5 emerging cybersecurity threats facing the U.S.

Karim Hijazi is CEO of Prevailion, a cyber intelligence company that monitors and detects active threats by infiltrating hacker networks. Hijazi is also a former director of intelligence for Mandiant and a former contractor for the US intelligence community.

Ransomware has taken the spotlight lately following a string of brazen attacks on major U.S. companies.

And as bad as this kind of malware is, businesses and investors can expect to face a growing number of sophisticated cyber threats that could be even more disruptive and difficult to prevent.

Here are five emerging threats to watch:

Tani Currin holds an “anti-selfie” mask during the Black Hat USA 2014 hacker conference at the Mandalay Bay Convention Center in Las Vegas, August 5, 2014. REUTERS/Steve Marcus

Wiper malware

“Wipers” are a type of malware that can be even more destructive than ransomware because they are designed not for extortion — they're for the sole purpose of erasing data.

Wipers haven’t been widely used up to today, but that is likely to change. As nation-states become more active and emboldened in cyberspace, we can expect to see more digital clashes that involve destructive cyber attacks.

There is nation-level precedent: Iran has been implicated in an ongoing series of wiper attacks against Israel amid an outbreak in cyber skirmishes between the two countries that escalated in 2020.

Iran has also been implicated in other wiper attacks over the years, including the 2012 ‘Shamoon’ attack on Saudi Aramco, which destroyed over 30,000 computers, and the 2014 wiper attack on Las Vegas Sands Corp. North Korea also used wiper malware in its infamous attack on Sony Pictures back in November 2014.

And wiper malware is an equal playing field, meaning that it will not be limited to state actors. While wipers have less financial value for criminals, they are a potent weapon for terrorists, political activists, and lone wolves who are only interested in causing damage.

The logo of Aramco is seen as security personnel stand before the start of a press conference by Aramco at the Plaza Conference Center in Dhahran, Saudi Arabia November 3, 2019. REUTERS/Hamad I Mohammed

Evil AI

The emerging field of artificial intelligence (AI) could be a future gold mine for cybercriminals and nation-state hacking groups.

AI will lead to smarter and autonomous malware that can adapt to changing circumstances and learn how to improve its tactics to pull off more advanced attacks.

Researchers have also recently demonstrated that early-stage AI is already significantly better than humans at launching phishing attacks and crafting viral tweets and social media phishing that can infect users.

It will also make it easier for hackers to hijack online accounts by predicting passwords and beating CAPTCHAs.

While “deepfake” videos are well known by now, an even more compelling use-case for cybercriminals will be audio deepfakes which impersonate CEOs to trick employees into sharing sensitive information or authorizing payments.

Furthermore, deepfakes could potentially trigger political crises and incriminating innocent people.

A woman in Washington, DC, views a manipulated video on January 24, 2019, that changes what is said by President Trump and former president Obama, illustrating how deepfake technology can deceive viewers. (Photo by Rob Lever/AFP)

Firmware attacks

For the last 25 years, most cyber attacks have targeted software — rarely venturing below the operating system level of a device.

That is now beginning to change.

Hackers are figuring out how to target “firmware” with malware in order to gain God-level access to these devices and even physically sabotage them. A recent survey found that 83% of enterprises have already started to experience firmware attacks.

So what is firmware?

For high-functioning electronics, like a computer or smartphone, firmware is the code that runs beneath the operating system and is the bridge between the software and the hardware.

However, it is even more critical for lower-functioning “embedded devices” (i.e., the Internet of Things or Industrial Internet of Things) where firmware is often used in place of an operating system.

In a nutshell, if a hacker can gain control over the firmware, they can control the device. That is especially alarming for the embedded devices and industrial controllers that are used in safety-critical systems like the power grid, water treatment plants, nuclear plants, manufacturing, oil and gas pipelines, etc.

Downtown Los Angeles is seen behind an electricity pylon through the morning marine layer in Los Angeles, California, U.S., August 20, 2019. (REUTERS/Lucy Nicholson)

An attack on the firmware of those devices could lead to dramatic incidents of physical sabotage. For instance, this is how a hacker could trigger a months-long power outage, disrupt the water supply, cripple manufacturing plants and even ‘brick’ gas station pumps, ATMs, hospital ventilators, and office buildings.

These types of attacks are not as far-fetched as they may sound: In 2016, Russian hackers used a special malware called “CrashOverride” to disrupt Ukraine’s power grid.

Supply chain hell

Supply chain attacks have become a buzzy term as of late, thanks to the high-profile breaches of SolarWinds, Microsoft Exchange, Kaseya, and Codecov.

The reality is that we are still in the early stages of supply chain exploitation, and these attacks will become more frequent, sophisticated, and brazen in the coming years.

Advanced nation-states like Russia and China will go further by breaching more sensitive, “backbone” IT services — think ISPs, chipmakers, app stores, security tools, source code libraries, etc. — to better infiltrate and persist inside of critical companies and organizations in the U.S.

Microsoft President Brad Smith testifies during a Senate Intelligence Committee hearing on Capitol Hill in Washington, U.S., February 23, 2021. Drew Angerer/Pool via REUTERS

Cybercriminals will do the same with lower-hanging fruit, such as retail systems and e-commerce platforms, and have already been busily exploiting supply chains: Various Magecart gangs have wreaked havoc on e-commerce sites by exploiting the open source Magento platform.

In the coming years, hackers will also infiltrate millions of IoT devices (from smart thermostats to cars), by exploiting their software/firmware supply chains, such as source code libraries or the update processes of key vendors.

Far from being a minor inconvenience, these attacks could lead to widespread physical disruption if the hackers use that access to disable the devices.

5G+ and space-based internet

While many consumers may be somewhat underwhelmed by the current 5G rollout, internet connectivity is undergoing dramatic changes that will take time to develop.

This is just the beginning of a new future where wired-connection Internet speeds will be available via wireless delivery methods, ranging from cellular towers to satellites and high-altitude vehicles.

The capacity for higher, faster wireless speeds also has a downside: Hackers will learn to exploit the higher bandwidth, and we can expect to see a wide range of attacks that such as increasingly powerful botnets, data theft at a massive scale, and device-on-device attacks.

Botnets are large networks of enslaved devices which a hacker uses to disrupt services and Internet connections by overwhelming them with a flood of bogus data requests. In 2016, a college student was able to knock out a huge slice of the Internet by creating a simple botnet consisting of thousands of insecure IoT devices.

And since future data transfer speeds will only continue to multiply (5G is already expected to 10X 4G speeds), these botnets will become exponentially more powerful.

Future botnet attacks could be used to disrupt Internet services for a large percentage of the population. They could endanger public safety by blocking emergency services throughout a state. They could even hold entire countries for ransom, similar to the 2016 attack on Liberia.

An example of a botnet operation. (FBI.gov)

Data theft will also get a boost. The higher data transfer speeds will make it easier for hackers to harvest and exfiltrate large quantities of stolen data before victims are able to shut them down. This means data breaches will become significantly more expensive for companies and harder to recover from.

As devices become smarter and more autonomous in the wake of these greater connection speeds, hackers will also leverage these capabilities to attack other devices. For instance, a hacker who breaches a smart traffic light could then use that access to hack into every car that passes by.

Similarly, an infected self-driving car could be used to infect other vehicles within range of its radio signal. A compromised drone could be weaponized to sniff out other connected devices as it flies overhead and spread an infection over vast distances.

A prototype of Goodle’s own self-driving vehicle is seen during a media preview of Google’s prototype autonomous vehicles in Mountain View, California September 29, 2015. (REUTERS/Elijah Nouvelage)

This tactic could also be used by hackers for targeting high-level executives and government officials, as well as for carrying out more sophisticated “island hopping” attacks to breach corporate networks through overlooked transient connections between various smart devices.

The bottom line is that cybersecurity will become increasingly complicated in the coming years, as hackers develop greater capabilities to launch attacks. Ransomware will continue to be a serious problem for the foreseeable future, but there are many new attacks that are equally concerning and are likely to catch many companies off-guard.

Karim Hijazi is CEO of Prevailion, a cyber intelligence company that monitors and detects active threats by infiltrating hacker networks. Hijazi is also a former director of intelligence for Mandiant and a former contractor for the US intelligence community.

    Follow Yahoo Finance on Twitter, Facebook, Instagram, Flipboard, LinkedIn, YouTube, and reddit

    Internet Explorer Channel Network
    News Related

    OTHER NEWS

    Best iPhone 13 Pro cases: top choices to protect your smartphone

    Apple’s latest iPhone 13 Pro has finally been revealed, and Apple says that its ‘Pro’ line this year features its “most Pro phones yet” – and it’s hard to disagree. ... Read more »

    Free Guy did nothing for me, because I am the enemy of fun

    Spoilers follow for Free Guy. I’m not a Ted Lasso guy. I gave it four episodes, and I didn’t click with it. I didn’t make a big deal about it, ... Read more »

    Southampton vs Leeds live stream: How to watch Premier League online from anywhere

    Having both made disappointing starts to the season, these two struggling sides will be hoping for a win to avert a campaign that looks dangerously close to becoming a relegation ... Read more »

    Leicester vs Man United live stream: How to watch Premier League online from anywhere

    After a disappointing string of results for both Brendan Rodgers and Ole Gunnar Solskjaer, this intriguing match this afternoon at the King Power is in must-not-lose territory for both managers. ... Read more »

    Man City vs Burnley live stream: How to watch Premier League online from anywhere

    Currently sitting third from bottom, it’s been a tough start to the season for Burnley, and things don’t get any easier for the Clarets as they travel to the Etihad ... Read more »

    Digital radio integration in mobiles promises global opportunity: Xperi

    New Delhi, US-based technology licence firm Xperi sees potential for Indian mobile makers to have an edge globally if they integrate digital radio systems in the devices. The company has ... Read more »

    TCL unveils full-colour microLED AR glasses

    Consumer electronics brand TCL has released the first binocular full-colour MicroLED AR glasses ‘Thunderbird Smart Glasses Pioneer Edition’ in China.At present, TCL has not revealed the price and availability of ... Read more »

    Smartphone app helped people significantly lower their BP

    A three-year-long study involving nearly 28,000 adults has shown that a smartphone app and a connected monitor were able to help them significantly lower their blood pressure.The programme, called Hello ... Read more »

    NASA launches history-making probe to study Jupiter's asteroids

    NASA launched a first-of-its kind mission on Saturday to study Jupiter's Trojan asteroids, two large clusters of space rocks that scientists believe are remnants of primordial material that formed the ... Read more »

    Upgraded to Windows 11? Here's how to get the most out of your refreshed PC

    A free update for Windows 10 users — and likely preinstalled on new PCs you buy going forward – Microsoft’s new Windows 11 operating system isn’t a radical shift from ... Read more »

    Se habrían revelado nuevos e interesantes detalles de GTA 6 gracias a una oferta de trabajo de Rockstar

    © SomosXbox detalles de GTA 6 Las filtraciones sobre la sexta entrega de Grand Theft Auto no cesan. Como no, la avalancha de comentarios y noticias que surgen constantemente han ... Read more »

    Filtrados los requisitos mínimos y recomendados de GTA Trilogy Remastered para PC

    © SomosXbox requisitos mínimos y recomendados de GTA Trilogy Remastered para PC Grand Theft Auto: The Trilogy – Definitive Edition es una realidad y llegará a todas las plataformas a ... Read more »

    I played Deathloop on the 10-inch screen in an EV, and it was painful

    Deathloop, huh. My colleagues have been vocal about this game in TechRadar’s work Slack channel, but as I’m a gamer who doesn’t stray too far from two main game franchises ... Read more »

    Congress is coming for big tech—here's how and why

    A new bipartisan Senate bill likely to be introduced early next week would make it illegal for big tech companies like Facebook, Amazon, Apple and Google to promote their own ... Read more »

    How Lilibet's Christening Became Another Royal War

    Kevin Mazur/Getty Christenings are the most simple, joyous of ceremonies. Funerals aren’t (usually) much fun and weddings, as the royals know only too well, often come with a substantial side-serving ... Read more »

    Jeffrey Epstein believed he could make a deal with prosecutors by revealing the secrets of Donald Trump or Bill Clinton, a new book says

    Donald Trump with wife Melania Trump, Jeffrey Epstein and Ghislaine Maxwell. Davidoff Studios/Getty Images Jeffrey Epstein believed he could make a deal with prosecutors by flipping on Trump or Clinton, ... Read more »

    'EastEnders' star Tamzin Outhwaite opens up about baby loss

    Tamzin Outhwaite opened up on Twitter. (Getty Images for EE) Tamzin Outhwaite has opened up about suffering miscarriages, saying she lost many babies and had felt “a sense of shame”. ... Read more »

    What's a ‘digital twin'? And why do we need it for EV batteries?

    Although lithium-ion batteries have long been the focus of EV development, issues such as battery aging and safety still aren’t fully understood. That’s mainly because current battery management systems can obtain ... Read more »

    Barcelona accused of 'carelessness' amid major hygiene concerns at Camp Nou

    Barcelona have been accused of ‘carelessness’ following a report that first uncovered major hygiene problems at their iconic Camp Nou stadium back in 2013. © Provided by 90min Camp Nou ... Read more »

    Lucy mission: Nasa sends probe on 12-year exploration to study asteroids around Jupiter

    Lucy mission: Nasa sends probe on 12-year exploration to study asteroids around Jupiter Nasa has launched a first-of-its kind asteroid mission this weekend to study two large clusters of space ... Read more »

    How Steam refunds are a blessing and a curse

    Getting a refund on a game purchased on Steam is easy. If you’ve played a particular title for less than two hours, and you’re within 14 days of having purchased, ... Read more »

    Apple Unleashed October 2021 event: what we expect to see

    Apple has announced that its October 2021 event – titled Unleashed! – will land very soon on October 18. The tech company is promising to unveil some pretty impressive gadgets ... Read more »

    Will Young slams Top Gear ‘homophobia', says Richard Hammond is ‘the worst' of all the presenters

    Will Young singled out Richard Hammond as “the worst” of the former Top Gear presenters for his allegedly homophobic jokes on the Amazon Prime special, The Grand Tour. The gay ... Read more »

    Colombia sterilises drug lord Pablo Escobar's ‘cocaine hippos'

    Hippos are seen at the Hacienda Napoles theme park, once the private zoo of drug kingpin Pablo Escobar at his Napoles ranch (Raul Arboleda/AFP via Getty Images) The Colombian government ... Read more »

    Vienna museums open adult-only OnlyFans account to display nudes

    More than a century after the artists of the Vienna Secession declared “to every age its art; to art its freedom”, the Austrian capital has found a new site for ... Read more »

    Terrifying haul of 90 snakes found under California home: ‘Every three minutes I would find another snake'

    Some of the 90 rattlesnakes pulled out underneath a home in Santa Rosa, California (Sonoma County Reptile Rescue) It was the smell that gave it away. Sonoma County Reptile Rescue ... Read more »

    «Ich kann es kaum erwarten, zu meinen Kindern zu fliegen»

    © Instagram / hshprincesscharlene Fürstin Charlène steckt seit Monaten wegen einer Hals-Nasen-Ohren-Infektion in Südafrika fest. Seit fast einem halben Jahr sitzt Fürstin Charlène in Südafrika fest. Grund dafür ist eine ... Read more »

    Dbrand declares its PS5 Darkplates 'are dead' after Sony threatens legal action

    Earlier this year, Canadian company dbrand started selling matte black faceplates for Sony’s PS5 console, calling them ‘Darkplates’. Now, dbrand has announced it’s pulling Darkplates from sale after receiving a ... Read more »

    Conservative MP David Amess Stabbed Multiple Times

    (Photo: David Amess) Conservative MP Sir David Amess, 69, has been stabbed several times in his Southend West constituency, according to reports. Sky News reported on Friday afternoon that a ... Read more »

    Shop sitewide savings—including 60% off already-discounted styles—at J.Crew now

    — Recommendations are independently chosen by Reviewed’s editors. Purchases you make through our links may earn us a commission. It’s time to stock up on fall and winter wardrobe essentials. ... Read more »

    Ole Gunnar Solskjaer claims Marcus Rashford should 'prioritise' football

    Manchester United manager Ole Gunnar Solskjaer has controversially suggested that Marcus Rashford should ‘prioritise’ football following his incredible off-field work over the last 18 months. © Provided by 90min Marcus ... Read more »

    NASA Launches Spacecraft to Jupiter's Trojan Asteroids

    NASA launched a spacecraft to study clusters of asteroids surrounding Jupiter on October 16, beginning a 12-year mission, the first of its kind, to study the rocks known as Jupiter ... Read more »

    'Astounding quality:' These wildly popular earbuds are on sale for $27 at Amazon

    We may receive commission from purchases made via links on this page. Pricing and availability are subject to change. SoundPeats are just like Apple AirPods, except affordable. (Photo: Amazon) Just ... Read more »

    Eco-friendly, lab-grown coffee is on the way, but it comes with a catch

    Heiko Rischer isn’t quite sure how to describe the taste of lab-grown coffee. This summer he sampled one of the first batches in the world produced from cell cultures rather ... Read more »

    Best monitors for Xbox Series X 2021

    Only the best monitors for Xbox Series X can truly do that next-gen console justice. Trust us on this: where your Xbox gaming experience is concerned, an excellent 4K monitor ... Read more »

    That new MacBook Black Friday deal might be harder to get than ever in 2021

    If you’re hoping for some Black Friday MacBook deals next month, you and many other MacBook fans might be out of luck, no matter how much you’re willing to pay ... Read more »

    Biden in 2020: 'We don't have a food shortage problem, we have a leadership problem'

    Another day, another Biden lie exposed from when he was campaigning for president. © Provided by Washington Examiner At a town hall in May 2020, when discussing food shortages during ... Read more »

    Nasa Lucy mission launch - live: Probe to explore asteroids around Jupiter ready to blast into space

    Nasa Lucy mission launch – live: Probe to explore asteroids around Jupiter ready to blast into space Nasa is launching a new asteroid mission today to study two large clusters ... Read more »

    New crew docks at China's first permanent space station

    1 / 5China SpaceIn this photo released by Xinhua News Agency, screen image captured at Beijing Aerospace Control Center in Beijing, China, Saturday, Oct. 16, 2021 shows three Chinese astronauts, ... Read more »

    NASA's asteroid hunter Lucy soars into sky with diamonds

    1 / 2Space AsteroidFILE – This Wednesday, Sept. 29, 2021 file photo shows NASA’s Lucy spacecraft with its housing at the AstroTech facility in Titusville, Fla. It will be first ... Read more »