The established trend of attacks recent months
Alexander Malimonenko and Oleg Kupreev from Securelist noted that in the first quarter of 2017, it was recorded an increase in the number of DDoS attacks compared to the first quarter of 2016. At the same time, as told by Nexusguard last August, the first half of 2016 would be a period of growth in both the number and power of attacks in the world at 83%.
According to the latest reports, the development of the cyber threat keeps set in 2016, the vector and has continued to grow with higher pace. In the report "" Kaspersky Lab DDoS Intelligence Q4 2016 was marked new record for the length of the attack (292 hours) and a record number of attacks in one day (1915 cases on 5 November 2016).
According to Nexusguard, the main trend is inherited from the end of 2016, was the fact that large-scale attacks have become a commonplace problem for companies. The power of a growing number of cyber attacks over 200 Gbps. Increased and their complexity. For example, 57% of DDoS attacks that managed to cope, the leader in domain names, Verisign in the first quarter of 2017, were combined.
Based on the data of "Kaspersky Lab", Securelist also notes the growing popularity of sophisticated attacks (on the application layer, HTTPS). In the example of a combined attack (SYN + TCP Connect + HTTP Flood + UDP Flood) on the Moscow stock exchange.
Recorded growth and small scale attacks, which partly overshadowed by global threats. Ashley Stephenson (Ashley Stephenson), CEO of Corero — manufacturer of device server protection — on this occasion said: "Short DDoS attacks may seem harmless because they do not cause long periods of downtime. But it teams that choose to ignore them, actually opens the doors for malicious attacks or viruses-coders, data theft or other more serious intrusions. Like the mythological Trojan horse, these attacks cheat security team, masquerading as a harmless observer."
The increasing vulnerability of the Internet of things
In its report, Nexusguard points directly to the problem of insecure IoT networks, the relevance of which has increased over the last few years. Trend applies to many devices used in consumer and industrial purposes connected to the network without the observance of due security measures.
In recent years hackers have begun to use a greater number of vulnerable devices to create large-scale botnets of thousands and millions of infected devices: routers, Smart TVs and so on. The vulnerability of IoT devices is confirmed in the report "Kaspersky Lab". One example of parasitism is called a botnet Mirai. The approach used by its creators, was the basis for many other botnets.
Cyril Ilganaev, head of Department of protection from DDoS-attacks, "Kaspersky Lab", said: "Given the effectiveness of IoT botnets, as well as the growing number of vulnerable IoT devices, we can reasonably predict the increase in the number of such attacks, as well as their power and complexity."
According to a survey by A10 Networks, this year the type of DDoS of Things has reached critical mass — in each case, the attacks involved hundreds of thousands of devices connected to the Internet. Combating this phenomenon is just beginning to unfold — although the providers of IoT hardware is extremely slow to respond to threats, some successes in the fight against DDoS of Things have already been achieved. The journalist in the field of information security Brian Krebs (Brian Krebs) was able to calculate the author's malware IoT Mirai, and in the UK were arrested by the attack on Deutsche Telekom, to build a botnet on the basis of routers.
The audit chamber of the USA in may released a report on the evaluation of IoT technologies, largely focused on the vulnerability of systems to cyber attacks. Among the main factors related to the spread of threats, identified as the lack of security controls due to the inability to predict potential problems, and the use of identical software in different devices, which increases the efficiency of exploitation of technical vulnerabilities. In this regard, the office recommends the development of IoT devices with mandatory updates, and in an accessible form, not through a complex user process.
While Tim Murphy (Tim Murphy) from Arbor Networks involved in the detection and prevention of DDoS attacks, urges companies not to rely only on firewalls and IPS, as often they themselves become targets of DDoS attacks, and to build multiple layers of protection in response to the diversification of cyber threats.
Therefore, in the context of IoT vulnerabilities Quora users suggest to consider restricting remote access to specific devices to build a multi-level authentication for those components to isolate which are not possible to verify compliance of the protection policy of OWASP, as well as timely updating, etc.
The lack of personnel
Amid rising cyber threats Cybersecurity Ventures Inc. identified another indirect reason for the increase in attacks, lack of personnel in the field of cyber defence. It is projected that by 2021 the world will experience a shortage of 3.5 million professionals. And according to Cisco, to combat urgent threats today are not enough a million experts in the field of information security. CEO of RedSeal, providing the Analytics platform, ray Rothrock (Rothrock Ray) believes that this information is "real signal" for millions of companies around the world. It is assumed that annual losses from cyber-attacks by 2021 will reach $6 trillion.
Robert Herjavec (Robert Herjavec), founder and CEO of Herjavec Group, encouraged to get an education in the field of cybersecurity. In his opinion, in this area there is zero percent unemployment. According to the research Center of cyber security and education, about 40% of European companies intend to increase the number of your state struggling with cyber threats not less than 15% in the next year.
"While the cybersecurity industry is still relatively young, the demand continues to grow and will only grow in the coming years," concludes Christos Dimitriadis (Dimitriadis Christos), Chairman of the Board of ISACA and Director of information security at INTRALOT.
Tags: information war