As Eid approaches, beware of rise in cyberattacks

GCC witnesses major rise in attacks as experts advise on protection options

by

Somshankar Bandyopadhyay

  • Follow us on
  • google-news
  • whatsapp
  • telegram

 

Published: Mon 8 Apr 2024, 6:16 PM

Last updated: Tue 9 Apr 2024, 10:25 PM

While the holy month of Ramadan — followed by Eid Al Fitr celebrations ­— is a wonderful time to be surrounded by those you love, the increased shopping activity always brings with it a surge in cyberattacks.

According to data from Group-IB, a major cybersecurity company, in 2023, the GCC experienced a substantial 65 per cent increase in ransomware victims published on dedicated leak sites (DLSs), rising from 32 in 2022 to 53 last year. The GCC experienced a notable 36 per cent increase in compromised cards, rising from 98,339 in 2022 to 133,320 in 2023, data showed.


Cyber criminals anticipate the surge in consumer spending every year and seize the opportunity to dupe unassuming victims - both shoppers and those within the retail industry - through the use of phishing tactics, the promise of one-off time-bound discounts, and using well-known brands as cover.

As retail remains a critical sector of the economy of the region, attacks on the trade sector during the Eid Al Fitr shopping season result in serious consequences, including leakage of confidential information, disruption of business operations, financial losses and reputational damage, according to Irina Zinovkina, head of the information security research group at Positive Technologies.


In particular, DDoS (Distributed Denial of Service) and DDoS extortion attacks are becoming more prevalent in the retail sector. DDoS is a malicious attempt to interrupt regular traffic to a specific server, service or network by flooding the target or its surrounding infrastructure with Internet traffic. Cybercriminals launch DDoS attacks to force retailers into meeting extortion demands. As the holiday season represents peak activity for merchants, these organisations are more susceptible to paying extortion fees to prevent costly downtime, financial loss and damage to their reputation.

The common threats during the period include:

The main threats to organisations in the trade sector are malware and vulnerabilities.They can lead to:

• Financial costs from downtime, expenses for infrastructure restoration. Cyber attacks can lead to blocking access to critical company resources, deletion of software, loss of data and, as a result, disruption of key business processes.

• Disruption of supply and transportation chains. As a result of the attack, serious problems may arise with the supply of goods and the shipment of orders, which in turn can lead to losses and customer dissatisfaction.

• Reputational damage. Major cyber incidents lead to loss of customer loyalty, decreased company competitiveness and market share, dissatisfied employees, the departure of key individuals from the company, and even the loss of business partners (which can lead to long-term declines in sales and profits, as well as a drop in stock prices).

• Full or partial bankruptcy, closure of stores and branches due to the inability to recoup the financial costs of recovery after a cyber attack. This is the most negative scenario that companies can face.

“This highlights the need for retailers and e-commerce to strengthen information security measures and ensure effective cybersecurity. Adopting modern technologies and continually improving security strategies is essential for companies to protect their business,” Zinovkina told Khaleej Times.

To safeguard themselves from the growing threat of DDoS attacks retailers need to prioritize investing in a powerful DDoS mitigation system. "Up-to-date and sophisticated tools are crucial for shielding network infrastructure during worst-case scenarios, ultimately mitigating potential negative impact on retailers," Emad Fahmy, Systems Engineering Manager Middle East at Netscout, told Khaleej Times.

And it isn’t just shoppers who need to be alert; an intense shopping period creates a honey pot of payment and personally identifiable data within retail businesses, and threat actors swarm around it like bees.

From left: Irina Zinovkina, Emad Fahmy and Steve Foster
From left: Irina Zinovkina, Emad Fahmy and Steve Foster

Netskope’s recent Threat Labs Report into the retail sector found that on average, professionals in the retail sector engage with around twenty cloud apps every month, with the top one per cent of retail employees using a staggering 85 cloud apps monthly. In retail, WhatsApp use is three times more popular than other sectors, ranking only behind OneDrive in terms of both uploads and downloads. This poses a serious risk not only because WhatsApp is a common delivery channel for malicious content such as malware or phishing pages, but also because these numbers suggest that the retail sector is using a personal instant messaging app as an enterprise collaboration tool.

Throughout this busy retail period, it’s more important than ever to stay informed about the latest threats and protect ourselves against them wherever possible.

The best advice is to always maintain vigilance, experts say. “Enterprise security teams should ensure they are inspecting all downloads from the web and trusted cloud apps, to prevent malware infiltrating networks. And retail businesses should stop relying on annual security training which is generally forgotten at moments of busy activity and urgent opportunities, and instead make use of technology that can enable just-in-time user coaching, helping the workforce navigate appropriate behaviours in the moment that threats occur,” Steve Foster, Head of solutions engineering, MEA at Netskope, told Khaleej Times.

Both shoppers and retail employees should reinforce their cyber education, remembering the importance of scrutinising emails and messages, and thinking before clicking attractive, yet deadly, links. “We should take extra care when we go online and pay attention to where we share our personal details. Year after year, we are witnessing a surge in digital crime activities during these months. Staying vigilant is the best approach towards a digitally safe holiday,” Foster added.

“To effectively combat the ransomware industry, it’s essential that companies and organizations adopt a firm stance of not paying the ransom, as this disrupts their entire economic model. At the same time, proactive investments in preventive measures and robust cybersecurity strategies are vital. We also recommend that MEA-based governments and organizations work together with leading cybersecurity vendors to strengthen overall benchmarks, as public-private sector collaboration, as well as joining efforts with law enforcement agencies that operate in the region are crucial in this fight. Creating a culture of cybersecurity is a vital step towards raising overall standards among populations, meaning that continued awareness efforts are also hugely important,” Ivan Pisarev, head of threat intelligence (MEA) at Group-IB, said.


More news from Business