Top 5 Security Threats to Focus in 2018
As we enter 2018, security threats will also enter a new phase as cybercrime groups are becoming more organized and systematic than ever. Breaches will be bigger, hackers will be smarter, and security teams and budgets won’t seem to keep pace. AhnLab researchers and analysts identified the following as some of the bigger security threats for the new year.
Cybercrime-as-a-Service
2017 has seen a huge increase in cybercrime, particularly crime-as-a-service. As general users were able to manufacture and distribute Ransomware through Ransomware-as-a-Service (RaaS), the related attacks have increased. The process will continue in 2018, wit hcybercrime groups diversifying into new markets and new methods.
Increasing Supply Chain Attacks
Issue of the vulnerability of the supply chain has been the talk for years. It is not an exception in 2018. Supply chain attacks will continue their highly successful attack methods this year. Attention should be paid to the ongoing supply chain attack for many companies and institutions, especially program makers and service providers.
Diversification of Attack Methods
Fileless attacks continued to rise in popularity. With the fact that security solutions including antivirus software focus more on attached files, cybercrimes are turning their eyes to fileless attacks. This attack method allows hackers to remain concealed and make it more difficult for victims to response, allowing attackers to stay alive in an environment longer.
Expansion of Target Platforms and Devices
In 2017, a ransomware attack targeting Linux servers have made a huge damage in web hosting companies. There are no safe zones anymore. Linux follwed by MacOS, Android and Windows is expected to be exposed to security threats this year.
Increase of Mobile Threats through Official Market
Official app market was one way to prevent downloading mobile malware till now. However, again there are no safe zones. More cybercrime groups are registering malicious apps in official app market bypassing the security checks.