6 January 2018

Five Biggest Cyber Security Stories of 2017

Five Biggest Cyber Security Stories of 2017
-- Maj Gen P K Mallick,VSM (Retd)

There has been cyber security stories in  2017. This year when cyber security’s role in global politics became undeniableand  the threats kept coming. Social media continued to be a battleground for voters but didn’t seem to play a significant role in the British, French or German elections. Ransomware is still the most common attachment in spam emails and the trojan became more potent on Macs and Androids. And the role of antivirus companies even became a global controversy.


F-Secure comes out with the  the current threat landscape and the larger trends that we will be forced to contend with in the new year and beyond.

1. The Internet of Things: If it’s smart, it’s vulnerable. It is  easy for hackers to use vulnerabilities make it to take control of a device. In 2018, the number of consumer IoT devices will likely exceed the human population of the earth. Meanwhile, there’s still no evidence that manufacturers are taking security seriously enough to sustain this sort of mass adoption safely.

2. Internet Service Providers in the U.S. can now sell your browsing history without your consent. In April, the U.S. reversed a regulation that prevented ISP’s from selling your browsing history without your consent. This move shifted regulation of providers from the Federal Communication Commission to the Federal Trade Commission (FTC). Cable companies prefer FTC regulation because it puts them on a more equal footing with the firms that dominate web advertising, Google and Facebook. However, it also means all your web traffic may be sold so advertisers can more effectively target you. 

3. WannaCry and NotPetya Explode. In May and June, we saw the two largest ransomware outbreaks ever — WannaCry and then NotPetya. Both used vulnerabilities that have been stockpiled by the U.S’s National Security Agency and then leaked into the public. And both exploited unpatched systems to spread like worms through networks. Luckily, both threats didn’t do nearly as much damage as they could due to flaws in their design. While both reminded the world of the importance of basic security hygiene like installing updates and designing networks to prevent worms from spreading, they both also raised numerous questions, like why did someone release ransomware like NotPetya when it didn’t seem capable of collecting ransoms? 

4. Breaches from Hell.If you’ve used the internet in the last decade or have a credit card, chances are you were somehow caught up in the breaches that were reported in 2017. Over 143 million Americans had data compromised in the Equifax breach alone. For businesses, breaches are becoming even more crucial to prevent and manage. This is not just true because trust destroyed by hacks can potentially do catastrophic damage to a brand but because of the rise of the the European General Data Protection Regulation (GDPR), which enters full force on May 25th. There are many myths surrounding the GDPR, but in general these regulations may be good news for consumers’ data privacy and potentially a huge opportunity for businesses that take a proactive approach to cyber security.

5. Bitcoin Boom. Ransomware has been around for years and years, way before Bitcoin. But the megatrend that really made ransomware such a problem is crypto-currencies like Bitcoin.” As the year neared its end, the price of Bitcoin exploded, at one point hitting over $19,000. It’s unclear what this means for ransomware crooks, given how difficult it may be to run a business with a payment method that gains or loses $1,000 in a day. And using Bitcoin to purchase real world items can be difficult. But it’s clear there’s a hunger for virtual currency that’s not subsiding as we head into 2018.

No comments: