation and get their questions answered. SBS will also offer products and services to help financial institutions with these specific issues.