You could be hacked and not know it

You have to respect that ransomware attacks let you know you’ve been attacked. You’ll have an opportunity to defend yourself and batten down the hatches.

However, a rising tide of cyberattacks is much more sneaky about things.

Called “stealth hacking,” these subtle attacks try to see your data and processes without alerting anyone that this is occurring. In the world of consumer computing, this may manifest as keystroke-monitoring malware that installs from a malicious download. The hacker hopes to remain undiscovered and gather as much data as possible until the jig is up, or perhaps never be discovered at all. 

The enterprise world is a bit scarier. The damage that a non-stealth hack can do is easy to define as to risk and cost. According to RiskIQ, in 2019, “Every minute, $2,900,000 is lost to cybercrime, and top companies pay $25 per minute due to cybersecurity breaches.” However, if you don’t know that you’re being monitored, the damages could be 10 times that of an instantaneous attack.

Since many stealth hacks go undiscovered, there is no good data on the damages that actually occur. On the top of the list:

  • Insider trading of stock, getting access to sales and other accounting data pre-earnings announcements
  • Pre-audit movement of cash from company accounts
  • Blackmail due to access to HR records 

The assumption is that this kind of hacking targets on-premises systems which often are being neglected now with the focus on cloud computing. But this problem is likely to move to public clouds as well, if it hasn’t already. 

Copyright © 2021 IDG Communications, Inc.

Source link