CYFIRMA, a predictive cyber-threat visibility and intelligence analytics platform company backed by Goldman Sachs and Zodius Capital, today announced its Cyber-threat Predictions for 2020.
The company’s proprietary Artificial Intelligence (AI) and Machine Learning (ML) technology analyzed global threat indicators and revealed the trade wars will fuel cyber-attacks on rivals, with more nations adopting cyber-warfare capabilities and starved nations continuing to use cyber-attacks as the new engine to grow their economy.
The company also predict new technologies such as 5G, Internet of Things (IoT), Autonomous Critical Infrastructure, Artificial Intelligence (AI), Industry 4.0, Cryptocurrency, Cloud, Virtual Reality, Augmented Reality and Drones will subject government and businesses to further cyber risks.
CYFIRMA’s research indicates hackers’ interests are growing towards traditional and non-traditional industries such as research institutions, chemical, shipping, logistics, product and technology companies.
Kumar Ritesh, CYFIRMA’S Chairman and CEO, said:
“2019 was a watershed year for cyber-security. CYFIRMA’s Threat Intelligence saw an unprecedented onslaught of cyber-attacks led by state-sponsored hackers performing corporate espionage in support of their government’s agenda to gain geopolitical supremacy and support local companies in competing with rivals from other nations.
“Hackers have gained momentum in finding new avenues to attack industries and nations as IT systems remained vulnerable with software programs and applications that are outdated, poorly configured and laden with weaknesses.
“Government and businesses must adopt a much more proactive approach in preventing reputational damage, ensuring business continuity and protecting national interests, and this can only be accomplished when real-time insights and actionable intelligence work hand in hand with other cyber-security measures.”
Based on CYFIRMA’s research and data analyzed from multitude of sources worldwide, the following are the threat and risk predictions for 2020:
1. Trade wars will bring new impetus to cybercrime: Recent confrontations between US-China and Japan-South Korea will create a geopolitical supremacy race and fuel cyber-warfare. Strategies such as new tax regime and injunctions prohibiting companies from competing nations will only increase involvement of state-sponsored cybercriminals to further their own industries and political agendas. During the Huawei and US government conflict, Huawei blamed the US government for launching systematic attacks to infiltrate its networks and possibly harass its employees. A precursor to this was the US government’s banning of Huawei’s products due to security related issues.
Recently in November 2019, to gain an unfair edge in the ongoing trade war, suspected Chinese hackers breached into the National Association of Manufacturers (NAM) IT systems, a US manufacturing group with deep ties with the US government.
2. Conflicts amongst nations will fuel cybercrime: Geopolitical supremacy, war hysteria and historical differences will spur state-sponsored hackers to accelerate their cyber-attack campaigns. Social hacktivists, political parties and large corporations will be drawn to cybercrime as a mean to achieving business and political objectives, thus fueling the expansion of paid hackers’ economy.
Japan and South Korea’s relationship deteriorated rapidly early this year over wartime issues and bilateral trade differences. The acrimony has spilled into cyber and defense arenas with South Korea terminating its bilateral military intelligence pact with Japan in August, and Japan retaliated by relegating South Korea to a diminished position.
3. Hackers will recycle and reuse existing attack vectors for new cyber-attacks: Entry of new nations such as Vietnam, Iran, Brazil and Spain to cyberwarfare will create new complexities for cyber defenders. Based on CYFIRMA’s research, hacking groups from these nations are employing low-cost modus operandi by reusing old vulnerabilities and existing malwares to make quick gains in furthering their state-sponsored agenda.
CYFIRMA’s intelligence observed a suspected Vietnamese state-sponsored group, OceanLotus, exploiting old vulnerabilities and using existing malwares to attack opinion leaders, influencers, banks, media houses, real estate agencies and foreign enterprises across several countries including China, Laos, Thailand and Cambodia.
4. Hacking as a business: Nations starved of financial resources will continue to weaponize cyberattacks as their new business model to propel their economy. In addition to direct financial gains, the focus will also extend to providing hacking-as-a-service to other nations and corporates. Lazarus Group, suspected to be affiliated with the North Korean government, attacks for financial and political gains. Such hacking groups can be hired by other nations and organizations to launch large scale cyber-attacks.
In the ongoing Japan-South Korea spat, CYFIRMA observed ‘hacker-for-rent’ profiles from North Korea and Russia being employed to launch cyber-attacks against Japanese companies, especially those in the semiconductor, education, press & media, technology, tourism, cosmetic, and food & beverages industries.
5. Expansion of cyber sleeper cells: There is a race amongst state-sponsored hackers to create a bigger footprint of implants by hacking into other nation’s systems, intended at creating launching pads for future cyber-attacks. Developed and developing nations are continuously hunting and expanding their cyber assets to be used as ammunition for next generation all-out cyberwarfare and global conflicts.
6. Cyber-criminals engineering public opinion: Cyber-criminals are actively involved in changing the social and economic configuration of society by influencing public opinion, including tampering with state elections. CYFIRMA threat intelligence revealed escalating interests of hackers towards other national apparatus such as social stratification, government policies, rating-ranking agencies and other decision-making bodies.
7. Global sporting events attract hacker’s interests: International sporting events such as Tokyo 2020 Olympic games will notice a change in attack vectors with hackers increased interest in sporting companies, games sponsors, organizing committee and critical infrastructure agencies from the host nation.
8. Malware attacks will be increasingly complex: Launching malware attacks for sensitive data exfiltration will continue to be an area of focus for hackers. Multi-homed malware attacks with ability to change its behavior based on environment, systems, applications and instructions will challenge organizations. New variant of ransomware will not only encrypt and demand for ransom but could also reincarnate itself as data exfiltration malware. Self-generating and self-destroying worms will be heavily deployed by cyber criminals. These are some of the key challenges that will keep cyber-defenders on their toes.
9. Cyber-criminals are about to have a quantum leap: Quantum computing is receiving increased interest in the hacking community. The technology will accelerate the compromise of cybersecurity schema such as public key infrastructure, complex cryptography, encryption and integrity algorithms in a matter of seconds. The rise of state-sponsored actors could mean malevolent nations facilitating easy access to quantum computing resources to arm cyber-criminals.
10. Emerging and Elastic Attack Surface: Hackers will continue to advance their attack vectors using emerging technologies such as 5G, Internet of Things (IoT), Autonomous Critical Infrastructure, Artificial Intelligence, Industry 4.0, Cryptocurrency, Cloud, Virtual Reality (VR), Augmented Reality (AR) and Drones.
The post #Privacy: Cyber-threat horizon for 2020 as seen through the eyes of intelligence experts appeared first on PrivSec Report.