Last Year’s Cyber Security Stats

Cyber-attacks are continually evolving in sophistication and impact as technology advances, and 2018 was an interesting year in this aspect. Some of the significant breaches included Facebook, the Marriot Hotel Group, and Quora. 

According to a survey carried out by the Cyber Security Breaches Survey, 43% of businesses were victims of cybersecurity breach in 2018, with 230,000 new malware being released every day.

The evolution of malware attacks in frequency and sophistication poses a significant threat not only to businesses but also to individuals. 

We discuss cybersecurity statistics and facts for 2018 and tips on what to expect in 2019. 

In 2018, we largely experienced the following cyber-related crimes:

An increase in crypto mining scams 

Crypto mining attacks on coins such as Cryptoloot, Monero, Coinhive, and Jesscoin increased in the course of the last 12 months. According to research, they were more dominant than ransomware, and approximately 42% of businesses across the globe were exposed. 

Crypto mining scams were spread through Google Play, messaging systems, social media, infected sites, and personal computers.

While crypto-attacks may be deemed as trivial, they should not be ignored. Such attacks are mostly initiated by crypto-miners seeking for a way to mine currency. With more crypto coins being established, we can only expect such attacks to increase in 2019. 

Attacks on multiple platforms 

As opposed to targeting one operating system, cybercriminals are finding it more effective to attack multiple systems with a single piece of malware.

For example, an advanced persistent threat christened ‘Dark Caracal’ was initially used to attack mobile devices.

It then mutated to become a multi-platform attack on different operating systems including Windows, Linux, and Mac. Another example is the Roaming Mantis whose attacks are DNS-hijacking on Android operating systems and phishing in iOS devices. 

A significant rise in malicious mobile applications 

According to research, lifestyle apps are the main targets of cybersecurity leaks. Information such as the device’s location, the phone number, and other sensitive information is being leaked to cybercriminals. 

Most cybersecurity threats are from employees 

The employees within an organisation remain the primary causes of cybersecurity breaches. Negligent staff or contractors account for 54% of cybersecurity breaches. According to a report tabled by the Ponemon Institute, this figure has increased by up to 6% from the previous year. 

Malicious websites and e-mails are the main ways through which cybercriminals target the employees. 

Small and medium-sized business experience more attacks 

Small to medium-sized companies or organisations normally have limited cybersecurity resources. This makes them more susceptible to ransomware and other cybercrimes. According to a survey carried out by Small Business Trends, the percentage of cyber-related crimes on SMEs rose from 15% to 43% between 2011 and 2015. 

Smart home attacks 

Smart home devices are the current trend. Majority of such are connected through an external network. As the technology on smart home devices continues to increase, so are the tactics through which cyber-criminals exploit their vulnerabilities. 

The annual cybercrime costs are expected to hit $6 trillion by 2021 

As state-sponsored data breach and organised crime are anticipated to increase, so will the profits emanating from cybercrimes. Besides, cyber-criminals are less likely to be caught and are seldom punished for their wrongs.

Cybercrime will become more lucrative and appealing to potential as well as current perpetrators. 

An evolution in cloud attacks 

While more businesses adopt cloud storage options, criminals are also developing tools to use against the said technology, which is why a top VPN and other defences are needed.

Most of the cloud attacks have been as a result of the use of poor passwords, ineffective security practices, and instances where data exfiltration software is accidentally installed.

Cybercriminals are mostly tapping into publicly available cloud services to identify weaknesses that they can exploit later.

The increased attacks on Office 365 recently are a befitting example. 

The healthcare industry has the highest number of attacks 

The healthcare industry experienced the highest number of attacks compared to other industries, with the figure being expected to quadruple by 2020 according to CSO Online. 

© New To HR