- The ongoing COVID-19 pandemic will continue to pose unique threats and vulnerabilities for businesses fending off cyberattacks in the coming year, Kaspersky cybersecurity analysts predict.
- Cybercriminals have already started using sophisticated tactics to exploit fear surrounding the pandemic, including fake contact tracing apps that steal people's information.
- Others have capitalized on the high-stakes nature of COVID-19 treatment, targeting vaccine research centers and overburdened hospitals for profit.
- The rise in remote work also grants cybercriminals more opportunities to hack into companies by targeting tools like VPNs used on employees' devices.
- Kaspersky researchers Ariel Jungheit, David Emm, and Costin Raiu answered questions from Business Insider about their predictions for the coming year and how businesses can prepare.
- Visit Business Insider's homepage for more stories.
As COVID-19 rages on, security researchers say attackers are likely to continue to use the pandemic to sow chaos and exploit people's fears for profit in the coming year.
The pandemic will remain a defining force in cybersecurity in the coming year, according to Kaspersky security researchers Ariel Jungheit, David Emm and Costin Raiu, who answered questions from Business Insider during a Thursday morning briefing on their 2021 cybersecurity predictions published this week.
Hackers are capitalizing on the pandemic by exploiting people's uncertainties to get their attention and trick them into handing over credentials through phishing schemes, which are the most commonly-used hacking tactic, the team said.
"Criminal groups and threat actors are using COVID-19 largely as a lure in order to hook their victims and get an initial foothold into a target organization," Emm said. "For attackers, it's the gift that keeps on giving because here are so many aspects of it that they can latch onto."
Such schemes have already been sighted in the wild, the researchers noted, including emails posing as health authorities to trick victims into clicking malicious links.
Other cybercriminals have devised even more sophisticated bait, including fake contact tracing apps designed to look like they come from government health authorities that install malware on victims' smartphones — a trend that Jungheit predicts will extend into the coming year.
"Almost every (cybercriminal) campaign in 2020 made use of COVID-19, with each threat actor finding its own angle fitting its geopolitical agenda," Jungheit said.
Overburdened hospitals and COVID-19 vaccine research facilities will be top targets for cyberattacks in the coming year, the researchers predict, building on an uptick in attacks against those sectors in 2020. Vaccine research centers in the UK and several hospital chains in the US have already been hit with cyberattacks in recent months.
It's not clear whether those attacks are motivated by profit or by geopolitical aims, the researchers said — but cybercriminals are targeting them because the high stakes surrounding COVID-19 grants them more leverage over their victims.
"Attackers seek to exploit any situation where there's any form of conflict," Emm said.
Experts say businesses should prepare for an onslaught of attacks targeting remote workers
With the rise of remote work, cybercriminals are devising new ways to crack into companies' systems by targeting employees logging in from home, the researchers said.
One tactic that's expected to grow in 2021 is social engineering schemes that aim to compromise cloud computing platforms or corporate VPNs used by remote workers. Those schemes often incorporate "voice phishing," wherein attackers call victims and pose as technical support with Microsoft Teams, Slack, or a VPN company in order to direct users to log onto a phony site that steals their login credentials.
To counter those attacks, companies should train workers about phishing tactics and warn them to be on the lookout for suspicious calls or emails, Raiu said. He also recommends offices invest in detection tools like YARA, a free service that lets organizations share information about malware.
"All it takes for threat actors to breach your organization [is] getting a foothold, then slowly but surely expanding their access ... so vulnerability tracking is very important," Raiu said. "Altogether these form the right security posture that organizations need to adopt for 2021."