Washington – After a year marked by devastating cyber attacks and breaches, online attackers are expected to become even more destructive in 2018, security researchers said on Wednesday.
A report by the security firm McAfee said the ransomware outbreaks of 2017 offer just a taste of what’s to come as hackers develop new strategies and “business models”.
McAfee researchers said that as ransomware profitability fades in the face of new defences, hackers will turn to new kinds of attacks that could involve damage or disruption of computers and networks.
Attackers will also look to target wealthy individuals and aim at connected devices which offer less security than computers and smartphones.
“The evolution of ransomware in 2017 should remind us of how aggressively a threat can reinvent itself as attackers dramatically innovate and adjust to the successful efforts of defenders,” said Steve Grobman, McAfee’s chief technology officer.
McAfee also predicted wider use of cyber attacks “as a service”, allowing more hackers for hire to have an impact.
Raj Samani, chief scientist at McAfee, said the events of 2017 showed how easy it is to commercialise hacking services.
“Such attacks could be sold to parties seeking to paralyse national, political and business rivals,” Samani said.
McAfee’s 2018 Threats Predictions Report also said privacy is likely to be eroded further as consumer data – including data involving children – is gathered and marketed by device makers.
“Connected home device manufacturers and service providers will seek to overcome thin profit margins by gathering more of our personal data – with or without our agreement – turning the home into a corporate store front,” the McAfee report said.
The report said parents “will become aware of notable corporate abuses of digital content generated by children”, as part of this effort to boost profitability.
McAfee said it expects some impact for the May 2018 implementation of the European Union’s General Data Protection Regulation, which limits how data is used and sold and which would affect companies with operations in the EU.
The GDPR regulation “makes 2018 a critical year for establishing how responsible businesses can pre-empt these issues, respecting users’ privacy, responsibly using consumer data and content to enhance services, and setting limits on how long they can hold the data”, said McAfee vice president Vincent Weafer.