{"id":50444,"date":"2013-12-29T12:10:25","date_gmt":"2013-12-29T10:10:25","guid":{"rendered":"http:\/\/businesstech.co.za\/news\/?p=50444"},"modified":"2013-12-29T12:12:56","modified_gmt":"2013-12-29T10:12:56","slug":"key-security-attacks-in-2013","status":"publish","type":"post","link":"https:\/\/businesstech.co.za\/news\/it-services\/50444\/key-security-attacks-in-2013\/","title":{"rendered":"Key security attacks in 2013"},"content":{"rendered":"<p>Kaspersky Lab, a security solutions provider, says that some of the revelations of the past year around cyber security raised questions about the way we use the Internet and the type of risks we face, including cyber-mercenaries, and a new threat\u00a0through the evolution of a new Bitcoin ecosystem.<strong><br \/>\n<\/strong><\/p>\n<p>Kaspersky says that in 2013 advanced threat actors have continued large-scale operations, and cyber-mercenaries, specialist APT groups \u201cfor hire\u201d which focus on hit-and-run operations emerged.<\/p>\n<p>Hacktivists were constantly in the news, together with the term \u201cleak\u201d, which, according to Kaspersky, is sure to put fear into the heart of any serious sys-admin out there. In the meantime, cyber-criminals were busy devising new methods to steal money or Bitcoins, it said.<\/p>\n<p>Edward Snowden and the wider privacy implications of his revelations were also headline news in 2013, with one of the first visible effects being the shutdown of encrypted e-mail services such as Lavabit and Silent Circle.<\/p>\n<p>&#8220;The reason was their inability to provide such services under pressure from law enforcement and other governmental agencies. Another story which has implications over privacy is the NSA sabotage of the elliptic curve cryptographic algorithms released through NIST, Kaspersky said.<\/p>\n<p>New \u201cold\u201d cyber-espionage campaigns: up to 1,800 victim organisations in 2013:<\/p>\n<ul>\n<li>The majority of the cyber-espionage campaigns that Kaspersky Lab\u2019s analysts have seen were designed to steal data from governmental agencies and research institutions \u2013 Red October, NetTraveler, Icefog and MiniDuke all behave this way.<\/li>\n<li>The most widespread campaign of the year was NetTraveler espionage which affected victims from 40 countries all over the world.<\/li>\n<li>For the first time ever cyber-criminals harvested information from mobile devices connected to the victims\u2019 networks \u2013 clear recognition of importance of mobile to hackers.<\/li>\n<li>Red October, MiniDuke, NetTraveler and Icefog all started by \u2018hacking the human\u2019. They employed spear-phishing to get an initial foothold in the organisations they targeted<\/li>\n<\/ul>\n<p>Kaspersky warns that any organisation or person can become a victim. &#8220;Not all attacks involve high profile targets, or those involved in \u2018critical infrastructure\u2019 projects. Those who hold data could be of value to cyber-criminals, or they can be used as a \u2018stepping-stones\u2019 to reach other targets,&#8221; the security firm said.<\/p>\n<p>This point was amply illustrated by Icefog attacks in2013, it said. &#8220;They were part of an emerging trend that appeared in 2013 \u2013 attacks by small groups of cyber-mercenaries who conduct small hit-and-run attacks. Going forward, we predict that more of these groups will appear as an underground black market for \u2018APT\u2019 services begins to emerge,&#8221; said Costin Raiu, director of the Global Research and Analysis team, Kaspersky Lab.<\/p>\n<p><strong>Why cyber crime?<\/strong><\/p>\n<p>Stealing money \u2013 either by directly accessing bank accounts or by stealing confidential data \u2013 is not the only motive behind security breaches, Kaspersky notes.<\/p>\n<p>They can also be launched to undermine the reputation of the company being targeted, or as a form of political or social protest. Ongoing hacktivist activities continued through 2013.<\/p>\n<p>\u2018Anonymous\u2019 group has claimed responsibility for attacks on the US Department of Justice, Massachusetts Institute of Technology and the web sites of various governments.<\/p>\n<p>Those claiming to be part of the \u2018Syrian Electronic Army\u2019 claimed responsibility for hacking the Twitter account of Associated Press and sending a false tweet reporting explosions at the White House \u2013 which wiped $136 billion off the DOW. For those with the relevant skills, it became easier to launch an attack on a web site than it is to co-ordinate the real-world protests.<\/p>\n<p><strong>Bitcoins ruling the world<\/strong><\/p>\n<p>The Bitcoin system was implemented back in 2009. In the beginning, this crypto currency was used by hobbyists and mathematicians. Soon, they were joined by others \u2013 mostly ordinary people, but also cyber-criminals and terrorists. They provide an almost anonymous and secure means of paying for goods.<\/p>\n<p>In the wake of the surveillance stories of 2013, there is perhaps little surprise that people are looking for alternative forms of payment. And it is gaining popularity \u2013 in November 2013, the mark surpassed the 400$ for one Bitcoin.<\/p>\n<p>The methods used by cyber-criminals to make money from their victims are not always subtle. Apart from Bitcoins, which could potentially be stolen, &#8220;ransomware&#8221; programmes became a popular means of making easy money \u2013 cyber-criminals block access to a computer\u2019s file system, or encrypt data files stored on the computer.<\/p>\n<p>Then they warn you that you must pay in order to recover your data. This was the case with the Cryptolocker Trojan. The cyber-criminals give their victims only three days to pay up, accepting different forms of payment, including Bitcoin.<\/p>\n<h3 class=\"my-4\">More on cyber security<\/h3>\n<p><a title=\"Cyber security losses remain unknown\" href=\"http:\/\/businesstech.co.za\/news\/international\/48984\/cyber-security-losses-remain-unknown\/\"><strong>Cyber security losses remain unknown<\/strong><\/a><\/p>\n<p><a title=\"UN warns on mobile security holes\" href=\"http:\/\/businesstech.co.za\/news\/mobile\/42508\/un-warns-on-mobile-security-holes\/\"><strong>UN warns on mobile security holes<\/strong><\/a><\/p>\n<p><a title=\"America prepares for cyber war\" href=\"http:\/\/businesstech.co.za\/news\/internet\/39581\/america-prepares-for-cyber-war\/\"><strong>America prepares for cyber war<\/strong><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kaspersky Lab says that some of the revelations of the past year around cyber security raised questions about the way we use the Internet.<\/p>\n","protected":false},"author":10,"featured_media":48856,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[31],"tags":[5537,26,2953,375],"class_list":["post-50444","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-it-services","tag-bitcoin","tag-headline","tag-kaspersky-lab","tag-security"],"_links":{"self":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/50444","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/comments?post=50444"}],"version-history":[{"count":7,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/50444\/revisions"}],"predecessor-version":[{"id":51271,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/posts\/50444\/revisions\/51271"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/media\/48856"}],"wp:attachment":[{"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/media?parent=50444"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/categories?post=50444"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businesstech.co.za\/news\/wp-json\/wp\/v2\/tags?post=50444"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}