By: Rory Duncan, Head of Security Business Unit at Dimension Data UK&I
The recent NTT 2016 Global Threat Intelligence Report revealed that cybercriminals are increasingly targeting the retail sector, shifting the focus from traditional financial markets.
The report contains information about security threats gathered during 2015 from 8,000 clients of NTT Group security companies including Dimension Data, based on 3.5 trillion security logs and 6.2 billion attacks.
Retail organisations experienced nearly three times as many cyberattacks as those in the finance sector which was at the top of the list in the 2015 report. Cyberattacks on the financial industry dropped significantly to fourteenth position. There’s a reason retail companies are increasingly becoming popular targets for cybercriminals – the large volumes of personal information, including credit card data, in highly distributed environments with many endpoints and point-of-sale devices are strong attractions. Such diverse environments can be difficult for organisations to protect.
But the big question is how. How are these criminals breaching organisations and stealing data? The report found that cybercriminals are increasingly leveraging malware to breach the perimeter defences of organisations. In 2015 alone there was an 18% increase in malware across most industries.
As the frequency and complexity of malware increases, and as attacks become more stealthy and sophisticated, preventative measures are of increased importance. Organisations are developing sandboxes to better understand cybercriminal’s tactics to protect themselves from attacks. Sandboxes involve the execution of suspicious code in a highly protected environment, where it can be safely evaluated. At the same time, malware developers are aggressively developing anti-sandbox techniques, so having an all-encompassing cyber security strategy is necessary.