Home » In the Midst of COVID-19, We’re Seeing a Pandemic of Cyber Attacks
Author: Babur Khan, Technical Marketing Engineer – Enterprise Security at A10 Networks
In the first quarter of 2021, the COVID-19 pandemic is still wreaking havoc around the globe. The coronavirus is continuously evolving and presenting new challenges.
In addition to the direct effects of the COVID-19 pandemic, we also saw a sharp rise in cybercriminal activity. From simple phishing attacks to one of the largest DDoS attacks ever recorded, we saw the cyber threat landscape evolve and grow.
At the same time, we also saw a rapid growth in the tech and cyber security industry. From the roll out of 5G in many parts of the world to exponential growth in the SaaS industry, we saw the pandemic put many positive changes into full gear as well.
We believe that these challenges, and the changes that they brought about, will not stop. The effects of this pandemic on the tech industry will be long lasting. Moreover, some of the challenges introduced in 2020 will affect cybersecurity well into 2021, and even beyond. As we move deeper into 2021, here are some of the cyber security trends that we see:
Last year was a busy year for both attackers and hackers as well as cybersecurity personnel defending against the plethora of attacks to which they were subjected. With an election year in the United States in 2020, we saw a rise in anti-government cyber activities, a prominent example of which was the attack on FireEye, allegedly by a foreign nation state sponsored entity, where multiple tools were stolen for use in attacks later on.
In 2021, such attacks will not just be more frequent, but they will also be very specific regarding who they target. International cyber espionage will be one of the main motivators for cyber attacks and we will see security vendors being attacked and compromised at an even greater pace. Even the attacks that happened in 2020, like the FireEye attack or the Sunburst attack, that targeted the SolarWinds supply chain, will have long lasting effects. We have only seen the beginning of these attacks. Investigators suspect, for example, that up to 250 organizations may have been compromised in the SolarWinds attack. Actual results are yet to come.
Such attacks will not only create opportunities for newer attacks, or variants/branches of the existing ones, but will also drive cybersecurity innovation in 2021.
One of the major innovations driven by 5G is the implementation of multi-access edge computing (MEC). Building intelligence into the edge will boost the availability and efficiency of 5G networks. However, keeping the global cybersecurity trends in mind, we can see that the intelligent edge might be hijacked by attackers for launching different kinds of attacks, both on the mobile core networks as well as on victims outside of the realm of the service provider that has been compromised. If nothing else, MEC can be used for propagating malware into different networks for drone recruitment in IoT botnets.
In 2020, even though we saw one of the largest DDoS attacks ever recorded target one of the biggest names in the tech industry, we also saw that a large number of DDoS attacks went unnoticed because, even though the frequency of these attacks was very high, their size was not. These high-frequency, low-volume attacks will keep the security industry busy in 2021 and may be instrumental to disabling security infrastructures or just acting as smokescreens for larger malware attacks such as the recent Sunburst attack.
The A10 Networks security research team observed that the number of DDoS weapons doubled from around six million at the end of 2019 to 12.5 million in 2020. This trend will remain the same in 2021 as more IoT devices come online with each passing day, with an expected addition of at least five million weapons.
The large number of DDoS weapons will also enable attackers to launch another record-breaking DDoS attack in 2021.We will have to wait and see whether it will be made public by the victims or not.
2020 was the year of understanding what the Zero Trust model is in a practical sense. Throughout the year, we saw security vendors align their solutions with the Zero Trust model, adjust the model as we got more clarity on what it means to be a Zero Trust user, device, or network, and explore the policy changes necessary to a successful implementation of the Zero Trust model. As the COVID-19 pandemic fast-tracked the move to SaaS and made the “work from home” model mainstream, the importance of Zero Trust security has gained critical importance.
Organizations now understand that Zero Trust is not a specific device or vendor, but rather a series of strategic policy and practical changes that help enable better security. A successful implementation requires good understanding of what the Zero Trust model is as well as the many diverse solutions that have to work in unison to enable its implementation.
We believe that the concept of Zero Trust has reached a level of maturity and clarity where it will be effectively adopted and implemented by many organizations in 2021, and that it will become the go-to security model for all types and sizes of organizations. Sophisticated attacks like Sunburst will also drive the need for effective Zero Trust implementation.
Since 2020 forced most of the workforce to work remotely, attackers have been experimenting with new ways of exploiting security loopholes or shortcomings exposed by these rapid changes. This accelerated and will continue to accelerate the development and adoption of Secure Access Service Edge (SASE) solutions.
However, since the move to the cloud does not happen overnight, many organizations still have most of their resources hosted on-premises. They will keep on struggling with maintaining the remote work model and will revert back to business as it was once a vaccine for COVID-19 becomes readily available and things go back to normal.
This, however, might be temporary as the world has now experienced a pandemic and many organizations have already started moving their businesses from on-premises to the SaaS-based model, with the trend only being accelerated by COVID-19. In summary, SASE will be an essential part of the enterprise security infrastructure in 2021 and beyond.
TLS 1.3 will finally start seeing widespread adoption, in part, driven by the adoption of QUIC/HTTP3 given that TLS 1.3 is built into it. Many vendors support TLS 1.3 already and that will help drive the protocol into mainstream use. Changes will also be made to the TLS 1.3 standard as the demand for encrypted SNIs rise.
That said, TLS 1.2 will still remain the more widely used choice as an encryption protocol over the internet since moving to the newer version may prove to be expensive for many organizations. But as QUIC/HTTP3 becomes more widely used by the end of the year, we may see this change.
In conclusion, we are facing new, persistent threats of all shapes and sizes, and we have to make sure that, going forward, we face these threats with the best of our collective abilities. 2021 will be the year of cybercriminal activities, but it will also drive innovations in cybersecurity like never before.
MEA Markets is happy to announce that the MEA Business Awards are returning for the sixth consecutive year! This established awards programme identifies those individuals and companies who excel in their respective industries, encompassing the entirety of the Middle East and Africa in our search to highlight the firms that go above and beyond to establish themselves as business leaders.
Visit our awards hereMEA Markets is very proud to host the UAE Business Awards 2023 for its seventh instalment! This awards programme aims to reward a vastly diverse range of hardworking businesses from across the United Arab Emirates region, who are demonstrating innovation and excellence throughout a turbulent economic climate many firms are suffering through.
Visit our awards hereFor the past five years the African Excellence Awards have recognised the very best of African Industry, and MEA Markets is excited to announce that this respected programme will be returning for its sixth edition in 2023! The African Excellence Awards are an essential guide to the key sectors driving growth throughout the continent, rewarding those outstanding companies and individuals whose entrepreneurship has strengthened Africa’s position as the next global economic powerhouse.
Visit our awards hereWe have packages to suit everyone. Let us help work out which one would suit your needs!
Ground Floor, Suite B-D,
The Maltsters, Wetmore Road,
Burton-on-trent, Staffordshire,
DE14 1LS
MEA Markets is a quarterly publication dedicated to researching and publicising the major moves and events as they happen across the entire Middle East & Africa region.
Our team of highly trained and committed journalists, contributors, researchers and worldwide industry insiders are on hand to ensure that our global readership enjoys 24/7 access to timely and entertaining content that keeps them up to date with the ins and outs of this fast moving region.
Cookie | Duration | Description |
---|---|---|
cf_use_ob | past | Cloudflare sets this cookie to improve page load times and to disallow any security restrictions based on the visitor's IP address. |
cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category . |
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
CookieLawInfoConsent | 1 year | Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie. |
PHPSESSID | session | This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Cookie | Duration | Description |
---|---|---|
na_id | 1 year 1 month | The na_id is set by AddThis to enable sharing of links on social media platforms like Facebook and Twitter. |
na_rn | 1 month | The na_rn cookie is used to recognize the visitor upon re-entry. It allows to record details on user behaviour and facilitate the social sharing function provided by Addthis.com. |
na_sc_e | 1 month | The na_sc_e cookie is used to recognize the visitor upon re-entry. It allows to record details on user behaviour and facilitate the social sharing function provided by Addthis.com. |
na_sr | 1 month | The na_sr cookie is used to recognize the visitor upon re-entry. It allows to record details on user behaviour and facilitate the social sharing function provided by Addthis.com. |
na_srp | 1 minute | The na_srp cookie is used to recognize the visitor upon re-entry. It allows to record details on user behaviour and facilitate the social sharing function provided by Addthis.com. |
na_tc | 1 year 1 month | The na_tc cookie is used to recognize the visitor upon re-entry. It allows to record details on user behaviour and facilitate the social sharing function provided by Addthis.com. |
ouid | 1 year 1 month | Associated with the AddThis widget, this cookie helps users to share content across various networking and sharing forums. |
Cookie | Duration | Description |
---|---|---|
d | 3 months | Quantserve sets this cookie to anonymously track information on how visitors use the website. |
Cookie | Duration | Description |
---|---|---|
__gads | 1 year 24 days | The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites. |
_ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
_ga_21JSMT0NZV | 2 years | This cookie is installed by Google Analytics. |
_ga_7GTFNZD3Y9 | 2 years | This cookie is installed by Google Analytics. |
_gat_gtag_UA_63302014_1 | 1 minute | Set by Google to distinguish users. |
_gat_gtag_UA_67421741_1 | 1 minute | Set by Google to distinguish users. |
_gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
aigm_tracking_consent | 1 year | Created by Monster Tracking v2 for internal tracking/fingerprinting - determines whether the user has consented to being tracked by allowing cookies. |
aigm_tracking_id | 1 year | Created by Monster Tracking v2 for internal tracking/fingerprinting - contains the consent ID number of the user. |
ANON_ID | 3 months | This cookie, set by Tribal Fusion, collects data on user visits to the website, such as what pages have been accessed . |
u | 1 year | This cookie is used by Bombora to collect information that is used either in aggregate form, to help understand how websites are being used or how effective marketing campaigns are, or to help customize the websites for visitors. |
uid | 1 year 1 month | This is a Google UserID cookie that tracks users across various website segments. |
Cookie | Duration | Description |
---|---|---|
_rxuuid | 1 year | Unruly Media sets this cookie to store information on how the end user uses the website and any advertising that the end user may have seen before visiting the said website. |
ab | 1 year | Owned by agkn, this cookie is used for targeting and advertising purposes. |
ANON_ID_old | 3 months | This cookie helps to categorise the users interest and to create profiles in terms of resales of targeted marketing. This cookie is used to collect user information such as what pages have been viewed on the website for creating profiles. |
CMID | 1 year | Casale Media sets this cookie to collect information on user behavior, for targeted advertising. |
CMPRO | 3 months | CMPRO cookie is set by CasaleMedia for anonymous user tracking, and for targeted advertising. |
CMPS | 3 months | CMPS cookie is set by CasaleMedia for anonymous user tracking based on user's website visits, for displaying targeted ads. |
DSID | 1 hour | This cookie is set by DoubleClick to note the user's specific user identity. It contains a hashed/encrypted unique ID. |
IDE | 1 year 24 days | Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile. |
KADUSERCOOKIE | 3 months | The cookie, set by PubMatic, registers a unique ID that identifies a returning user's device across websites that use the same ad network. The ID is used for targeted ads. |
KTPCACOOKIE | 1 day | The cookie, set by PubMatic, registers a unique ID that identifies a returning user's device across websites that use the same ad network. The ID is used for targeted ads. |
ljt_reader | 1 year | This is a Lijit Advertising Platform cookie used for recognizing the browser or device when users return to their site or one of their partner's sites. |
mc | 1 year 1 month | Quantserve sets the mc cookie to anonymously track user behaviour on the website. |
mt_mop | 1 month | MediaMath uses this cookie to synchronize the visitor ID with a limited number of trusted exchanges and data partners. |
pxrc | 2 months | This cookie is set by pippio to provide users with relevant advertisements and limit the number of ads displayed. |
rlas3 | 1 year | RLCDN sets this cookie to provide users with relevant advertisements and limit the number of ads displayed. |
suid_legacy | 1 year | Collects information on user preferences and interaction with web-campaign content which is used on CRM-campaign-platforms used by website owners for promoting events or products. |
test_cookie | 15 minutes | The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies. |
tuuid | 3 months | The tuuid cookie, set by BidSwitch, stores an unique ID to determine what adverts the users have seen if they have visited any of the advertiser's websites. The information is used to decide when and how often users will see a certain banner. |
tuuid_lu | 3 months | This cookie, set by BidSwitch, stores a unique ID to determine what adverts the users have seen while visiting an advertiser's website. This information is then used to understand when and how often users will see a certain banner. |
uuid | 3 months | MediaMath sets this cookie to avoid the same ads from being shown repeatedly and for relevant advertising. |
Cookie | Duration | Description |
---|---|---|
b | 1 year | No description |
CMTS | 3 months | No description |
cookietest | session | No description |
GoogleAdServingTest | session | No description |
suid | 1 year | No description |