Kaspersky: 2016 the end of APT attacks as we know them

During Kaspersky Lab's European Cyber ​​Security Week, which is taking place today in Budapest, Kaspersky Lab experts revealed their predictions for 2016.

The forecasts for 2016 are based on the experience of the World Research and Analysis Group, 42's leading global security experts around the world. Each member of the Group contributed with its unique know-how. Only 2015, their expertise and information, led to detailed reports on 12 APT attack agents who spoke different languages, such as French, Arabic, Chinese, Russian and English, among others.Kaspersky Security

"The security industry will find a new year of developments ahead of it. We believe that sharing our knowledge and predictions with our colleagues as well as with government agencies, prosecutors and private sector organizations will promote the necessary cooperation to prevent and face upcoming challenges ahead of us, said Marco Preuss, Head of the European Research Center at Kaspersky Lab.

Kaspersky experts estimate that digital espionage will see major developments in 2016. Initially, there will be a dramatic change in the way of building and operating APT carriers. It is expected that we will see reduced emphasis on "persistence" and greater focus on malware programs that are either installed in the device memory or do not create envelopes to reduce traces they leave in an "infected" system and to avoid locating them. In addition, it is estimated that these players will have less need to demonstrate superior digital skills. Therefore, returning an "investment" to such instruments will determine much of the relevant decision-making process for state-supported attackers. Therefore, there will be redirection to ready malicious programs instead of "investments" in bootkits, rootkits and custom malicious software.

In the longer term, it is expected that more "new players" will enter the field of APT attacks. The number of "digital mercenaries" will increase, as there will be more stakeholders who are aiming to gain from online attacks. "Digital mercenaries" will offer expert knowledge to anyone who is willing to pay, and will also sell digital access to high-quality victims, a practice that could be described as "Access-as-a-Service".

Consumer threats will also evolve. According to Kaspersky Lab experts, the programs will gain more ground than banking Trojans and are expected to expand into new areas, such as OS X software devices, which often hold richer and therefore more lucrative targets, but also mobile devices and the Internet-of-the-world in general. Things.

Digital criminals are constantly looking for new ways to force their victims to pay. Therefore, alternative payment systems, such as ApplePay and AndroidPay, as well as stock markets are expected to be growing targets for financial digital attacks.

2015, Kaspersky Lab's experts noted an increase in the number of DOXing attacks, ie public attacks and blackmail attacks, as many (from Hactivists to government agencies) adopted the strategy of publishing private photos, information, and customer lists using to shame his goals. Unfortunately, Kaspersky Lab expects that this practice will continue to grow with 2016 geometrically.

Για να είναι σε θέση να ελαχιστοποιήσουν τους μελλοντικούς κινδύνους που συνδέονται με τις ψηφιακές επιθέσεις του μέλλοντος, οι επιχειρήσεις θα πρέπει να δημιουργήσουν και να αναπτύξουν μια ολοκληρωμένη στρατηγική για την ασφάλεια. Είναι σημαντική η εκπαίδευση του προσωπικού σχετικά με την ψηφιακή ασφάλεια, η εφαρμογή πολυεπίπεδης προστασίας για τερματικούς χρήστες με επιπλέον προληπτικά στρώματα για την προστασία όλων των στοιχείων της υποδομής, η εφαρμογή patch για τρωτά σημεία, η προσοχή σε ό, τι είναι mobile και η εφαρμογή κρυπτογράφησης στις επικοινωνίες και τα ευαίσθητα δεδομένα. Οι εταιρείες που αντιμετωπίζουν υψηλό κίνδυνο να πέσουν θύματα ψηφιακών επιθέσεων, θα πρέπει να εξετάσουν το ενδεχόμενο of a special Security Operations Center.

Τα μεμονωμένα άτομα θα πρέπει να επενδύσουν σε μια ισχυρή λύση ασφάλειας για όλες τις συσκευές και να στραφούν στην κρυπτογραφημένη επικοινωνία. Ωστόσο, δεν θα πρέπει να βασίζονται αποκλειστικά στην τεχνολογία. Μελετώντας τα βασικά στοιχεία της ψηφιακής ασφάλειας και διερευνώντας τις επιλογές που συνοδεύουν μιας λύση ασφάλειας, μπορούν να αποφύγουν πολλά περιστατικά. Άλλωστε, με ολοένα και μεγαλύτερο μέρος της ζωής μας να βρίσκεται εκτεθειμένο , θα μπορούσε να φανεί χρήσιμη η αναθεώρηση των online συνήθειων μας, καθώς άπαξ και οι they "go up" to the Internet, stay there forever, and can be used against individuals or businesses.

The full text of the relevant report is available on the site Securelist.com. To refer to the predictions of Kaspersky Lab experts for 2015, you can read the posts of Kaspersky Security Bulletin 2014, titled "Forecasts 2015» and "

"The security industry will find a new year of developments ahead of it. We believe that sharing our knowledge and predictions with our colleagues as well as with government agencies, prosecutors and private sector organizations will promote the necessary cooperation to prevent and face upcoming challenges ahead of schedule, "said Marco Preuss, Head of the European Research Center at Kaspersky Lab.

Kaspersky experts estimate that digital espionage will see major developments in 2016. Initially, there will be a dramatic change in the way of building and operating APT carriers. It is expected that we will see reduced emphasis on "persistence" and greater focus on malware programs that are either installed in the device memory or do not create envelopes to reduce traces they leave in an "infected" system and to avoid locating them. In addition, it is estimated that these players will have less need to demonstrate superior digital skills. Therefore, returning an "investment" to such instruments will determine much of the relevant decision-making process for state-supported attackers. Therefore, there will be redirection to ready malicious programs instead of "investments" in bootkits, rootkits and custom malicious software.

In the longer term, it is expected that more "new players" will enter the field of APT attacks. The number of "digital mercenaries" will increase, as there will be more stakeholders who are aiming to gain from online attacks. "Digital mercenaries" will offer expert knowledge to anyone who is willing to pay, and will also sell digital access to high-quality victims, a practice that could be described as "Access-as-a-Service".

Consumer threats will also develop. According to Kaspersky Lab specialists, ransomware programs will gain more ground in relation to banking Trojan and are expected to expand into new sectors, such as OS X devices, which often hold richer and therefore more profitable targets, as well as in general mobile devices and Internet-of-Things.

Digital criminals are constantly looking for new ways to force their victims to pay. Therefore, alternative payment systems, such as ApplePay and AndroidPay, as well as stock markets are expected to be growing targets for financial digital attacks.

2015, Kaspersky Lab's experts noted an increase in the number of DOXing attacks, ie public attacks and blackmail attacks, as many (from Hactivists to government agencies) adopted the strategy of publishing private photos, information, and customer lists using to shame his goals. Unfortunately, Kaspersky Lab expects that this practice will continue to grow with 2016 geometrically.

To be able to minimize the future risks associated with the digital attacks of the future, businesses will need to create and develop an integrated security strategy. It is important to train digital security staff, deploy multilevel protection for end users with additional preventative layers to protect all elements of the infrastructure, patch vulnerability, attention to mobile and application encryption in communications and sensitive data. Companies that are at high risk of falling victim to digital attacks should consider setting up a dedicated Security Operations Center.

Individuals should invest in a robust security solution for all devices and switch to encrypted communication. However, they should not be based solely on technology. By studying the basic elements of digital security and exploring options that accompany a security solution, they can avoid many incidents. Besides, with an increasing number of our lives being exposed online, it could be helpful to review our online habits as once the information is "upgraded" on the Internet, it stays there forever and can be used against individuals or businesses .

The full text of the relevant report is available on the site Securelist.com. To refer to the experts' predictions Kaspersky Lab for 2015, you can read them posts of Kaspersky Security Bulletin 2014, titled "Forecasts 2015» and "A look at the crystal ball of APT». .

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).