As we look back on the security events and trends that shaped 2017, let’s now reflect on what’s expected for the security industry in 2018.

A Look Back at 2017

In 2017 we saw both the deployment of defensive measures that’ve been generally unavailable to the IT community until now, as well as an increase in hacker’s ability to breach our defenses even with these defensive measures in place.

Exploit kits continued to be an effective attack vector in 2017. Researchers at Minerva found that exploit kits were the most common way to spread ransomware in 2017, with over 60% of them applying evasive techniques.

One of the most notable security happenings of 2017 took place in June when The Shadow Brokers leaked a repository of extremely disastrous exploits. Since the leak, there’s been a huge spike in malware abusing ETERNALBLUE/DOUBLEPULSAR and ENTERNALROMANCE. High profile attacks like the recent WannaCry and NotPetya attacks are just a few campaigns that spread using the exploits published by The Shadow Brokers.

Increased interest in vaccination was also seen in 2017. While the concept of vaccination is not new, organizations started paying more attention to it due to the broader availability of the tools that make it feasible to deploy vaccines in the enterprise. Another reason for the increased interest could be because of in increasing difficulty in detecting evasive malware.

2017 saw the rise of cryptocurrencies such as Bitcoin, Ethereum, and ZCash. But as this trend rises, so is the use of cryptomining malware by hackers. This trend is due to multiple factors: cryptomining is less likely to attract the attention of law enforcement, virtual coins offer high levels of anonymity, and it’s easier to cash out illicit gains. Attackers are now looking for new revenue sources outside of ransomware, and are increasingly attracted by crypto malware.

Into the Future: Predictions for 2018

The findings from Minerva conclude with expectations and predictions for 2018. Among their predictions for the New Year includes the continued commoditization of attack tactics that were at some point considered advanced and the increased popularity in sophisticated exploits and anti-malware evasion. In addition, as hackers look for new revenue streams, it’s predicted many will turn to malicious cryptominers in 2018. Fortunately, enterprise defenders will continue to invest in additional protective measures for safeguarding critical IT assets and combating malicious malware in the enterprise.  

 

 

The Most Powerful & Reliable Cybersecurity Products

change tracker gen7r2 logo

Change Tracker Gen 7R2: Complete configuration and system integrity assurance combined with the most comprehensive and intelligent change control solution available.

FAST Cloud logo

Fast Cloud: Leverage the world’s largest whitelist repository to automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology)

vulnerability tracker logo

Vulnerability Tracker: The world’s only limitless and unrestricted vulnerability scanning solution with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

log tracker logo

Log Tracker: Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds

Contact Us

Corporate Headquarters

Netwrix
6160 Warren Parkway, Suite 100
Frisco, Texas, 75034

Phone 1: 1-949-407-5125

Phone 2: 888-638-9749 (toll-free)


[email protected]
 

United Kingdom

Netwrix
5 New Street Square
London EC4A 3TW

Phone: +44 (0) 203 588 3023


 [email protected]
SC Magazine Cybersecurity 500 CSGEA Winners 2021 CIS benchmarking SEWP Now Certified IBM Security
Copyright 2024, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.