While the web is full of cyber security reports written by the best analysts for companies and corporations, there seems to be a shortage of summarized recommendations for private users. We, the public, are becoming more dependent on technology and our devices, and this trend is expected to continue growing over the coming years. Let’s take a look at the 5 pressing cyber security issues that we should keep in mind as we enter the new year.
1. Ransomware – “Cyber Pirates of the Caribbean”
 |
| “Cyber Pirates of the Caribbean” and this Johnny Depp ain’t cute |
The Threat:
According to “Forbes” magazine the pirates are back, with reported ransomware transactions in 2021 reaching an average of 102.3 million dollars a month . This threat has been around for quite a few years and is expected to increase in volume over the coming years. While these kinds of attacks usually target big companies with big money, they can sometimes target individual users as well, and while big companies can either afford to pay the ransom or have extensive insurance coverage, the individual user is mostly left unprotected.
Safety Measures:
Individuals are encouraged not to pay ransom, but rather isolate their computers and get their systems wiped, the malware removed and their data restored. This means you should occasionally back up your data to minimize the damage.
2. Data Extortion – whom we trust with our data
 |
| Do Cyber Criminals Actually Wear Suits? |
The Threat:
What’s getting a little more tricky about ransomware is referred to as “double extortion” – when the data is not only encrypted and taken as hostage, but also diagnosed on a content level, in search of personal and sometimes intimate information, which can be exploited even if the malware is removed without paying the ransom. Sometimes the data is even sold to third party hackers who offer a bid for it and can use it for their own ransom campaigns as emotional blackmail .
For example. in late 2021 the cloud service CyberServe was attacked by hackers, who discovered that one of its hosted websites was the Israeli LGBTQ dating app, Atraf. After causing a commotion that highlighted the sensitivity of this data, the hackers started threatening to post it online, and followed through with it. The ramifications of their actions are still unclear but have already put millions of users under tremendous stress. Apparently, CyberServe was warned about the attack and failed to take better measures in order to prevent it.
Safety Measures:
Unfortunately, this hack couldn’t be prevented by private users and is a painful lesson and warning sign for users, to learn about the hosts of their online services and apps, and make sure they are accountable and acting responsibly with their clients’ sensitive data .
3. Remote Control – Staying safe while working from home
 | |
|
The Threat:
As we started returning to offices during 2021, we woke up to a new reality in which remote work has become much more commonplace. The primary way in which this is enabled is RPD (Remote Desktop Protocol), where a private user can connect remotely to a closed network and get access to it from afar . The threat is double edged here. On the one hand, the individual user is far more exposed to malware from the daily use of internet and can end up serving as a portal for malware into their company’s secure network. On the other hand, while corporate networks tend to have strong cyber security arrays, they still suffer attacks from powerful malware that can find their way into a private user’s computer, where security isn’t as stringent, and cause serious damage while evading standard antivirus software.
Safety Measures:
A few good security measures for working remotely include keeping the apps and operating systems on your devices up-to-date, making sure you have strong passwords on your home router, and if you have a VPN – making sure to use it when you connect remotely to the network at your place of business .
4. Authentication – Being Authentic in the Digital Age
 |
| Hey Siri, I Feel Like You’re Not Being "Authentic" |
The Threat:
Over the past decade, apps and web based services have increased their use of multifactor authentication, which applies a strong layer of security for the user . Ironically, many users have been finding it irritating and redundant because it tends to slow down their interaction with their apps. However, hackers are on the prowl for vulnerabilities and the instinct to find the fastest and easiest way to use an app is one vulnerability that no one else can patch but us. Just imagine the havoc that a hijacked session could wreck on your life, or remember the last time you got an alert that someone used your account and had to recover it and change your password.
Safety Measures:
While multifactor authentication can be a burden sometimes, users should do their best to insist on using it even if it slows down their interaction with their favorite apps. Be patient and don’t despair; use multi factor authentication .
5. Accepting Cookies – The Cookie Monster is back!
 |
| In Cookies we Trust? |
The Threat:
You may have noticed a resurgence in the pop-up messages on websites, asking you to authorize the use of cookies while you browse through them. As a reminder, cookies are files that make your user experience better by saving your browsing preferences and personal log-in information, and this is done by downloading these Cookie files onto your devices. A series of legislations regarding internet privacy which have come into effect recently, have forced businesses and service providers to remind you of this as you enter their websites, and ask for your consent. This could be annoying as it is now becoming the standard experience on many websites you visit for the first time, and one can be tempted to click “accept all cookies” on all websites, but there are some websites you definitely don’t want to give permission to download their cookies onto your device .
Safety Measures:
You should think twice before authorizing the downloading of cookies to your device on certain websites, such as unencrypted websites (look out for the unlocked icon in your browser’s URL bar), request to use 3rd party cookies (which means your information could be forwarded and sometimes sold to others) . Otherwise, consider not accepting cookies from websites in which you’re asked to supply highly personal data like credit card numbers or social security information. Yes, it may feel like a burden to type in all those details every time, but you’ll be very happy you did so next time you read about a leak from a government website or big online shopping vendor.
Sources:
Comments
Post a Comment