Bitdefender: In the first half of 2018, Ransomware, after years, lost its position as the number one threat. Despite initially being overcome by cryptojackers, the ransomware made a quick recovery, showing that the malware file encryption is here to stay.
Everything indicates that 2019 will be full of new threats.
For the Vitdefender, December is the month in which we share our forecasts for the new year. Here are our top 10 cyber security forecasts for 2019.
Ransomware
Being the most profitable form of malware, ransomware remains a constant threat. Many ransomware attacks may be recorded every day, but the fact is that this particular threat is not on the rise. One reason is the emergence of cryptojacking which works invisibly and can yield much higher earnings over a longer period of time. An equally important reason is the emergence of specialized security solutions directly aimed at preventing this form of malware software. There will always be new versions of ransomware, certainly some will be more sophisticated, but we generally don't expect the ransomware threat to become more sophisticated. At least not more than last year.
Internet of Things (IoT)
We expect more attacks due to the use of smart devices. The attackers will no doubt continue to exploit their inherent weaknesses. Hackers are getting better at attacking IoT products, such as baby monitors, surveillance cameras and other home appliances. And connected medical devices are no longer safe. In fact, body implants that support wireless connectivity can lead to the first ransomware attacks where you have to pay or die. Sounds too much to you? Just remember that in 2013, former US Vice President Dick Cheney asked his doctors to turn off the wireless function in his pacemaker to prevent terrorists from harassing him.
Bitdefender: MacOS attacks on the rise
Apple's share of the desktop market is growing, but so are malware designed to infect Macs. We are expecting an increase in the number of attacks targeting Mac users, and this is something that is already beginning to appear. According to the data we collect, the indications show not only new malOS-specific malware, but also macOS-specific mechanisms and tools designed to take advantage of Mac after the breach.
Macros and file-less attacks
Attacks that leverage Microsoft macros Office will increase. Macros are a feature, not a bug. This makes them the perfect bait for victims prone to scams – where the attacker convinces the victim to effectively participate in their use simply by allowing the command to run.
We expect file-less attacks - such as the use of powershell as well as other system-related tools, such as gen reg, mshta, etc. to grow in the next year.
Possible side effects (PUA) and cryptojacking
Unwanted applications (PUAs), including adware, are not a huge threat in themselves, but they are not innocent either. For example, you could download a seemingly secure application without knowing it is connected to a crypto miner or other malware.
We anticipate an increase in JavaScript-based cryptomining embedded in web pages - such as the YouTube cryptojacking incident, where cryptomining code was inserted into YouTube ads.
We expect an increase in incidents where cryptomining will be sent directly from the webpage rather than downloading a file from the victim.
Bitdefender: Fighting invisible threats
Network-level exploits will come to the fore next year and, based on the evidence so far, will be promoted on social media. Researchers should devote many hours to analyzing hardware-based implants, hardware backdoors, hardware analysis, and how software responds.
Targeting the banking sector
We expect an increase in attacks in the banking sector. We recall the example of the Carbanak group where through Phishing messages malicious code was sent and was the cause of the theft of hundreds of millions of dollars not only from banks but also from more than a thousand private customers.
GDPR will show his teeth
Here the news is optimistic: Thanks to the EU's renewed effort to protect personal data - in the form of the General Data Protection Regulation that came into force in May this year - we should expect less "data leaks". Security incidents will be limited to an organization level in an effort to avoid sanctions that could force a business to go bankrupt. Remember that the GDPR can require fines of up to 4% of a company's annual turnover, which can translate into hundreds of millions or even billions of dollars in the case of large companies and corporations.
Bitdefender: Effect of Elections in Europe
2019 is the year that Europe will elect Members of the European Parliament. If we consider recent developments in the US, we should expect similar actions in Europe, including attacks on voting systems, social media propaganda and other forms of "engagement". If a few years ago these acts were mere rumors, in the last two years they have confirmed that the world's leading powers will stop at nothing to influence political Results of their opponents.
Bitdefender: A Turn to Attacks on Mobile Devices
Fintech services pave the way for a very lucrative new trend for hackers. The more money and more integration with traditional banking systems, the more attention should be paid as it is highly likely that new threats to these services will develop next year.
_________________
- Tresorit Send: Send your files for free to 5GB
- What is a gaming router? Is it worth buying?
- WordPress that goes ball? Instructions from iGuRu.gr
