By CAPosts 20 November, 2020 - 11:13am 79 views
With the pandemic and quarantine, digitization accelerated, empowering many sectors and also growing challenges in terms of cybersecurity . Phishing attacks , information hijacking by means of ransomware and other forms of deception marked these months and could increase next year. Being informed is the first measure to take precautions
Predictions for 2021
Phishing or identity theft
Impersonation, or phishing , is a type of fraud by means of which a cybercriminal impersonates a company, entity or some other group with the aim of tricking the user into offering him his access credentials to an email, page or bank accounts.
“Definitely, attacks, especially phishing ones, will continue to increase. They will be more and more complex. During 2019, approximately USD 600 million in data were lost ”, explained Ramón Castillo, Forcepoint engineer, in dialogue with Infobae. And he underlined that the industry most attacked in the region was the financial one , with 71% of the attacks, among which phishing increased by 600 %, just at the beginning of the year.
“The tendency to carry out most of our activities It will remain online at least until the middle of next year for issues related to the pandemic, which means fertile ground for cybercriminals to continue their fraud, theft and extortion campaigns. Moreover, the attacks with the highest profit potential, those that target companies and public entities, will be more coordinated and, therefore, more damaging, ”warned Dmitry Bestuzhev , director of the research and analysis team for Latin America at Kaspersky.
data hijacking It is known as ransomware to a type of cybercrime that consists of the hijacking of data by means of a malicious program that encrypts files preventing the user from having access to the content.
To restore access to that content that is kidnapped , encrypted and inaccessible to the user, the cybercriminal asks the user to pay a ransom in cryptocurrency format.
From Kaspersky they anticipate that there will be more targeted ransomware attacks in Latin America. They explain that, in general, Latin American cybercriminals copy the techniques of their Eastern European counterparts and anticipate that local development of this type of threat may occur with schemes similar to those carried out by infamous groups such as Egregor, Ragnar Locker, Netwalker, Sodinokibi , and others.
Sophos anticipates that more sophisticated ransomware families will continue to refine and change their techniques, tactics, and procedures (TTP) to become more evasive and nation-state-like sophistication, targeting larger organizations with ransom demands. billionaires.
“In 2020, these families include Ryuk and RagnarLocker. At the other end of the spectrum, the lowest level, Sophos anticipates an increase in the number of novice attackers, who will look for simpler ransomware , such as Dharma , which allows them to target smaller prey but in large volumes ”, it is mentioned in the study released.
In 2020, Sophos reported on Maze, RagnarLocker, Netwalker, REvil and other ransomware families employing the extortion technique
WhatsApp account theft
Currently they steal WhatsApp accounts through social engineering, that is, deception techniques that aim at the victim offering the access code that he receives by SMS. Then the cybercriminals ask for money to return access to the service.
From Kaspersky they anticipate that this type of deception will continue in force and that in the near future it will be even more attractive to carry out these scams due to the expansion of WhatsApp Pay.
In 2021, and beyond, disinformation will continue to increase in focus and scope. "While disinformation is a big and growing threat, it is interesting to think what new technology could emerge from experts raising the issue at government levels, or how social media can evolve to meet this urgent challenge ," they highlighted from Forcepoint .
For their part, from Kaspersky they stated that cybercriminals will use techniques linked to artificial intelligence to orchestrate disinformation campaigns or to spread malicious code . "In 2021, cybercriminals will begin to see the value of using frameworks and machine learning engines to make the detection of their malicious campaigns even more complicated," the company mentioned in its report.
Malware hidden in legitimate tools to evade cybersecurity services
Sophos believes that cybercriminals will continue to take advantage of the abuse of legitimate tools to hide as they prepare to launch their main attack. By hiding inside a legitimate tool they stay under the radar , but cybersecurity specialists can stay ahead of this threat.
“Experts know the subtle anomalies and can detect those traces that criminals often leave, such as using a legitimate tool at the wrong time or place. For trained threat hunters or IT administrators using endpoint detection and response (EDR) features, these signals are valuable signs that can alert security teams to a potential intruder and an ongoing attack, ”he explained. Chester Wisniewski , Senior Research Scientist, Sophos
Synthetic Identities for Financial Crime
According to McKinsey, synthetic identity fraud is the fastest growing type of financial crime in the United States and is spreading to other geographies. The use of credentials to create a false profile with the aim of requesting credits or opening illegitimate accounts is known as synthetic identity .
"We see many cases of data theft by employees who believe that they will not be discovered and, on the other hand, a large amount of data leaks caused by human error or poor security management," they analyzed from Forcepoint.
How to protect yourself
As users it is important to be informed so as not to click on potentially malicious sites or apocryphal pages that could lead to theft of data and access credentials.
Secondly, it is essential to use different passwords for different accounts. Password managers are a good tool to do this. In addition, it is important to activate the second factor of authentication in all profiles.
It is important to keep operating systems updated because with each update security patches usually arrive that resolve flaws that can be exploited by cybercriminals.
It is also suggested to have solutions for security on all devices used . In the case of companies, it is also essential that they have a team specialized in maintaining security and also that they take care of raising awareness and training staff in the safe use of computer equipment and systems.
- These are the passwords you should never choose
- What are the cybercrimes that could grow in 2021
- Over 100,000 Facebook account credentials were compromised in a global scam
- Twitter hired a famous former hacker as head of security
- Zoom adds a new feature that allows you to kick and report annoying participants