As we look back on the security events and trends that shaped 2017, let’s now reflect on what’s expected for the security industry in 2018.

A Look Back at 2017

In 2017 we saw both the deployment of defensive measures that’ve been generally unavailable to the IT community until now, as well as an increase in hacker’s ability to breach our defenses even with these defensive measures in place.

Exploit kits continued to be an effective attack vector in 2017. Researchers at Minerva found that exploit kits were the most common way to spread ransomware in 2017, with over 60% of them applying evasive techniques.

One of the most notable security happenings of 2017 took place in June when The Shadow Brokers leaked a repository of extremely disastrous exploits. Since the leak, there’s been a huge spike in malware abusing ETERNALBLUE/DOUBLEPULSAR and ENTERNALROMANCE. High profile attacks like the recent WannaCry and NotPetya attacks are just a few campaigns that spread using the exploits published by The Shadow Brokers.

Increased interest in vaccination was also seen in 2017. While the concept of vaccination is not new, organizations started paying more attention to it due to the broader availability of the tools that make it feasible to deploy vaccines in the enterprise. Another reason for the increased interest could be because of in increasing difficulty in detecting evasive malware.

2017 saw the rise of cryptocurrencies such as Bitcoin, Ethereum, and ZCash. But as this trend rises, so is the use of cryptomining malware by hackers. This trend is due to multiple factors: cryptomining is less likely to attract the attention of law enforcement, virtual coins offer high levels of anonymity, and it’s easier to cash out illicit gains. Attackers are now looking for new revenue sources outside of ransomware, and are increasingly attracted by crypto malware.

Into the Future: Predictions for 2018

The findings from Minerva conclude with expectations and predictions for 2018. Among their predictions for the New Year includes the continued commoditization of attack tactics that were at some point considered advanced and the increased popularity in sophisticated exploits and anti-malware evasion. In addition, as hackers look for new revenue streams, it’s predicted many will turn to malicious cryptominers in 2018. Fortunately, enterprise defenders will continue to invest in additional protective measures for safeguarding critical IT assets and combating malicious malware in the enterprise.  



NNT Suite of Products

change tracker gen7r2 logo

Combine industry leading Device Hardening, File Integrity Monitoring, Change Control, Configuration Management & Compliance Management into one easy to use solution that can scale to the most demanding environments!

fastcloud logo

Automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology) Integrity Assurance.

log tracker logo logo

Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds.

vulnerability tracker logo

Continuously scan and identify vulnerabilities with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

USA Offices
New Net Technologies LLC
Suite #10115, 9128 Strada Place
Naples, Florida, 34108
1175 Peachtree St NE
Atlanta, Georgia, 30361.
4145 SW Watson, Suite 350
Beaverton, Oregon, 97005.

Tel: (844) 898-8358
email [email protected]
UK Office
New Net Technologies Ltd
Rivers Lodge, West Common
Harpenden, Hertfordshire

Tel: 01582 287310
email [email protected]
CIS benchmarking SEWP Cybersecurity 500Sans Institute Now Certified
Copyright 2019, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.