Kaspersky Security Bulletin: Economic uncertainty set to shape the 2021 cybercrime agenda in the Middle East
Kaspersky experts expect growing economic turbulence and the impact of COVID-19 to contribute to an increase in cybercrime across the Middle East. These and other findings are documented in Kaspersky’s new report Kaspersky Security Bulletin: Cyberthreat estimates for 2021 in the META region.
Growth in cybercrime
“Even though every country globally has had to deal with the pandemic in its own way, developing economies across the Middle East have been especially hard hit by national lockdowns and limited business activity. And thanks to the increased connectedness of people, the rise in unemployment will not only see a spike in traditional crime, but this will also extend to the digital environment – something we are already seeing,” says Dmitry Galov, a cybersecurity expert for Kaspersky.
Growth in APTs
Adding further pressure to this melting pot of cyberattacks is an expected rise, along with strategy changes in Advanced Persistent Threats (APTs). Adds Galov; “Our researchers anticipate that in 2021, across the globe through where the Middle East is not immune, there will be a change in threat actors’ approach to the execution of APT attacks and as such, organizations must pay special attention to generic malware as it will likely be used to deploy more sophisticated threats.”
Compounding this is the concern around hackers-for-hire and cyber mercenary groups targeting SMEs and financial institutions.
“Businesses are under pressure to differentiate themselves in a highly competitive market as they struggle to survive these trying times, amplified further by the effects of COVID-19. The current landscape may likely lead to bankruptcy and an increase in legal disputes in court. This makes an ideal breeding ground for these malicious groups to operate in. And although such activity has not been rife in the Middle East yet, the region is not immune to this cyber threat.”
Cyber-mercenaries are hired to search for sensitive, private information that can be used in disputes to win court rulings or to steal business trade secrets and provide their ‘employers’ with competitive intelligence to get ahead in the market.
Remote work and data breaches
Additionally, Galov believes that remote working’s normalization will further put existing organizational IT systems under pressure as companies must contend with an influx of connections into the corporate back-end.
“More companies are exposing their systems online while their focus turns to always-on availability. However, few of them have considered how to adapt their cybersecurity controls to this new environment. This results in some databases and systems inevitably being left open to intruders,” he says.
To this end, Galov expects data breaches across the Middle East to increase in the coming months, with many companies racing to tighten their security.
“This year is going to be a watershed for cybersecurity as organizations start realizing the importance of having an integrated and threat intelligent approach to safeguard their systems and data against increasingly sophisticated threat agents,” he concludes.
