STRATEGIC PARTNERS
The Kaspersky Lab Global Research and Analysis Team has published predictions for advance persistent threats in 2015.
December 15, 2014
After observing more than 60 threat actors responsible for cyberattacks worldwide, the Kaspersky Lab Global Research and Analysis Team haspublished its predictionsfor advance persistent threats in 2015:
•the fragmentation of bigger APT groups.As the number of smaller threat actors grows, larger organizations are expected to experience a more attacks from a wider range of sources;
•APT-style attacks in the cybercriminal world. Rather than stealing money from end users, criminals are now attacking FIs directly and, moving forward, will use APT techniques for these complex attacks;
•targeting executives through hotel networks.Hotels are perfect for targeting high profile individuals; the Darkhotel group is an APT actor known to have targeted specific visitors staying in hotels;
•enhanced evasion techniques.APT groups will take more advanced measures to shield themselves from discovery;
•new methods of data exfiltration.In 2015, more groups are expected to use cloud services to make the unauthorized transfer of data from a computer stealthier and harder to detect; and
•the use of 'false flags.' APT groups are expected to exploit government 'naming and shaming' of suspected attackers by making it appear as if the attack was carried out by another entity.
"If we can call 2014 'sophisticated,' then the word for 2015 will be 'elusive," said Costin Raiu, director of the Kaspersky Lab Global Research and Analysis Team. "We believe that APT groups will evolve to become stealthier and sneakier, in order to better avoid exposure. This year we've already discovered APT players using several zero-days, and we've observed new persistence and stealth techniques. We have used this to develop and deploy several new defense mechanisms for our users."
