Attention gamers and metaverse pioneers. Cyber criminal he wants to steal money and data in 2023.
Attackers looking to steal consumer personal and financial information will have the same goals next year, experts say, but they can target new people and technology platforms in hopes of evading defenses. prize.
As more people and businesses become accustomed to traditional email phishing, text and social media scams, cybercriminals are turning to new technologies such as gaming platforms, virtual reality worlds, and the technologies children use both at school and at play. We will move to the online frontier. Kaspersky, a cybersecurity company.
The security of many of these new and exciting platforms is still in its infancy and users are always unaware of the potential dangers, leaving vast amounts of consumer data and money potentially at risk. Bottom line: no one is safe from scammers.
The number of potential victims is only increasing. Kaspersky researchers noted an increase in the overall population of his gamers online.Game subscription services start competing It also raises criminal interest in account theft and related scams, Kaspersay said, adding that it’s the same scam surrounding fraud. .
Here’s what some cybersecurity experts predict for 2023:
PlayStation VR is the catalyst
A year after supplies have been restored, Kaspersky researchers expect online criminals to try to exploit another possible supply shortage.Next year will stem from Sony’s next release. A headset that requires a console.Sony may release The coming year could spur fraud, including bogus pre-sale offers, discounts and freebies.
Researchers also expect cybercriminals to target gaming accounts that harbor in-game virtual currency in hopes of redeeming it for real cash. Cryptocurrencies stored in game accounts can also be compromised.
Gaming platforms have been hacked for profit before. In March, cybercriminalsFrom the network used to process in-game transactions for Axie Infinity, one of the world’s most popular NFT video games.
In addition toAndrey Sidenko, Principal Web Content Analyst at Kaspersky, said players should also keep their main credit and debit cards separate. He recommends using temporary or virtual cards that can be topped up as needed.
Metaverse fraud becomes a problem
when it comes towith only a few platforms in operation and mostly used for entertainment purposes, the risks are less clear, but industrial and business applications are likely to emerge soon.
Daniel Clemens, CEO of cybersecurity firm ShadowDragon, said he expects the Metaverse to experience the same security growing pains as new platforms.
“The Metaverse is no exception when it comes to criminal activity, and other users should take note,” said Clemens. “Where there is human interaction, there will be a free market of good and bad.”
Patrick Garrity, vice president of Nucleus Security, said the prevalence of digital assets like NFTs in the metaverse has made the platform more susceptible to fraud, citing the lack of regulation and consumer protection built into the platform and its transferability. pointing out the possibility. He stressed that users should be very careful when it comes to cryptocurrencies.
“The best strategy is not to participate in the cryptocurrency portion of the Metaverse, as new users are likely to be scammed.”
Additionally, because the platform is global, Kaspersky said it is questionable whether it will comply with local privacy regulations such as the European General Data Protection Regulation and Data Breach Notification Act. There have already been cases in the metaverse of virtual harassment and sexual assault. Without regulation to stop it, researchers expect that kind of horrific behavior to continue.
The threat to both gamers and Metaverse users is particularly terrifying given that many of the victims may be children.
Children’s data will be increasingly threatened by ransomware attacks against schools and school districts next year, according to cybersecurity experts. This puts pressure on both businesses and consumers to keep their data secure and private.
It may not seem like much parents can do, but experts say make sure your kids are preparedAccount activation Keep as many bad guys out of those accounts as possible.
Kaspersky’s Sidenko added:Using anti-spam and anti-phishing tools can go a long way in protecting everyone in your home if someone accidentally clicks on a phishing link.
IT professionals in schools struggle
Ransomware attacks on schools and school districts began in 2022, killing school districts from Los Angeles to small towns in Michigan.
Even the smallest school can have hundreds of devices behind its firewall and connected to the network, giving cybercriminals countless potential points of entry, says cybersecurity firm Intrusion. said Andrew Wildrix, chief information officer at
At the same time, children often use their devices for things like games they share with each other without knowing that the games and apps may be extracting school-related data, he added.
Worse, with limited budgets, schools are unlikely to allocate funds to cybersecurity until an attack occurs, said Wildrix. Then consider months of searching to find the right cybersecurity protections, scrape together the money to pay for them, and put them in place.
By then, he said, new threats would emerge and the school would be back at square one.
“This existing approach is reactionary,” said Wildrix. “In 2023, we need to start a holistic approach to cyber defense that is proactive and takes time to consider new technologies.”
It’s time to ask, “Hey, where’s my data?”
It’s hard to be sure your data is safe and private if you don’t know where it’s stored or who it’s been shared with.
Jeremy Snyder, founder and CEO of cybersecurity firm FireTail, says that even the simplest online act, such as ordering takeout from a meal delivery service, can involve three or more companies, each with their own systems. no one knows how safe it is.
In Snyder’s opinion, the biggest risk to security and privacy heading into 2023 is lack of visibility. Companies collect and share so much data that they often don’t know where it resides or who has access to it.
“Will 2023 be the year that companies finally start recognizing the scale of this problem?” Snyder asked. “I certainly hope so.”
Wildrix says it’s also up to consumers to know where their data is going, especially when it comes to collecting IoT devices.
“How much of your home are you unaware of?” One example mentioned seeing Wi-Fi traffic collected by a robot vacuum cleaner sent to a power plant in Mongolia. did. “These are things no one considers.”
Jeff Hodgin, vice president of products at CyberGRX, said tracking personal data shared on social media is also a consumer priority. He said that when people post on social media, they are promoting themselves as brands in the same way that companies do. The bigger the brand, the bigger the target for cybercriminals.
“Individuals wishing to promote themselves should consider their personal risk,” Hodgin said. “What are we at risk? What are the implications of a breach? How likely is it?”