November 20, 2018 - Wording & #8211; ItForum 365.
…
THE WatchGuard Technologies, an advanced network security solutions company, announces a series of 2019 information security predictions. Among them is the emergence ofvaporworms, ”A new generation of fileless malware with worm-like properties that self-propagate through vulnerable systems that bring down the internet, this ransomware targets industry control systems and utilities. WatchGuard's Threat Lab research team developed these predictions based on an analysis of key security trends and threats identified last year. Check it out below.
1. Emergence of Malware woms “Vaporworms” or Fileless
In 2019, fileless malware with similar properties to worms allowed it to self-exploit by exploiting software vulnerabilities. Fileless malware is the most difficult to identify and block by traditional endpoint detections because it runs entirely in memory without ever leaving a file on the infected system. Combine this trend with the number of systems running uncorrected software and vulnerable to certain exploits, 2019 will be the year of vaporworm.
2. Internet will be held hostage
Hacktivist groups or nation-states will launch a coordinated attack on Internet infrastructure in 2019. The Internet Control Protocol (BGP) operates largely on the honor system, and a 2016 DDoS attack on hosting provider Dyn showed that A single attack on a single provider could topple the top sites. What does that mean? The Internet itself is ready to be taken by someone with DDoS capabilities at various critical points that underpin the Internet or abuse its own underlying protocols.
3. State-level cyber attacks on the UN force a UN cyber security treaty
The UN will tackle the issue of state-sponsored cyber attacks more strongly by promulgating a Multinational Cyber Security Treaty in 2019.
4. AI-led chatbots
By 2019, cyber criminals and black hat hackers will create malicious chatbots on legitimate websites to trick and encourage victims into clicking malicious links, downloading files with malware, or sharing private information.
5. A Big Biometric Hack Will Be the Beginning of the End of One-Factor Authentication
As biometric logins, such as Apple's FaceID, become more common, hackers take advantage of the false sense of security and decipher a scaled biometric login method to perform a major attack. As a result, 2019 will see rapid growth in the use of multifactor authentication (MFA) for additional protection between more security-aware groups, particularly push-based authentication and MFA for cloud application defense.
6. Nation-state will receive “Fire Sale” attacks, from fiction to reality.
In the “Hard to Kill” movie series, a “fire sale” was a fictional three-pronged cyber attack aimed at a city's or state's transportation operations, financial systems, utilities, and communications infrastructure. The fear and confusion caused during this attack was designed to allow terrorists to divert huge sums of money undetected. Modern cyber security incidents suggest that terrorists have developed these capabilities, so 2019 may be the first year in which one of these multi-pronged attacks occurs to conceal clandestine operations.
7. Blackouts from Hackers Focused on Utilities and Industrial Control Systems
Targeted ransomware campaigns will cause chaos in 2019, targeting industrial and utility control systems for larger payments. The average payout will increase by over 6500%, from US$ 300 to US$ 20,000 per attack. These scams will have major consequences such as blackouts in cities and loss of access to public services.
8. A WPA3 Wi-Fi Network will be hacked using one of six Wi-Fi threat categories.
Hackers will use rogue APs, Evil Twin APs, or any of the six known Wi-Fi threat categories (defined by the Trusted Wireless Environment Framework) to compromise a WPA3 WIFI network by 2019, despite improvements made to the new WPA3 encryption standard. . Unless broader security is incorporated into Wi-Fi infrastructure across the industry, users may feel misled about their security with WPA3 while still susceptible to attacks like Evil Twin APs.
About [SAFEWAY]
THE [SAFEWAY] is a widely recognized company as a provider of premium information security and cybersecurity solutions. From its extensive portfolio, we highlight several solutions, including those based on platforms:
- Archer da RSA Security, considered by the institutes Gartner and Forrester and by the market itself, the most complete process integration solution for Governance, Risk Management, Compliance and Business Continuity Management;
- [SAFEWAY]Security Tower, supported by IBM Qradar (Watson technology), tailored to each organization in its security and cyber defense management needs.
- And others, involving technologies Imperva, Thales, BeyondTrust, Manly, WatchGuard Technologies.