New report predicts the biggest cybersecurity threats of 2024, and this year could see an evolution in phishing strategies, a focus on the software supply chain, and exploitation of more widely used enterprise software such as MOVEit It points out that there is.
The report was released on Thursday recorded futureanalyzes cybersecurity threat trends in 2023 and predicts how they will spread through 2024.
“We predict that at least one ransomware group will be able to successfully compromise hundreds of targets by exploiting vulnerabilities in third-party file transfer solutions, especially for enterprises,” he said. recorded futureMaggie Coleman.
If this sounds familiar, you're right. This is reminiscent of his recent cybersecurity issues with MOVEit. This type of file transfer service sends sensitive data that an attacker desires. Attackers may also target IT that supports remote and hybrid working, such as VPNs, cloud-based storage, and multi-factor authentication (MFA) tools.
Defenders can prepare by not only creating or reviewing incident response plans, but also by creating direct lines of communication with relevant vendors, Coleman said. Organizations need to have a clear understanding of the solutions they use and how they are implemented, and they also need to know who is responsible for patching: the organization or the vendor. Additionally, organizations should monitor intelligence feeds to stay informed of newly discovered and widely exploited vulnerabilities.
Defenders need visibility not only into the software, but also into the software supply chain.
Coleman said bad actors post malicious repositories listed with innocuous-sounding names on open source code platforms like GitHub. Hackers expect software developers to download or incorporate malicious code into their software solutions. Additionally, npm and PyPI data package managers are specifically targeted.
In 2023, phishing was the main way attackers gained access to systems. Some attackers have used archive and HTML formats to send malicious files to avoid detection by email security software. Phishers have also expanded to spreading malware and links to malicious sites via text, QR codes, or corporate messaging systems such as Skype and Teams. The increased use of multi-factor authentication by defenders has led to an increase in attackers looking to exploit MFA fatigue or perform man-in-the-middle attacks to intercept communications.
More organizations are moving away from passwords to account access methods that are less susceptible to theft. These include magic links and phone-based authentication methods. Biometric authentication will also become more popular in the future. With such enhancements, attackers are also likely to evolve and send fake malicious magic links. Generative AI could also be used to aid spear phishing. In some cases, fraudsters may move from an account takeover attempt to a new attempt at account fraud.
Hackers are innovating in other ways as well. In 2023, more hackers are using programming languages that allow malware to compromise multiple operating systems. As a result, macOS and Linux users will need to remain vigilant. Malware has traditionally focused on Windows, but some hackers have created variants that target other operating systems.
For example, LockBit, a notorious ransomware gang, appeared to be experimenting with a variant of macOS ransomware in April, but that variant has never been found in the wild.
Globally, 2023 has blurred the lines between ideologically driven hacktivists and profit-driven cybercriminals. Hacktivists often gain attention with their attacks, which creates chaos that some cybercriminals may take advantage of, Coleman said. Criminals could launch their own attacks, which could be confused with hacktivist activity. Hacktivists who need financial support may also sell exploits and distributed denial-of-service services.
Political motives are also likely to fuel influence operations surrounding this year's elections. The report said Russia and China are expected to seek to harm candidates who support Ukraine and Taiwan. To do so, their campaigns may seek to intensify America's political polarization and “undermine the democratic process.”
