SME, critical infrastructure and IoT devices are at the center of attention for attackers.
Locky, Petya, TeslaCrypt, GoldenEye – ransomware was one of the main topics in IT security in 2016. At the beginning of the year several hospitals made the headlines after being hit with ransomware. There is no reason to sound the “all clear” in 2017. Using this type of malware has proven exceptionally profitable for criminals. As a result of this, more and more advanced ransomware variants are surfacing. G DATA expects to see a rise in those numbers in 2017. Securing critical infrastructure and IoT devices are seen as one of the major IT security challenges for the year. The problem is that many devices which are connected to the web were never designed with internet connections in mind and connectivity was retrofitted later. In the product development cycle of those devices IT security did not play a defining role. Currently, attacks against routers of Deutsche Telekom and against the global company network of ThyssenKrupp have cause major waves in the media.
„Small and medium-sized enterprises need to be on their guard in 2017. The data of those organizations is of special interest to attackers. In many cases, criminals are only noticed when the damage is already done. With the increased need for privacy on one side and the increased demand for IoT devices on the other, the discussion about data protection will be heating up further“, says Tim Berghoff, G DATA Security Evangelist. “Targeted attacks against routers and IoT devices will increase in the future. What we have seen so far is only the tip of the iceberg. We also expect a substantial rise of ransomware cases for 2017. The use of file-encrypting ransomware has proven exceptionally lucrative.”