Threat H.W.HL1H.3

URI: H.W.HL1H.3

Description: Malware infection of device Host from paired device RemoteHost in Space: if RemoteHost is infected by malware, and RemoteHost connects via USB or Bluetooth with device Host then the malware may be automatically transferred to or ingested by Host.

Threat Type: Primary Threat

Matching Pattern:

MP-HL1H

Finds two hosts connected via a Bluetooth or USB pair, and the space in which this connection is established, the interface connecting with one of them, and optionally the manager of that host.

(empty)

MalwareInfection at Role_Host

CSG-AntiMalwareAtHost	Anti-malware software is installed on device *Host* and kept up to date by regular software patches, and so can detect and prevent the execution of malicious code.
CSG-SecureHostConfig	Device *Host* is configured securely: passwords or other authentication are set up including resetting default passwords for all user and administrator accounts, auto-run features disabled to prevent execution without user authorisation for files from removable storage or from the internet, and unnecessary software and especially network accessible services removed or disabled.

Threat H.W.HL1H.3

MP-HL1H

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (2)