Cyber attack trends to look out for in 2023

Published on Monday, 30 January 2023 at 10:49:50 AM

We are already well into 2023, and while we may be dreaming about our next holiday hackers are already well into dreaming up new ways to infiltrate your business.

It’s also a time when you need to plan for resiliency in the face of cyberattacks. Stay one step ahead of the hackers by reviewing the cybersecurity trends expected in 2023.

Some of the expected attack trends include:

  • Attacks on 5G Devices
  • One-time Password (OTP) Bypass
  • Attacks Surrounding World Events
  • Smishing & Mobile Device Attacks
  • Elevated Phishing Using AI & Machine Learning

Attacks on 5G Devices

At Integrated ICT we have been watching this trend that has been talked about for years. 5G is beginning to fulfill the promise of lightning-fast internet and as providers build out the infrastructure, you can expect this to be a high-attack area.

Hackers are looking to take advantage of the 5G hardware used for routers, mobile devices, and PCs. We know that code vulnerabilities often come hand in hand with new technology and hackers are going to exploit this.

You can prepare by being aware of the firmware security in the devices you buy. This is especially true for those enabled for 5G. Some manufacturers will build better firmware security into their designs than others. Make sure to ask the Integrated ICT team about this when purchasing new devices.

One-time Password (OTP) Bypass

This alarming new trend is designed to get past one of the best forms of account security. Multi-factor authentication (MFA) is well-known as very effective at preventing fraudulent sign-in attempts often stopping account takeovers even if the criminal has the user’s password.

The following are a few different ways that hackers attempt to bypass MFA:

  • Reusing a token: Gaining access to a recent user OTP and trying to reuse it.
  • Sharing unused tokens: The hacker uses their own account to get an OTP. Then attempts to use that OTP on a different account.
  • Leaked token: Using an OTP token leaked through a web application.
  • Password reset function: A hacker uses phishing to fool the user into resetting a password. They then trick them into handing over their OTP via text or email

Attacks Surrounding World Events

The pandemic saw a huge upswing in cyber-attacks and cyber criminals became increasingly aware that these type of world events or disasters distract people such that their hacking attempts become very lucrative. People need to be especially mindful of scams surrounding events like these. Hackers will often use social engineering tactics, such as sad photos, to play on the emotions. 

Smishing & Mobile Device Attacks

Your mobile device goes everywhere with you. This direct connection to a potential victim is not lost on cyber-criminals. Be prepared for an increasing number of mobile device-based attacks, including SMS-based phishing (“smishing”).

Many people aren’t expecting to receive fake messages to their personal numbers. But your mobile phone number is not as private as they once were. Hackers can buy lists of them online. They then craft convincing fake texts that look like shipping notices or receipts. One wrong click is all it takes for an account or data breach.

Also on the rise is mobile malware, ensure you are protected with a good anti-malware for your device alone with other protections such as a DNS filter.

Elevated Phishing Using AI & Machine Learning

With cyber-criminals becoming more experienced, phishing emails are not necessarily as easy to spot. Generally, they would include spelling errors or grainy images and while some still do many don't.

Phishing attempts are now elevated using AI and machine learning. Not only can it look identical to a real brand’s emails, but it will also come personalised. Hackers use these tactics to capture more victims. These new methods also allow hackers to send out more targeted phishing messages in less time.

Get in Touch with Integrated ICT to Discuss a Cyber-Security Review Today

Make sure your business is protected against the new cyber-security threats in 2023. Contact Integrated ICT and stay a step ahead of cyber-criminals. Complete an online form, call 6374 8200 or email hello@integratedict.com.au

    Back to All News