McAfee Cybersecurity Predictions 2019: Malware-as-a-service families to strengthen

Must Read

Explained: The evolving nature of cybersecurity threats

Concerns such as hacking and the presence of computer viruses have existed for decades in one form or another. As technology evolved over the years, so did the cybersecurity  threats themselves.

Sapience Analytics signs distribution agreement with Redington

Sapience Analytics and Redington said that they have entered into a distribution agreement where latter will resell the Sapience Vue solution through its network of over 30,000 channel partners, system integrators, and value-added resellers countrywide.

Andhra Pradesh to resurvey and digitise all land records

The push for resurvey and of land records in comes from the success of resurvey done in Thakkellapadu of Jaggayyapeta mandal in Krishna district

McAfee Cybersecurity Predictions 2019: As we come closer to the new year, Cybersecurity firm McAfee has identified rising trends and how they are predicted to change the cyberthreat landscape in 2019. The company researchers expect malware-as-a-service families to strengthen, energizing the market for attack outsourcing and the evolution of increasingly innovative and agile attack methods. As a result, corporate data, home devices and brand reputations will be under siege, with cybercriminals largely using , the cloud and mobile phones as increasingly prominent attack vectors.

Citing its recently released McAfee Labs 2019 Threats Predictions report, the company said that cybercriminals underground are likely to consolidate and collaborate through stronger partnerships and prevalence of attack outsourcing will lead to use of artificial intelligence in evasion tactics. The company also predict that digital assistants will become the next vector for home IoT attacks and data-rich social media platforms will continue to be popular attack targets.

“In 2018, we witnessed even greater collaboration among cybercriminals through underground alliances,” said Raj Samani, chief scientist at McAfee. “This collaborative mentality has allowed for efficiencies in underground technologies and tactics, and the evolution of bad actors into some of the most organized and agile adversaries in the world. However, while we expect the underground market collaboration to continue, the year 2019 will also see cybersecurity alliances of defenders continuing to mature and further fortify defenses.”

Malware-as-a-service families to strengthen

Cybercriminals are quickly fortifying the malware-as-a-service market by aligning to sell modular attack components. These one-stop shops make it easier for criminals of all experience and skill levels to execute successful attacks. This market consolidation will continue in 2019 and cybercriminal enterprises are expected to flourish as established cyber gangs partner with other top-level services such as money laundering, evasion techniques, and vulnerability exploits. As evidenced by conversations within the underground community, an increase is expected in mobile malware, botnets, banking fraud, ransomware, and attempts to bypass two-factor authentication.

Cyberattacks Made Simpler with Easy Access to Technologies

As security gets stronger, bad actors need to be increasingly inventive. The availability of modular attack components on the underground market is expected to enable attackers to combine and repurpose established tactics and technologies to achieve new goals.

Artificial Intelligence for Improved Evasion: The accessibility of technologies such as artificial intelligence-as-a-service will enable cybercriminals to develop cyberattacks with increasingly sophisticated evasion techniques. With artificial intelligence, cybercriminals will have the ability to automate target selection, scan for target network vulnerabilities, and assess the posture and responsiveness of infected environments to avoid detection before deploying later stages of attacks.

Nation-State Strategies Repurposed for Corporate Extortion: Bots used to amplify deceitful messaging have already been created and are available for sale on the cybercriminal underground. Following in the footsteps of recent infamous nation-state campaigns to sway public opinion, cybercriminals will likely repurpose bots and leverage social media to extort organizations by threatening their brands.

Synergistic Superthreats for Attack Success: Bad actors are expected to evolve their usual strategy centered on the use of a single threat, in favor of combining several attack types to bypass defenses. For example, by combining phishing, steganography and fileless malware for an attack with multiple goals. These synergistic superthreats will work together, blurring the traditional defense panorama and complicating the process to identify and mitigate the attack.

Cloud, Home IoT, and Social Media Platforms Under Siege

With access to increasingly effective tactics and strategies, bad actors will have the ability to focus their attacks on broader and more complicated targets. In 2019, cybercriminals are anticipated to target intellectual property, of Things (IoT) in the home and identity credentials via the cloud, digital assistants, and social media platforms, respectively.

Data Exfiltration Attacks via the Cloud: McAfee foresees a significant increase in targeted attacks on the large amounts of corporate data now residing in the cloud. As much as 21% of the content now managed in the cloud contains sensitive materials such as intellectual property, customer and personal data. Possible scenarios include cloud-native attacks targeting weak APIs or ungoverned API endpoints, expanded reconnaissance and exfiltration of data in cloud databases, and leverage of the cloud as a springboard for cloud-native man-in-the-middle attacks to launch cryptojacking or ransomware attacks.

Home IoT Attacks via Smartphones, Tablets, and Routers: New mobile malware will likely investigate smartphones, tablets, and routers to gain access to the digital assistants and home IoT devices they control. Once infected, these devices can serve as a picklock to consumer homes while supplying botnets, which can launch DDoS attacks or grant cybercriminal access to personal data and the opportunity for other malicious activities such as opening doors and connecting to control servers.

Identity Attacks via Social Media Platforms: In 2019, large-scale social media platforms will implement additional measures to protect customer information. However, as the platforms grow in numbers, cybercriminals will be further enticed to focus their resources on attacking the data-rich environments. High-impact attacks, such as those targeting industrial control systems, have seen success in part due to static password use across environments. Successful social media and other identity platform and edge device breaches will provide the keys to adversaries to launch similar attacks in the future.

Subscribe to receive the day's headlines from Tech Observer straight in your inbox

Leave a Reply

*The moderation of comments is automated and not cleared manually by techobserver.in. Embedding of any link and use of abusive or unparliamentary language are prohibited.
- Advertisement -

Latest in TECH

Sapience Analytics signs distribution agreement with Redington

Sapience Analytics and Redington said that they have entered into a distribution agreement where latter will resell the Sapience Vue solution through its network of over 30,000 channel partners, system integrators, and value-added resellers countrywide.
- Advertisement -SAP Hana

Related Articles