Sectors
Companies
About
Subscribe

Old tactics, smarter criminals

Alex Kayle
By Alex Kayle, Senior portals journalist
Johannesburg, 09 Feb 2011

Hackers are using the same threats to attack networks, but the actual attacks are becoming more complex.

ITWeb's Security Summit 2011

More information about the ITWeb's Security Summit 2011, which takes place from 10-12 May 2011, at the Sandton Convention Centre, is available online here.

This is according to Dino Covotsos, CEO of Telspace Systems, company sponsor of the ITWeb Security Summit 2011, who says this year will see more sophisticated attacks from worms and denial-of-service attacks.

The ITWeb Security Summit 2011, from 10 to 12 May at the Sandton Convention Centre, will see top experts from all over the world discussing emerging threats such as Stuxnet and information security.

Covotsos says: “The top security threat for 2011 will be Web application attacks, similar to previous years; but it's predicted that these attacks will be more complex.

“These days, many people know how to do a basic SQL injection attack, and while the old threats will still continue, the threats will use more complex ways of gaining access into networks. The attacks will be more advanced than ever before.”

According to Covotsos, Stuxnet will be one of the biggest threats because it attacks physical infrastructure (industrial software and equipment). He says this could have devastating consequences on business.

Insider threats

Covotsos notes another big trend for 2011 is the insider threat, ranging from and corruption, because it is very difficult to detect and eradicate. He says developers are struggling to keep up with securing code in business applications and that local skill-sets need to improve in terms of secure coding.

“Everything that involves online-based applications is a threat, especially in new and uncharted territory for a hacker to break. Around 80% of our business sits in Web applications. However, we are now seeing more Web application firewalls coming up and an increase in general awareness.”

Criminal entrepreneurs

“While we are seeing the same SQL injection attacks and cross-scripting attacks, cyber criminals are becoming more entrepreneurial to improve their attacks.

“We are seeing more attacks and worms being propagated on Twitter sites. Hackers are looking for different ways to get out there, and it if means getting hold of 500 million users on Facebook, they will go for it.”

Share