Smarter, shadier and stealthier cyber crime forces industry to dramatic change

Sydney, Australia – December 11, 2013 – Sophos today released its latest Security Threat Report. The report outlines the significant changes in cyber criminal behaviour over the course of last year and a forecast for their preferred methods of attack in 2014. This year cyber criminals continued the theme of professionalisation of their ‘industry’, offering easy to buy and use services that amplified the scale of cyber crime to never before seen levels.

“While many security experts are aware of the high level trends, few have recognised their significance,” said James Lyne, global head of security research at Sophos. “If 2013 has taught us anything, it is that traditional security controls are struggling. These new behaviours are forcing the industry to adapt and change, and widely held best practices must be reconsidered.”

The threat report highlights new security concerns ranging from stealthy malware tools that offer dynamic camouflage and provide attackers with long-term persistent access to users’ data, to the proliferation of connected devices that represent new and often ill-protected targets. Many new “Internet of things” devices are becoming commonplace in our homes and everyday infrastructure, offering shadier cyber criminals the potential to impact our daily lives, rather than just the traditional theft of financial information.

“These trends are set to continue in 2014 as threats become even smarter, shadier and stealthier,” said Lyne.

In 2014 Sophos predicts greater focus from cybercriminals on high quality and convincing phishing and social engineering to compensate for harder to exploit operating systems like Windows 8.1; embedded devices (such as POS systems, medical systems and new ‘smart’ infrastructure) will open old wounds as security mistakes eliminated in the modern PC environment are carelessly re-implemented; attacks on corporate and personal data in the cloud will continue to grow as providers struggle to refine the security strategy in this new computing platform; and malware for mobile is set to become as sophisticated as its PC relatives.

“It is clear in 2014 we need to be watching not just the evolution of existing attacks, but be prepared for dangerous new threats emerging that we haven’t previously dealt with,” said Gerhard Eschelbeck, CTO at Sophos. “As the industry adapts and enhances protection mechanisms to cover new devices and threats, this is increasingly becoming an issue for every member of society, not just for government and business.”

A full copy of the Threat Report 2014: Smarter, Shadier, Stealthier Malware containing more information and statistics on cybercrime in 2013, as well as top tips and predictions on emerging trends, can be downloaded here. A blog discussing the Threat Report is also available.

About Sophos  

More than 100 million users in 150 countries rely on Sophos’s complete security solutions as the best protection against complex threats and data loss. Simple to deploy, manage, and use, Sophos’s award-winning encryption, endpoint security, web, email, mobile and network security solutions are backed by SophosLabs - a global network of threat intelligence centres.

Sophos is headquartered in Oxford, UK. More information is available at www.sophos.com.

Media Contacts:

Amanda Conroy

Espresso Communications

+61 2 8016 2200

+61 422 472 883

amanda@espressocomms.com.au

Luisa Regattieri

Espresso Communications

+61 2 8016 2200

luisa@espressocomms.com.au