RaySecur Security Advisory: WARSHIPPING – IT and Network Vulnerabilities through the Mail
Aside from conventional mail threats to an organization’s personnel and infrastructure via CBRNE (chemical, biological, radiological, nuclear, and explosive) mail vulnerabilities also pose a serious risk to IT and cyber assets. Recent testing by IBM has highlighted a practice known as “warshipping” where miniature electronic devices are hidden in small packages and envelopes to enable remote access to secure WIFI networks once inside the building. These threats bridge the gap between physical security and cybersecurity and are designed to exploit one of the easiest means of entry into buildings – access through the mail. With no shortage of introduction methods, it is up to the ingenuity of the attacker. One example of this is shipping to an individual on parental leave to introduce a package into an organization that may sit unopened for months without raising alarm. The only limiting factor of these devices is the battery power required to keep them operating.
What you need to know:
· Small electronic cellular, Bluetooth and WIFI devices hidden in objects and packaging designed to enter your facility through the mail
· Once inside your building, these systems act as mobile WIFI, LTE or Bluetooth gateways that allow remote users to gain access to on-site networks and communication systems
· Active mail screening is the primary means of defense as other means of deterrence shut down or block normal facility required functions
· MailSecur mmWave scanning technology provides the most comprehensive solution to detect and mitigate these threats.
For additional information on this and other emerging threats contact: email@example.com
RaySecur™ has developed a breakthrough based on millimeter wave technology, capable of detecting and confirming powders, solids, liquids and all forms of CBREs (chemical, biological, radiological, and explosive composites) inside envelopes and small packages. Certified by the U.S. Department of Homeland Security the technology provides dynamic, real-time 3D imaging capable of detecting even a single drop of liquid, in a safe and compact desktop-size scanner. https://www.linkedin.com/company/raysecur/