AhnLab Announces Security Prediction 2011: Threats Getting Socialized and Diversified

- AhnLab’s researchers foresee the increased attacks on SNS and mobile device

- Attackers aim platforms and services including infrastructure and cloud computing

SEOUL, South Korea--()--AhnLab Inc. (www.ahnlab.com), a leading provider of integrated security solutions, today announced ‘Top 7 Security Threat Prediction 2011’, outlining the top threats which were predicted by the top researchers at AhnLab. Today’s announcement mainly warns attacks on or using platforms and services such as social network service exploitation, DDoS (Distributed Denial of Service) attacks, threats aiming cloud computing service and infrastructure and growing attack on mobile devices including smartphone.

Social Network Service, being a platform for malware distribution

2010 was the year of social network service for instant communication represented by Twitter and Facebook. However, it also expected to be used as the instant platform for malicious software by cybercriminals in 2011. Malicious URLs that lead users to phishing website will be distributed via shortened URLs, Direct Messages, SNS applications, friend search optimization and chatting services under the disguise of Twitter or Facebook. AhnLab also identified an increase in email campaigns under the name of an SNS service provider, attempting to deliver malicious URLs. Malicious attacks utilizing SNS websites are expected to continue to increase.

Sophisticated DDoS Attack

Ever since DDoS attack hits whole internet system of South Korea in July 2009, AhnLab has identified that DDoS attacks are getting converged and sophisticated more than ever. In 2011, the variants for DDoS attack will be continue to increase, as attackers can capitalize diversified methods like SNS platforms to infect individual PCs by pouring malicious URL and downloaders containing malware. On the other hand, growing social commerce companies can be the new target for DDoS attackers.

Beware of cyber war: attacks on infrastructure

The Stuxnet worm, identified in July 2010, not only exploits zero-day vulnerabilities, but also preys on Siemens SCADA (Supervisory Control Data Acquisition) software which is widely used by many countries to control critical infrastructure. The malware opened new chapter of cyber terrorism. Zeus botnet, targeting online commerce infrastructure including internet banking system, is also expected to grow in 2011.

Increasing threat on smartphone

In August 2010, malicious applications that run on Android OS-based smartphones were reported including Android-Trojan/Ewalls and Android-Trojan/SmsSend, which steals personal information, such as SIM data, geographical location data without consent from the user. In 2011, with the widespread adoption of mobile devices in every class of business, the number of malicious apps that results in unconsenting payment to users or leads them to malicious website will rapidly increase.

Threats that exploit wireless AP vulnerability

As wireless AP(Access Point)s for mobile office and smartphones are widely spearhead, the threats exploiting wireless AP vulnerability will be emerged as serious security threat in 2011. Cybercriminals can easily snatch the data between APs and mobile device by installing illegal AP or exploiting APs without pass code.

Cloud and virtualization can be used for security threat

While offering significant benefits and significant cost-savings, AhnLab predicts that cloud computing and virtualization technology can be used in cyber attacks in 2011. For instance, cybercriminals can build several virtual C&C(Command & Control) servers based on cloud computing technology to manage botnets(infected PCs) more efficiently.

Exploiting zero-day vulnerability will be more general

Although many software dinosaurs including MS and Adobe struggles to minimize the vulnerability from zero-day flaw, such as ‘protection mode’, the zero-day vulnerability still is one of the all-time top security issues. In 2010 alone, numerous attacks using zero-day vulnerabilities in Internet Explorer, Adobe Acrobat Reader and Flash Player were identified, and AhnLab predicts that the feature will continue to grow in 2011.

AhnLab Full Range Solutions

A leader in comprehensive online security, AhnLab offers full range of solutions and professional services that are designed to secure and protect critical information from individual anti-virus solutions, network, mobile and online game security, security management and consulting services for all class of business. AhnLab Online Security (AOS), selected by world’s well known banks, offers integrated protection against Zeus through its innovative AOS security solution comprised of AOS Secure Browser, Anti-Keylogger, Firewall and Anti-Virus/Spyware programs.

Contacts

AhnLab, Inc.
Corporate Communications
Changmin Song, +82.2.2186.7955
seemefly@ahnlab.com

Release Summary

AhnLab announced ‘Top 7 Security Threat Prediction 2011’, outlining the top threats which were predicted by the top researchers at AhnLab

Contacts

AhnLab, Inc.
Corporate Communications
Changmin Song, +82.2.2186.7955
seemefly@ahnlab.com