In 2022, we will observe state-sponsored groups targeting the cryptocurrency industry, while cybercriminals will take advantage of investors by fabricating rogue wallet with backdoors included. On top of that, we are likely to witness the growth of attacks against payment systems and more advanced mobile threats. These are the key predictions from Kaspersky’s ‘Cyber threats to Financial Organizations in 2022’ report.
2021 was a year of challenge and novelty and there always are those who adapt and manage change to their advantage quickly – cybercriminals. Since most of them are motivated by money, financial threats have always been one of the most significant parts of the threat landscape. Pondering on the significant events and trends that shaped the financial threats’ sector in 2021, Kaspersky researchers have forecasted several important tendencies expected to occur in 2022. Here are their key predictions:
- Targeted cryptocurrency attacks will grow. As cryptocurrency is a digital asset and all transactions take place online, it offers anonymity to users. These are attractive features for cybercrime groups. However, it’s not only cybercriminal organizations but state-sponsored threat actors who have targeted this industry. We have already witnessed APT groups rising to attackthe cryptocurrency business aggressively, and we anticipate that this activity will continue.
- Flawed security and fake hardware wallets as crypto hardware-based threats. While cryptocurrency attacks are becoming more targeted, cybercriminals keep coming up with new ways to steal investors' financial assets. In the case of cryptocurrency investment opportunities, Kaspersky researchers conclude that cybercriminals will take advantage of manufacturing and retailing rogue devices with backdoors, followed by social engineering campaigns and other techniques to steal victims' financial assets.
- Infostealers acceleration and consolidation.Simplicity, affordability, and effectiveness in attacks will play a key role in adopting infostealers against financial assets, at least as a first-stage data collector. Different threat actors will take advantage of it to profile victims for further attacks. It includes but is not limited to targeted Ransomware attacks, traditional targeted attacks, and others.
- Mobile implants development consolidation.Pandemic stimulated mobile banking, which also has become more mature. Kaspersky experts expect more mobile banking Trojans for the Android platform, especially RATs that can circumvent security means adopted by banks (such as OTP and MFA). Local, regional Android implant projects will move globally, exporting attacks to Western Europe and other countries worldwide.
"This year has been challenging for many organizations: handling remote access for ad-hoc employees, patching hard systems connected to the Internet to endure ransomware attacks, dealing with a substantial increase of mobile banking and its malware implants. And cybercriminals have not been shy of taking advantage of attacking markets. We have watched very regional cybercriminals shifting to other world regions making cybersecurity people work harder. Therefore, it is crucial to establish the principal leaning in a developing landscape of financial threats and share our expertise to help businesses become prepared, so they understand how to protect from before-mentioned threats,' says Dmitry Bestuzhev, head of Kaspersky’s Global Research and Analysis Team (GReAT) in Latin America.
Financial predictions are part of Kaspersky’s Vertical Threat Predictions for 2022, one of the segments of the Kaspersky Security Bulletin (KSB) – an annual series of predictions and analytical reports on key shifts in the cybersecurity world. Follow this link to look at other KSB pieces.
To review what Kaspersky experts expected to see in 2021, please follow this link.
-Ends-
About Kaspersky
Kaspersky is a global cybersecurity and digital privacy company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 240,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com
For further information, please contact:
Sweta Fernandes, Account Executive, Golin, KasperskyTeam@golin-mena.com
© Press Release 2021
Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.
The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.
To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.