UAE prone to cyber attacks for ransom?

(MENAFN- Khaleej Times)The ever-increasing connectivity of the UAE may prompt a rise in "ransomware" attacks in which criminals lock or encrypt files until a victim hands over money according to a cyber security expert from American technology company Symantec.

The global shift towards the "Internet-of Things" - in which everything is connected and transmitting data - offers new opportunities for cyber criminals to carry out attacks in high-tech places such as Dubai says Hon Lau Symantec's Principal Security Response Manager. Driverless and connected cars are examples of where ransomware could strike next.

"Dubai is as much at risk as any other developed country which has a high dependency on connected computing and infrastructure" Lau said. "The greater our dependence on certain technologies the higher value we will place on it making it an attractive target for ransomware attackers."

Lau noted that interconnected devices - such as mobiles and wearable fitness trackers - mean that attackers could easily take control of multiple devices at once. To test this theory Symantec researchers infected an Android phone that was paired with a "smart watch". Once the mobile was infected the watch also became unusable.

"This proves that it is relatively easy for ransomware attackers to make the jump to other devices including wearables" Lau said.

"Essentially infection of current smart watches will spread through the paired phone. That means you infect the phone and the phone will then pass on the infection to the smart watch" he added. "There are numerous ways to infect a phone including fake apps and exploits."

The concept of hijacking files and using them to extort ransom is not new Lau explained. "The first ransomware appeared in 1989 in the form of fake AIDS research and a survey sent by traditional mail on a 5 floppy disk" he said. "The ransomware encrypted and hid the names of various files on the hard disk before asking users to pay to use the unlicensed software."

After a lull ransomware began appearing again by mid-2000s as criminals began seeking new ways to profit from Internet crime Lau added. "Starting with less aggressive techniques such as fake PC performance tools the criminals then progressed to full-on digital extortion" Lau said. "Nowadays ransomware has become one of many options for cyber criminals to make money illegally."

The Internet-of-Things is going to provide a range of new targets for criminals and although there have been no confirmed attacks on wearables. Lau thinks they are inevitable.

"Eventually we will see ransom attacks against Internet-of-Things devices happening in the wild. It will just take time for the market to mature and reach a critical mass before it becomes attractive for cyber criminals" he said.

Bernd Debusmann Jr. Originally from Mexico City I've been in Dubai since January 2015. Before arriving in in the UAE I worked as a general news reporter in TV and print in Mexico City NYC and Washington DC. I'm interested in defence issues politics technology aviation and history. In my spare time i enjoy traveling and football - I'm a keen fan of Chelsea FC. I developed an interest in the Middle East traveling through Jordan and the West Bank. I have a BA in Political Science from Dickinson College in the USA and an MA in International Journalism from City University London.