By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
TechgoonduTechgoonduTechgoondu
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Search
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Reading: Besides relying on bots, hackers increasingly turn to personalised attacks: Sophos
Share
Font ResizerAa
TechgoonduTechgoondu
Font ResizerAa
  • Audio-visual
  • Enterprise
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
  • PC
  • Telecom
Search
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Follow US
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Techgoondu > Blog > Enterprise > Besides relying on bots, hackers increasingly turn to personalised attacks: Sophos
EnterpriseSoftware

Besides relying on bots, hackers increasingly turn to personalised attacks: Sophos

Alfred Siew
Last updated: November 25, 2018 at 3:55 PM
Alfred Siew
Published: November 25, 2018
3 Min Read
ILLUSTRATION: Pixabay (Creative Commons)

As a sign of their growing sophistication, hackers are spending the time to specifically target high-value targets instead randomly using bots to spread malware and seek an opening, according to Sophos.

Analysing such attacks the past year, the British-based cybersecurity firm has seen more methodical efforts by not just state-backed hackers but regular criminal gangs to infiltrate systems and get victims to pay up.

In the past, more than 90 per cent of hackers had relied on bots that scoured the Internet for vulnerable victims, said Chester Wisniewski, principal research scientist at Sophos.

However, that number is now much lower at about 80 per cent and “declining fast”, he told Techgoondu in a recent interview in Singapore. “It’s more like a hybrid model now.”

More often now, humans are involved in directly gaining access, say, by manually looking for loopholes through what is essentially a typical penetrative test.

Though they take more time than random bot scans, these “pen tests” reveal vulnerabilities that can let hackers get deeper into a network. The reward is a potentially bigger payoff.

By hitting a e-commerce or database server, hackers can potentially threaten to shut down a company’s business. This is more damaging, say, than holding it ransom over a few workstations that can be more easily replaced.

Only 20 per cent of victims pay an average of US$400 each, according to Wisniewski, so the criminals need to infect on a large number of workstations that way. However, if they gain control of a mission-critical server, they could ask for tens of thousands of dollars each time, he added.

Hackers also know a little bit of tradecraft these days, he noted. For example, they might access the victim’s computers after office hours to avoid being detected.

Though much of this was in the domain of expert hackers often acting on behalf of nation states, there is growing evidence that criminal gangs are also upgrading their skills as organisations beef up their cyber defences.

“The more sophisticated criminals are doing what a ‘pen tester’ would do,” said Wisniewski, “but instead of a report, they are just analysing to find a loophole to exploit.”.

Pen test skills were limited to a few thousand experts in the field about 10 years ago, he noted.

However, many of the tools today to learn and develop skills are freely available, allowing more people – including hackers – to find vulnerabilities like an expert.

Q&A: Google Cloud says sustainability efforts have gained momentum, made a difference outside the data centre
Amazon demystifies cloud computing
Replacing physical cabling with wireless 802.11n
Pink Samsung Galaxy Note arrives in Singapore on Saturday
Microsoft Office 15 first impressions: it looks good
TAGGED:Chester Wisniewskicyber defencecyber securitypen testSophos

Sign up for the TG newsletter

Never miss anything again. Get the latest news and analysis in your inbox.

By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Whatsapp Whatsapp LinkedIn Copy Link Print
Avatar photo
ByAlfred Siew
Follow:
Alfred is a writer, speaker and media instructor who has covered the telecom, media and technology scene for more than 20 years. Previously the technology correspondent for The Straits Times, he now edits the Techgoondu.com blog and runs his own technology and media consultancy.
Previous Article New push by IMDA to get Singapore businesses to get on cloud, go digital
Next Article Google’s Night Sight on the Pixel 3 shows promise of computational photography
Leave a Comment

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Stay Connected

FacebookLike
XFollow

Latest News

In search of fairer deal for content creators, Cloudflare blocks AI scrapers
Internet Media
July 3, 2025
Samsung The Frame Pro (2025) review: Appealing design, excellent images
Audio-visual
July 1, 2025
AWS opens Asia-Pacific innovation hub in Singapore
Enterprise
June 30, 2025
Red Hat pitches open-source software for more efficient AI inference
Enterprise Software
June 27, 2025

Techgoondu.com is published by Goondu Media Pte Ltd, a company registered and based in Singapore.

.

Started in June 2008 by technology journalists and ex-journalists in Singapore who share a common love for all things geeky and digital, the site now includes segments on personal computing, enterprise IT and Internet culture.

banner banner
Everyday DIY
PC needs fixing? Get your hands on with the latest tech tips
READ ON
banner banner
Leaders Q&A
What tomorrow looks like to those at the leading edge today
FIND OUT
banner banner
Advertise with us
Discover unique access and impact with TG custom content
SHOW ME

 

 

POWERED BY READYSPACE
The Techgoondu website is powered by and managed by Readyspace Web Hosting.

TechgoonduTechgoondu
© 2024 Goondu Media Pte Ltd. All Rights Reserved | Privacy | Terms of Use | Advertise | About Us | Contact
Follow Us!
Never miss anything again. Get the latest news and analysis in your inbox.

Zero spam, Unsubscribe at any time.
 

Loading Comments...
 

    Welcome Back!

    Sign in to your account

    Username or Email Address
    Password

    Lost your password?