January 10, 2015
After a year of facing some challenging cyber security threats like Shellshock (Bash Bug) and Heartbleed, experts have started to make predictions for security concerns in 2015. It is believed that besides traditional cybercrimes like data breaches and password attacks, many larger hacking attacks can also be expected this year.
Given here are some of the potential threats predicted by cyber security experts:
- XSS Attacks: It is difficult to find high-risk vulnerabilities in credible web products, such as SharePoint, WordPress etc., however, low-risk vulnerability like XSS is quite common. As these attacks give the same results as an SQL injection, hackers usually prefer to exploit XSS to access confidential data.
- Third Party Plugins: Even though the core databases of many web products are quite secure, third party programs are at high risk for security breaches. Any outdated plugin can put the entire application at risk.
- Chained Third Party Attacks: Reputed websites are usually protected against critical vulnerabilities. Thus, it becomes easy for the hackers to combine several low to medium risk vulnerabilities to gain access to the websites.
- Ransomware Attacks: This is a type of malware that restricts a user to access the computer that it infects. It even demands certain sum of money to be paid to the hacker after which the restriction can be removed.
- The Internet of Things: Connecting your gadgets and devices like mobile phones, TVs or cars to the internet will also be a major cyber security concern in 2015. As these devices do not have any sophisticated security applications, it is much easier for the hackers to access important data and manipulate the system.
- Cyber Espionage: Also known as cyber spying, this is a very common attack used by the hackers to get hold of confidential information illegitimately from a computer system.
- Point of Sale Attacks: With the introduction of Apple’s virtual payment system Apple Pay, cyber criminals will definitely look to abuse any flaws in the application. In addition, other digital payment systems on mobile phones will also remain the target of hackers.
- Blastware: This malware destroys operating systems, deletes important information and wipes out the data required to track the hackers. Much like Ransomware, it also enables the cyber criminals to get control over the entire system and manipulate the data for malicious purposes.
Hackers continuously look for insecure and vulnerable networks in order to implement their attacks. Thus, in order to deal with the cyber security concerns in 2015, individuals and organizations must update their security systems regularly.