Emerging Threats in the APT World: Predictions for 2015
LONDON, December 16, 2014 /PRNewswire/ --
For several years now, Kaspersky Lab's Global Research and Analysis Team (GReAT) has shed light on some of the world's biggest Advanced Persistent Threat (APT) campaigns, including Red October, Flame, NetTraveler, Miniduke, Epic Turla and Careto/Mask.
By closely observing more than 60 threat actors responsible for cyber attacks worldwide, the team of experts have now compiled a list of the top emerging threats in the APT world.
These include:
The fragmentation of bigger APT groups. A growing number of smaller threat actors are likely to lead to an increase in companies being targeted. Larger organisations are expected to experience a greater number of attacks from a wider range of sources.
APTstyle attacks in the cybercriminal world. The days when cybercriminal gangs focused exclusively on stealing money from end users are over. Criminals now use APT techniques to make complex attacks on the banks directly.
Targeting executives through hotel networks. Hotels are perfect for targeting high profile individuals around the world. The Darkhotel group is one of the APT actors known to have targeted specific visitors during their stay in hotels.
Enhanced evasion techniques. More APT groups will be concerned about exposure and will take advanced measures to shield themselves from discovery.
New methods of data exfiltration. In 2015, more groups are expected to use cloud services in order to make exfiltration (the unauthorised transfer of data from a computer) stealthier and harder to detect.
The use of false flags. APT groups are expected to exploit government intention to 'naming and shaming' suspected attackers by carefully adjusting their operations to plant false flags (markers that make it appear as if the attack was carried out by another entity.)
"If we can call 2014'sophisticated', then the word for 2015 will be 'elusive'. We believe that APT groups will evolve to become stealthier and sneakier, in order to better avoid exposure. This year we've already discovered APT players using several zero-days, and we've observed new persistence and stealth techniques. We have used this to developand deploy several new defence mechanisms for our users," comments Costin Raiu, Director of GReAT at Kaspersky Lab.
To read about these and more new trends in the APT world, please visit the Securelist blog.
About Kaspersky Lab
Kaspersky Lab is the world's largest privately held vendor of endpoint protection solutions. The company is ranked among the world's top four vendors of security solutions for endpoint users*. Throughout its more than 17-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at http://www.kaspersky.com.
* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2013. The rating was published in the IDC report "Worldwide Endpoint Security 2014-2018 Forecast and 2013 Vendor Shares (IDC #250210, August 2014). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2013.
Editorial contact:
Berkeley PR
Lauren White
kasperskylab@berkeleypr.co.uk
+44(0)118-909-0909
1650 Arlington Business Park, RG7 4SA, Reading
Kaspersky Lab UK
Ruth Knowles
Ruth.Knowles@kasperskylab.co.uk
+44(0)7590-440-433
2 Kingdom Street, W2 6BD, London
Share this article