AhnLab, Korea's largest information security company, announced the seven security issues for 2008 on January 3rd. According to AhnLab, ▶ vaccine detection-avoiding techniques such as virtualization techniques will become more sophisticated ▶ web hacking attacks will increase ▶ cyber black markets will grow ▶ spyware will adopt more malicious code ▶ global vulnerability attacks will increase ▶ malicious codes attacks against USB will increase, and ▶ malicious codes will spread through UCC, SNS, and other web 2.0 services in 2008.
(1) Sophisticated Vaccine Detection-avoiding Techniques such as Virtualization
TechniqueMalicious code will adopt various techniques in order not to be detected by security programs. One of these techniques would be called the virtualization technique (which adds a layer to the existing physical layer structure to make logical structure more consistent and convenient). A malicious code with the virtualization technique will be able to incapacitate some functions of the security product. Although no malicious code with the virtualization technique adopted has been reported, a root kit which demonstrated the concept was released in 2005. In 2005, detection was not difficult and the kit did not accurately function well so it did not do any harm. However, in 2008, malicious code with a virtualization technique are very likely to be introduced.
(2) More Web Hacking Attacks
More attacks against web vulnerabilities and Distributed Denial of Service (DDoS) attacks are expected this year. Because many websites were developed without consideration for security, they are exposed to attacks. Spread of malicious code and spyware to websites are expected to continue this year. More DDoS attacks are expected to do financial damage.
(3) Growth of Cyber Black Market
The cyber black market where virtual assets can be traded with cash is expected to grow. In the cyber black market, personal information, credit card information, and online game account information are traded. Malicious code are also known to be traded and phishing and DDoS attacks ordered in the cyber black market. A growth of the cyber black market is expected to result in a wide spread of malicious code and more hacking attacks. It is expected local attacks against certain targets will increase more than attacks targeted towards the general public for financial damage.
(4) Malicious Codes in Spyware
Not many spyware attacked OS or global vulnerabilities or hid its presence using the root kit. However, it is expected that more spyware will use malicious code which can attack vulnerabilities, incapacitate security programs, hide its presence, and attack files in order to seek more financial damage.
(5) More Global Vulnerability Attacks
Most attacks target MS OS or global vulnerabilities, but such attacks are decreasing. On the contrary, global attacks targeting PDF, Apple MAC OS X, ActiveX, multiplayer, image viewer, and messenger users are increasing. This trend is expected to continue in 2008.
(6) Spread of Malicious Codes through USB
The trend of malicious code spreading through portable devices (USB or portable HDD) is expected to continue this year. In particular, the introduction of a security USB may result in a malicious code which can steal important information from portable devices.
(7) Spread of Malicious Codes through UCC, SNS and Other Web 2.0 Services
UCC is becoming a channel to spread malicious code and spyware. Some spyware programs have been reported to disguise themselves as multimedia players and induce users to install them. Some of them are even actually installed on the user's PC.
This trend is expected to continue in 2008. With spread of the SNS, the SNS will become a target of more malicious code. In 2006, a malicious code was reported which adds a user who views a profile at MySpace to the buddy list of the profile. It is also expected that blogs will have more links to download malicious code.
"Malicious code and spyware programs are becoming more and more sophisticated and increasingly spread through various channels", says Director Joh Shi-haeing of AhnLab Security Institute. "In the long term, we will face more threats in mobile Internet, mobile platform, and other IT environments. Both security solution providers and users should make more efforts to more efficiently handle these threats" Director Joh adds.
By Tae-Jung Kim(ZDNet Korea)January 17th, 2008
No comments:
Post a Comment