Banks, Cryptocurrency Exchanges and Critical Infrastructure are Forecast to be the Most Likely Targets for Hacking in the Near Future - According to Group-IB Hi-Tech Crime Trends Report.
In the next year, the main point of losses for banks from cyber-attacks will be not theft of money, but destruction of their IT infrastructure during the final stages of a targeted hacking attack. Banks used to only be attacked by cybercriminals.
Today, state-linked hackers are doing this far more frequently. By destroying IT infrastructure, cybercriminals will attempt to cover their tracks during thefts, while the aim of state-sponsored hackers will be to maximize the damage to banks and discontinue banking operations. In both cases, the damage done to banks may be even greater than the amount of funds stolen due to service interruptions and resulting reputational and regulatory impact.
Hackers will now successfully attack more industrial facilities as they have learnt how to work with the "logic" of critical infrastructure. These facilities use complex and unique IT systems: even if one gains access to them, specific knowledge about the principles of their operation is needed to conduct attacks.
Over the past year, we have observed that hackers' competence has increased along with their capacities to impact critical infrastructure. Therefore, we now forecast new large-scale incidents targeting industrials and related core infrastructure.
Hackers are switching their focus from banks to the crypto industry (ICO, wallets, exchanges, funds), which have been accumulating increasingly large capitalisations and funds. In technical terms, the attacks against service providers in this sector are no more difficult than against banks, however the information security in place and maturity of blockchain companies is significantly lower.
A further motivation for criminal attackers is that blockchain technologies are more anonymous and unregulated - this considerably reduces the risk of being caught during money withdrawal.