In 2011, risks are expected to grow and become more varied. Here are predictions from some of the world’s leading online, PC and mobile security service providers.
Mobile phones at risk
McAfee Labs has predicted that mobile devices, shortened URL services and internet TV platforms would be prime targets in 2011. Google’s Android, Apple’s iPhone, foursquare, Google TV and the Mac OS X platform are all expected to become major targets for cyber criminals. Kaspersky Lab too predicts that mobile operating systems would become vulnerable, and these are likely to affect Android in particular. The majority of attacks, it says, will be carried out via browsers. “We’ve seen significant advancements in device and social network adoption, placing a bulls-eye on the platforms and services that users are embracing the most,” said Vincent Weafer, senior VP in McAfee Labs. “These platforms and services have become very popular in a short time, and we’re already seeing a significant increase in vulnerabilities, attacks and data loss.”
Sophistication mimics legitimacy
Your next computer virus could be from a friend. Malicious content disguised as personal or legitimate emails and files to trick unsuspecting victims will increase in sophistication in 2011. “Signed” malware that imitates legitimate files will become more prevalent, and “friendly fire”, in which threats appear to come from your friends but in fact are viruses such as Koobface or VBMania, will continue to grow as an attack of choice by cyber criminals.
Hacktivism
Next year marks a time in which politically motivated attacks will proliferate and new sophisticated attacks will appear. More groups will repeat the WikiLeaks example, as hacktivism is conducted by people claiming to be independent of any particular government or movement, and will become more organized and strategic by incorporating social networks in the process. McAfee Labs believes hacktivism will become the new way to demonstrate political positions in 2011 and beyond.
Diversity in operation gives away data
Predicting that 2011 would be a profitable one for cyber criminals, Trend Micro points out that diversity of operating systems will expand opportunities for cyber crime. The diversity is expected to bring about a growth in exploits for alternative operating systems, programs and Web browsers, combined with tremendous growth in the use of application vulnerabilities. It also points out that cloud computing and virtualization —while offering significant benefits and costsavings — move servers outside the traditional security perimeter and expand the playing field for cyber criminals. It likewise increases the security demands on cloud service providers.
Targeting business
Kaspersky Lab says traditional cybercrime is increasingly encroaching on those areas that it has, until now, avoided — targetted attacks on businesses. Attacks used to be confined to stealing money from specific users, banking institutions and payment systems; now the technology used by cybercriminals has advanced to such a degree that they are capable of carrying out industrial espionage, blackmail and extortion. Kaspersky predicts an increasing number of attacks on corporate users and the gradual decline in direct attacks on everyday users.
cybercrime
Computer crime, or cybercrime, refers to any crime that involves a computer and a network, where the computers may or may not have played an instrumental part in the commission of a crime.
Computer crime encompasses a broad range of potentially illegal activities. Generally, however, it may be divided into one of two types of categories: (1) crimes that target computer networks or devices directly; (2) crimes facilitated by computer networks or devices, the primary target of which is independent of the computer network or device.
Examples of crimes that primarily target computer networks or devices would include:
* Computer viruses
* Denial-of-service attacks
* Malware (malicious code)
Examples of crimes that merely use computer networks or devices would include:
* Cyber stalking
* Fraud and identity theft
* Information warfare
* Phishing scams
Spam
Spam, or the unsolicited sending of bulk email for commercial purposes, is unlawful to varying degrees.
Fraud
Computer fraud is any dishonest misrepresentation of fact intended to let another to do or refrain from doing something which causes loss. In this context, the fraud will result in obtaining a benefit by:
* Altering computer input in an unauthorized way. This requires little technical expertise and is not an uncommon form of theft by employees altering the data before entry or entering false data, or by entering unauthorized instructions or using unauthorized processes;
* Altering, destroying, suppressing, or stealing output, usually to conceal unauthorized transactions: this is difficult to detect;
* Altering or deleting stored data;
* Altering or misusing existing system tools or software packages, or altering or writing code for fraudulent purposes.
Other forms of fraud may be facilitated using computer systems, including bank fraud, identity theft, extortion, and theft of classified information.
Obscene or offensive content
The content of websites and other electronic communications may be distasteful, obscene or offensive for a variety of reasons. In some instances these communications may be illegal.
Many jurisdictions place limits on certain speech and ban racist, blasphemous, politically subversive, libelous or slanderous, seditious, or inflammatory material that tends to incite hate crimes. The extent to which these communications are unlawful varies greatly between countries, and even within nations. It is a sensitive area in which the courts can become involved in arbitrating between groups with strong beliefs.
One area of Internet pornography that has been the target of the strongest efforts at curtailment is child pornography.
Harassment
Whereas content may be offensive in a non-specific way, harassment directs obscenities and derogatory comments at specific individuals focusing for example on gender, race, religion, nationality, sexual orientation. This often occurs in chat rooms, through newsgroups, and by sending hate e-mail to interested parties. Any comment that may be found derogatory or offensive is considered harassment.
Drug trafficking
Drug traffickers are increasingly taking advantage of the Internet to sell their illegal substances through encrypted e-mail and other Internet Technology. Some drug traffickers arrange deals at internet cafes, use courier Web sites to track illegal packages of pills, and swap recipes for amphetamines in restricted-access chat rooms.
The rise in Internet drug trades could also be attributed to the lack of face-to-face communication. These virtual exchanges allow more intimidated individuals to more comfortably purchase illegal drugs. The sketchy effects that are often associated with drug trades are severely minimized and the filtering process that comes with physical interaction fades away.
Cyberterrorism
A cyberterrorist is someone who intimidates or coerces a government or organization to advance his or her political or social objectives by launching computer-based attack against computers, network, and the information stored on them.
Cyberterrorism in general, can be defined as an act of terrorism committed through the use of cyberspace or computer resources. As such, a simple propaganda in the Internet, that there will be bomb attacks during the holidays can be considered cyberterrorism. As well there are also hacking activities directed towards individuals, families, organized by groups within networks, tending to cause fear among people, demonstrate power, collecting information relevant for ruining peoples' lives, robberies, blackmailing etc.
Cyber warfare
No comments:
Post a Comment