Malware Similar to Stuxnet Poses Threat to Private Enterprise in 2013
The digital-certificate attacks are influenced by cyber thugs to pollute enterprise IT-systems with malwares developed by states, e.g. Flame and Stuxnet along with the nefarious conclusion of affecting business execution globally, thus, opening the doorway to a number of data breaches and damages of brand approaching far beyond the targets of cyber war for which the malware was made. That's the top assumption for 2013 from Venafi, the key and certificate management vendor.
Several pundits that are ruling the media outlets and even many security experts that are claiming that enterprising doesn't have to be over concerned regarding flame and stuxnet-style malware attacks, naming the truth that they were being operated by well-funded spying intelligence groups who had the target towards a hostile nation states and not businesses, "commented Jeff Hudson, CEO of Venafi in a statement reported by ibtimes.co.uk during the third week of December 2012.
Although, our image relates to the companies to remain anxious, as unluckily the tools and methods for operating these type of attacks are now depended on the common cyber criminals and scoundrel entities. In the upcoming years, these kinds of attacks are predicted to amplify particularly against enterprise organizations, and are probable to conclude in important and expensive public breaches and unintentional outages. As a result, companies should defend themselves against the approximating of Flame and Stuxnet-style malware attacks.
Venafi's assumption is on the basis of hard evidence not conjecture. In the initial 2012, Chevron, an American multinational energy corporation admitted that it had got stuxnet malware in its systems. Chevron has since publicly claimed that it does suppose that the US Government feels how far and wide the malware has dispersed. Although report says that the incident did not cause harm or result in data loss, it proves that digital-certificate-based attacks are till now not hypothetical or confined to states-vs-state cyber war scenarios.
Venafi also suppose that, in the next year, cyber criminals will shift their concern to the cloud even more than before, especially as businesses and government are migrating to cloud services.
From the last year, there have been a number of security breaches caused by the fact that the victims depends on MD5 and other weak encryption algorithms. Experts claim that these kinds of breaches will sustain as one in five organizations is still using MD5.
Related article: Malware has lesser proximity to your inbox now!
» SPAMfighter News - 05-01-2013