Cyber Threat Trends Experts To Pay Attention To In 2023, Anything?

Cyber attack trend in 2023 (photo: Unsplash)

JAKARTA - Attacks launched by hackers repeatedly harm individuals, companies, and can even threaten the entire country, and not only financially.

As part of Kaspersky Security Bulletin (KSB), researchers at Kaspersky Security Services shared their predictions for this year's cyber threat trend that must be prepared by big businesses and government structures.

The following is the result of Kaspersky's review of threats that will be relevant to the big business and government sector in 2023.

Blackmailing: public posts of hackers to data leakage

Ransomware actors are increasingly posting about new hacking incidents successfully on businesses on their blogs, the number of such publications will increase in 2022. The peak number exceeds 500 per month, and this comes several times between the end of 2021 and the first half of 2022.

Cybercriminals usually reach victims directly, but now they are immediately posting about security breaches on their blogs, such as setting back-time counters for leaked data publications instead of asking for ransom personally.

Kaspersky predicts that this dark trend will continue to develop in 2023 as this tactic benefits cybercriminals whether they are victims of paying or not. Data is often auctioned, with closing offers sometimes exceeding the ransom requested.

Posts about fake leaks to improve their reputation

The blog post on extortion has attracted the attention of the media, and some less-known actors may take advantage of this in 2023, claiming that they have hacked a company. Whether the hack actually happened or not, the leak report could be detrimental to business.

More personal data leaks, risky corporate email

Experts estimate the trend of personal data leakage will continue until 2023. Although directly affecting individual privacy, the company's cybersecurity is also risky, where many people frequently use office email addresses to sign up for third-party sites, which can be leaked.

When sensitive information such as email addresses can be accessed publicly, it can then lead to potential attacks on organizations on darknet websites; moreover, data can be used for phishing and social engineering.

Malware-as-a-service, cloud-through-cloud attack, and data sources compromised on the dark web

Experts also expect ransomware attacks to grow similarly due to the emergence of malware-as-a-service (MaaS) tools. The attack complexity will increase, meaning the automatic system won't be enough to ensure complete security.

In addition, cloud technology will become a popular attack vector, as digitalization increases cybersecurity risks. In addition, cybercriminals will more frequently intercept dark websites by 2023 to purchase access to previously compromised organizations.

The threat landscape is growing rapidly, and companies are forced to adapt quickly. To protect big businesses or government agencies from threat trends, it is necessary to monitor the digital footprint of the organization," Anna Pavlovskaya, Security Services Analyst at Kaspersky said in a statement.