Cracks in the mobile ecosystem, Internet-connected devices
The interconnectivity of technology has led to a point where many devices are potentially vulnerable, and in the third quarter, the real world impacts of cyberattacks became clear.
Trend Micro analyzed the vulnerabilities and repercussions of attacks seen last quarter. They unraveled the aftermath of security breaches, loopholes found in mobile platforms and exploits posing risks not only to user privacy, but also to physical safety. Additionally, these security gaps serve as a prelude to potentially massive events that Trend Micro believes will greatly impact 2016.
“The evolution of breaches is beginning to take a turn toward real-world effects on enterprises’ bottom lines and people’s lives,” said Raimund Genes, CTO, Trend Micro. “The emergence of numerous vulnerabilities and other data breaches that occurred in this quarter are bound to release more confidential and potentially destructive information to the public, which could then be sold to the highest bidder on the Deep Web.”
Data breaches experienced last quarter, such as Ashley Madison, spurred a chain of attacks, in which dumping stolen confidential information in public domains tarnishes victims’ reputations, causing far greater damage than simple business disruptions.
Cybercriminals, who leveraged the compromised information to launch extortion attacks and blackmail users, caused catastrophe for both Avid Life Media, the site owner, and more than 30 million Ashley Madison users – with reports of victim suicides in response to the impact this attack had on their personal lives.
Additionally, security breaches impacting the healthcare industry were prevalent in the third quarter, including the attack on the UCLA Health System where personal records of approximately 4.5 million patients were compromised. In fact, health and personally identifiable information (PII) was the second-most stolen data type out of all data breach categories. These instances reinforce why the healthcare industry continues to be an appealing target for cybercriminals.
Attackers are continuing to set their sights on mobile device users, taking advantage of gaps in security that exist on the iOS and Android platforms. The discovery of vulnerabilities in Android highlighted the need for a more integrated set of security strategies, while modified versions of app creation tools debunked the notion that the iOS walled garden approach to security can spare the platform from attacks.
Key findings, highlighting third quarter activities:
Data breach dumps were used to fuel further attacks and extortion. The successful attacks against The Hacking Team and Ashley Madison greatly affected the security and computing industries.
Discovery of weak points in mobile platforms emphasize existing problems in both ecosystems. In response to the recent spate of Android vulnerability discoveries, Google finally announced regular security updates for the platform.
Cybercriminals use the “shotgun approach” on PoS malware, primarily affecting small businesses. Attacks seen in the third quarter involved PoS malware launched through “old” techniques like spamming, as well as tools like macro malware, exploit kits and botnets.
Political personalities surface as targets of ongoing espionage campaigns. Analysis of recent data revealed that Pawn Storm has expanded its targets from mostly U.S. targets to Russian entities.
Angler Exploit Kit continues to be a widely-used tool, with access numbers increasing by 34 percent. Angler Exploit Kit creators updated their arsenal this past quarter, which resulted in attackers using their creation to distribute new malware.
New research raises issues on the security of Internet-ready devices. Attackers are now modifying target-tank information, which could have dire consequences for the general public.