More cyber attacks looming, Hungarian expert warns
In the coming months, cybercriminals are expected to launch numerous attacks exploiting the vulnerabilities leaked by hacker group The Shadow Brokers, as recent attacks of the WannaCry ransomware used only a tiny part of the leaked toolset, according to Gábor Szappanos, a virus expert at the local office of network security firm Sophos.
Although the most important weaknesses have been fixed by the latest security update of Windows patching Eternalblue, the fact that there is still a large pool of vulnerable systems that WannaCry did not infect means that computers running on Windows XP can soon become easy targets for further infections, Szappanos said in a press release sent to the Budapest Business Journal.
Szappanos warned that, based on the latest trends, “if one technique proves to be successful, many copycat groups jump on it.” He added that the first signs of this are already showing, such as the Uiwix ransomware and the Adylkuzz bitcoin miner. “This tendency is expected to go on,” he noted.
“We don’t expect cybercriminals to use a new unknown vulnerability. Remote code execution vulnerabilities, such as the one attacked by WannaCry, are very rare nowadays, and cybercriminals don’t have access to new, unpatched vulnerabilities. It takes some time for a vulnerability to reach cybercrime groups, and by that time it is usually fixed a long time ago,” Szappanos said.
“I also don’t expect that criminals would use worms to use the vulnerabilities revealed by the Shadow Brokers leak. They would prefer more containable solutions, as worms can easily get out of control – as happened with WannaCry. More likely they are going to use the vulnerabilities to infect computers manually, injecting the malware into target systems, but the malware themselves will not have a spreading capability,” Szappanos added.
SUPPORT THE BUDAPEST BUSINESS JOURNAL
Newspaper organizations across the globe have struggled to find a business model that allows them to continue to excel, without compromising their ability to perform. Most recently, some have experimented with the idea of involving their most important stakeholders, their readers.
We would like to offer that same opportunity to our readers. We would like to invite you to help us deliver the quality business journalism you require. Hit our Support the BBJ button and you can choose the how much and how often you send us your contributions.