If this past quarter’s stories are any indication, we could very well be seeing the rise of a new wave of threats that will affect people in a more pronounced and physical level. Attackers are finding more security gaps to abuse, whether they’re in existing public-facing technologies or in new developments in the Internet of Things. With this incoming swell of attacks also come new cybercriminal players, independent operators who use simple malware for full-scale regional operations. Although law enforcement agencies are making strides in the fight for cybersecurity, these challenges continue.
We’ve previously seen how certain automated transportation systems could be susceptible to cyber-attacks, and now we’re seeing possible threats in aviation. The first incident took place when security researcher Chris Roberts tweeted messages that suggested that he was tampering with the in-flight systems of the 737/800 plane that he was on. This was followed by a DDoS attack on Warsaw’s Okecie airport, causing delays that grounded more than 1,400 people flying with LOT Polish Airlines.
Routers were next. Our researchers observed an increase in attacks that used DNS changer malware that targeted home routers. Much of the detected infections were in Brazil, US, and Japan. Brazil took the lion’s share of the infections, with 81%. These attacks aimed to steal personal information from the devices connected to home routers using malware.
These attacks aimed to steal personal information from the devices connected to home routers using DNS changer malware. Like its name suggests, DNS changer malware changes the DNS of a router so that any device connected to it would load a malicious version of any website it tries to log into, including online banking websites. While DNS changer malware is nothing new, its significance continues to increase as homes and businesses become more connected to the Internet of Things.
Finally, in early April, an attack on French TV Network TV5 Monde crippled the company’s network, disrupting all broadcasts for four hours. The attackers also took control of TV5 Monde’s social networking accounts, using them to not only post propaganda but also reveal personal information of the relatives of French soldiers involved in military operations.