In the midst of some of the most interesting times in geopolitical history, Tripwire wanted to see how the infosec community is currently feeling about nation-state attacks. It thus decided to conduct a survey while at Infosecurity Europe 2018 in London. Specifically, Tripwire surveyed 416 attendees to see what the future of nation-state attacks might look like.

Almost all (93 percent) of participants said they think nation-state cyberattacks will rise in the next 12 months. This is perhaps unsurprising considering that recent high-profile attacks have been attributed to nation states. For example, WannaCry was attributed to North Korea, while Russia is believed to have carried a campaign against routers and network infrastructure.

Most respondents did feel that the scope of nation-state attacks are evolving in more troubling ways. Eighty-three percent said they believe nation-states will expand their targets to attack more private (non-government) organizations over the next year.  This aligns with what former director general of GCHQ Robert Hannigan said during his talk at In Infosecurity Europe:

Five years ago, we were aware of nation-state attacks but we would’ve seen them as something that only a nation-state needs to worry about. Today they’re a problem for everybody, as we’ve seen over the last year.

Eighty-three percent of survey respondents also believed that nation-state attacks on critical infrastructure will increase over the year. The same amount said these attacks will go beyond espionage and aim to cause direct harm.

“Recent threats like Triton/Trisis and Industroyer/CrashOverride have made it clear that cyberattacks can have dangerous physical impacts on critical infrastructure,” said Tim Erlin, vice president of product management and strategy at Tripwire. “Securing critical infrastructure at the industrial control system layer, where physical meets digital, is absolutely crucial.”

Fortunately, the survey suggested that organizations are taking action against this (Read more...)