January 2019 - Ophtek

The 5 Biggest Cyber-Security Threats for 2019

Cyber Attack, Cyber Security, Ophtek, Security, Security ThreatsCyber Attacks, Cyber Security, Ophtek, securityOphtek, LLC

Jan 2019

A new year is here and it’s rich with opportunity, but not just from a business point of view. For hackers, 2019 promises to be a busy and lucrative year.

From enhancements to existing methods of hacking through to completely new approaches, hackers will be doing their best to breach the defenses of organizations all over the world. With methods such as cryptomining rapidly gaining popularity – and generating nice incomes for the hackers – it’s easy to see why hacking is evolving so quickly. If a hacker can design software that gives them just a 1% advantage over their rivals then there’s a good chance they will reap the financial rewards on offer. And that’s why 2019 is going to see significant advances in hacking technology.

However, it’s possible to protect your organization by educating yourself on the five biggest cyber-security threats for 2019.

A Rise in Internet of Things (IoT) Attacks

Despite the headlines regarding IoT device vulnerabilities, little has been done to rectify the flaws. Default passwords are still commonplace across devices and a demand for increased flexibility to work with various operating systems has made IoT devices easy targets. Securing your IoT devices, therefore, is crucial.

An Increase in Biometric Hacking

Biometric passwords such as fingerprint or retina recognition are methods of security which, on the surface, appear to be difficult to beat due to the individual nature of fingerprints and retinas. However, the software behind this technology is much more vulnerable. Flaws in both the software and hardware are likely to be discovered and exploited during 2019, so relying purely on biometric passwords is not a recommended strategy.

Chatbots will Start Phishing

Bots have been present online for decades, but an emerging trend has seen hackers designing chatbots that socially engineer computer users and extract their sensitive data. Computer users are becoming increasingly reliant on chatbots contained within websites for help, so it’s a clever move on the hackers’ part as it allows them to send malicious links direct to users in real time. Educating your staff on the dangers of such interactions will be essential during 2019.

A Major Cloud Hack Will Occur

The amount of data stored within the cloud is immense and it’s surprising that one of the major cloud vendors hasn’t suffered a major hack already. And this is why it’s likely that attacks on cloud vendors will increase in 2019. The cloud, of course, remains a fantastic storage solution, but make sure you’re aware of your vendors security capabilities and retain physical backups of your data.

Botnet Attacks Will Take Down the Internet

Botnets have disabled large sections of the internet before such as the 2016 attack which saw PayPal, Twitter and Amazon taken down. Naturally, this is terrible news for the organizations which have been hacked, but the knock on effect is a decrease in productivity for organizations that rely on these services e.g. accepting PayPal payments. Therefore, identifying the key online services your organization relies on and creating a contingency plan in the event of an attack is vital.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Cryptojacking Malware Rises by 4000% in 2018

cryptocurrency, cryptojacking, Internet of things, IoT Attacks, Ophtek, spam emailcryptojacking, Internet of Things, IoT, spam emailOphtek, LLC

Jan 2019

McAfee have reported that instances of cryptojacking malware have risen by a massive 4000% over the course of 2018 and are now a major security risk.

As the interest in cryptocurrencies such as Bitcoin and Ethereum has soared in the last couple of years, so has the interest in exploiting these opportunities for ill-gains. In particular, hackers have become increasingly fixated on the financial rewards available from mining cryptocurrency. Now, there’s nothing remotely illegal about mining cryptocurrency. In fact, it’s a lucrative business, but it’s also one that requires a significant amount of processing power from multiple PCs. And this is where hackers turn to underhand methods to generate this processing power.

Given this massive rise in cryptojacking activity, it’s likely that your organization will be targeted in the near future and it’s essential that you know what you’re dealing with, so let’s try to get a handle on it.

The Rise of Cryptojacking

The first quarter of 2018 saw cryptojacking activity increasing by 629% according to McAfee and a later report by Kaspersky has suggested that cryptojacking is now, in some countries, a bigger threat than ransomware. And, despite the relatively low processing power, hackers are increasingly targeting Internet of Things (IoT) devices to harness the power required to mine cryptocurrency successfully. You may wonder why IoT devices are being targeted, but the reasons are very simple: low levels of security and high volumes of online devices.

Cryptojacking’s rise in popularity can also be put down to the fact that it’s highly discreet compared to conventional malware and ransomware. Whereas those two forms of hacking will produce very obvious symptoms such as stolen data and encrypted files, cryptojacking malware runs quietly in the background. There will, of course, be a drop in the processing capabilities of an infected PC, but an average PC user will usually put this down to the age of the PC or a server problem. As a result, cryptojacking malware can flourish with little chance of being detected.

How is Cryptojacking Executed?

There are two main ways in which cryptojacking malware is able to execute its malicious payload:

Spam emails that contain a malicious link that, once clicked, download cryptomining software onto the victim’s PC.
Infected websites or ads that automatically install cryptomining software once the victim’s browser loads them up.

Detecting and Avoiding Cryptojacking

The drop in processing power that cryptojacking malware can levy on your organization’s PCs could seriously threaten your productivity. Therefore, it’s vital that you understand the warning signs of cryptojacking and how to protect your organization from such attacks.

The main warning sign of cryptojacking taking place is a drop in your CPU power. Any noticeable slowdown in productivity such as apps struggling to complete basic tasks should be investigated immediately. While it will take an IT professional to identify exactly what’s draining the PCs power, any PC user should be able to identify the slowdown.

When it comes to protecting your organization’s PCs from cryptojacking then you need to adhere to the following:

Good in-house education on the dangers of malicious links contained within emails
Install extensions in browsers that block mining software
Turn off JavaScript as this is frequently used by webpages to install cryptojacking software
Ensure correct security practices relating to IoT devices are followed

For more ways to secure and optimize your business technology, contact your local IT professionals.

Adobe Flash Remains a Security Liability

Adobe Flash, Security, Security Threats, UpdatesFlash, security, updates, vulnerabilityOphtek, LLC

Jan 2019

Adobe’s Flash Player has had a bad press in recent years due to the numerous security flaws in its design and these problems remain a major issue.

While we frequently worry about the dangers of malware and ransomware, we seem to have forgotten about the security vulnerabilities that are present in software we use every day. Flash has been exposed as having major security flaws in the last few years, so there’s been a tendency to migrate towards HTML5 code which is similar to Flash and much more secure. However, many people still use Flash online, so it’s likely that your organization will come into contact with it on a regular basis.

Understanding how to combat vulnerabilities in Flash is essential for your organization’s security, so let’s try and get a better understanding of Flash’s latest security crisis.

Flash Hits the Headlines Again

On the same day that Adobe released their latest patch for Flash, an independent security expert revealed that they had identified a glaring vulnerability in the software. This security flaw – given the unwieldy name of CVE-2018-15981 – is a curious software bug that has the potential to execute a malicious code through an instance of Flash hosted on a malicious website. Versions of Flash affected are all those up to version 31.0.0.148 and could affect the following browsers: Firefox, Chrome, Edge and Internet Explorer.

Combating Flash Vulnerabilities

The most recent version of Flash (31.0.0.153) is more than safe to use in terms of this recently discovered vulnerability, but the question remains as to whether more vulnerabilities are lurking within it. So, how do you combat the security flaws presented by Flash?

Many browsers, such as Chrome, Firefox and Edge, now insist that users have to manually activate Flash each and every time it’s encountered, but confidence tricks can easily be employed by hackers to disguise this. Flash, of course, is being discontinued at the end of 2020, so many people are simply disabling the software. With only a small minority of websites still using Flash, the loss of productivity from disabling it are considered minimal due to the alternative solutions on offer such as HTML5.

However, many organizations rely on Flash-based websites to complete essential tasks such as online customer portals etc. In these cases, the importance of monitoring crucial software updates and acting on these immediately should be a priority for all IT teams. Many businesses have been caught out on countless occasions due to a lack of care when it comes to installing patches and software updates. While this latest vulnerability does not appear to have been exploited by hackers, it could have easily led to severe data breaches and a drop in productivity for any organization affected.

Final Thoughts

Flash has been present within the landscape of the internet for over 20 years, but it almost feels as though Adobe have barely concentrated on it for the last few years. As a result, Flash has received nothing but negative feedback due to the security flaws present. Naturally, with just two years left in its lifespan, these issues will soon become irrelevant, but for now it’s vital that you regularly install updates or, where possible, disable it.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Cybersecurity in 2018: A Review

cyber attacks, Cyber Security, Security, Security Threatshacking, malware, phishing, ransomware, securityOphtek, LLC

Jan 2019

2018, just like 2017 before it, was a year packed full of cyber-security threats that our network defenses constantly tried to keep at bay.

However, the sheer number of attacks that were launched throughout 2018 meant that it was inevitable that breaches would take place. Perhaps your organization was one of the lucky ones, perhaps you were just too late to get on board with good security practices and found yourself hacked. Either way, it’s almost certain that you encountered at least one form of hacking during the year. And, hopefully, your organization managed to, at the very least, learn from the situation and improve your defenses.

With 2018 coming to a close, I decided it was a good time to take a look back over the major threats we experienced to see what we could learn and how we can prepare for 2019.

Ransomware

2017 is known by many security insiders as ‘The Year of Ransomware’ as it appeared to be in the headlines constantly. However, in 2018 there was a sharp drop in ransomware activity. By the end of Q2 2018, Malwarebytes reported that ransomware had fallen out of favor with hackers and was now only ranked as the sixth most popular form of malware. It’s suspected that this drop in activity can be put down to a rise in user awareness of ransomware scams and, perhaps most importantly, the fact that organizations rarely paid any ransom fees. The threat of ransomware, of course, still remains albeit much reduced and vigilance remains key to avoid disruption.

Cryptomining

One of the main reasons for ransomware’s fall in popularity during 2018 is down to the increase in popularity of cryptomining malware. Kaspersky revealed that while ransomware infections have dropped by 30%, cryptomining infections rose by 44.5% over the same 12 month period. And this change in fortunes shouldn’t come as a big surprise. All ransomware guarantees is that a ransom demand will be issued, no incoming funds are guaranteed as organizations often refuse to pay due to having backups. With cryptomining, however, once the infection is in place, the hackers can begin to reap small financial benefits fairly soon.

Phishing Emails

Despite the crude appearance and execution of phishing emails, they remain one of the most deceptive threats out there to organizations. Capable of extracting highly sensitive data, phishing emails have continued to enjoy popularity with scammers and hackers. Data from Kaspersky demonstrates that the proportion of spam in email traffic reached 53.49% in September 2018 – up from 47.7% in April 2018. And, through Kaspersky’s defenses alone, just over 137 million attempts to direct users to scam websites were carried out through phishing methods.

Preparing for 2019

There’s never time to rest on your laurels in cyber-security and the data above clearly underlines this fact. While the recent horror stories of ransomware may, to a degree, be muted, this method of hacking has very quickly been replaced with the more discreet techniques of cryptomining. And this is all without mentioning the gargantuan risk posed from phishing emails which remain as popular as ever. Going into 2019, it’s crucial that your organization is aware of the signs, symptoms and ramifications of all the major hacking techniques they may encounter while at work. Only then will you stand your best chance of being protected.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Monthly Archives: January 2019

A Rise in Internet of Things (IoT) Attacks

An Increase in Biometric Hacking

Chatbots will Start Phishing

A Major Cloud Hack Will Occur

Botnet Attacks Will Take Down the Internet

The Rise of Cryptojacking

How is Cryptojacking Executed?

Detecting and Avoiding Cryptojacking

Flash Hits the Headlines Again

Combating Flash Vulnerabilities

Final Thoughts

Ransomware

Cryptomining

Phishing Emails

Preparing for 2019