National Cyber Security Surveillance Center (NCSC) experts have just released forecasts about some prominent cyber attack trends in 2021 and the following years.
Five trends network attack predicted by experts of National Cyber Security Monitoring Center (NCSC), Department of Information Security, Ministry of Information and Communications, including:
The risk of leaking online will increase dramatically
The fast and powerful digital transformation process means that the amount of data and information circulating on cyberspace will become increasingly huge. The large amount of information from breakthrough technologies through countless sensors in IoT devices or cloud computing … all have potential risks leading to data leakage.
Digital transformation of countries with superiority, innovation in development of digital government, digital economy and digital society is a new “revolutionary wave” in which we must grasp the opportunity, take advantage of the ability in IT, dynamic and creative to become a developed nation in the region and the world. In addition, ensuring network safety and security, and more specifically having a strategic solution to protect and use data as a core asset of an organization, business or individual is an uncompromising condition. .
Attacks on IoT devices and industrial controls become the main trend
IoT in Vietnam is a very potential market attracting the research and investment of many large domestic and foreign corporations. Vietnam’s IoT ecosystem is increasingly comprehensive with complex multi-tier structure of hardware / connection infrastructure, platform software / big data analysis software, services and policies.
Developed fast, widely applied, but in fact, information security in IoT has not really been paid attention, since then IoT can very likely become “prey” for attackers. The reality shows that in all layers there exist potential vulnerabilities that attackers can exploit and steal information.
|Forecasting attacks on industrial IoT and control devices is no longer a sign but a major trend. (Illustration)|
Industrial Control System (ICS) is a combination of technical means, software programs and people that control production technology in an industrial facility. The ICS are widely used in the fields of industrial production, energy, transportation …
In recent years, these systems are becoming the target of high-tech criminals. Typical examples are the attacks on Iran’s nuclear facilities, German chemical plants and Ukrainian power networks.
Attacks on ICS have a common feature of being highly complex, meticulously prepared, and implemented in stages, with devastating consequences. This is due to the complex structure and distinct characteristics of industrial control systems compared to conventional IT systems.
The ICS plays a very important role for the country, especially the integration of digital technology in the ICS system, so this is likely to become the main attack trend for APT groups in 2021.
Supply chain attacks continue to be fully exploited
In 2020, the attack on supply chains has been happening continuously and strongly in the world and in Vietnam. Entering 2021, these attacks will continue to be exploited more thoroughly.
A supply chain attack is a network attack that targets a business through its provider (s).
Thus, the larger or more complex the supply chain is, the higher the risk of attack is. The consequences that businesses have to suffer are diverse: information leakage, business disturbance or disruption, revenue decline, prestige – brand name, loss of investment opportunities … .
The main cause of supply chain attacks is the loose security of operating processes and cooperation between the parties. Specifically, many businesses allow suppliers access to “sensitive” information, which is the same information that could affect the business when exposed. A exploited supplier can have a wide range of effects on the partners that receive supplies from that supplier.
Software supply chain attacks are not a new type of attack, and security experts have been warning for years. They are one of the most difficult types of threats to stop because they take advantage of the trust relationship between the supplier and the customer and the communication channels between each other. For example, the continuous software update mechanisms that the software is inherently trusted with.
Security for cloud computing will be a big challenge
According to many experts, ensuring safety and cybersecurity for cloud computing will be the focus of attention for organizations in the coming year. In the trend of shifting to technology 4.0, digital transformation of private enterprises and state-owned organizations is taking place strongly, cloudization or using the cloud is an inevitable trend.
However, concentrating on building Cloud can create security holes, security flaws from misconfiguration. DDoS attacks will focus heavily on the clouds, and security – privacy issues will be a big challenge for organizations that own the cloud as well as use services on the cloud platform.
Online phishing attacks are still complicated, increasing both in number and method
With the unpredictable development of the Covid-19 epidemic, experts predict that by 2021 online phishing attacks will remain very complex, increasing in number and methods.
Even if the active phase of the Covid-19 epidemic is controlled by 2021, security threats associated with Covid-19 may continue for a long time thereafter. The malicious actors will try to take advantage of the vast amount of information related to vaccines, the reactions of governments and organizations, and other long-term effects of the pandemic to launch attacks online.
In addition, the trend of working online also increases the likelihood of users being exposed to cyber threats, such as Ransomware, Phishing.
100% of ministries, branches and localities have ensured food safety according to a 4-layer model
The rate of ministries, branches and localities implementing information security (ATTT) under the 4-layer model has increased from 0% in 2018, 2019 to 100% in December 2020.