Allot Communications Ltd, a provider of network intelligence and security solutions for service providers worldwide, releases findings from its Telco Security Trends Report. The company says the findings reveal a dynamic and automated threat landscape in which consumers lack the security expertise to effectively protect themselves.
The findings suggest that mobile and the Internet of Things (IoT) continue to be primary attack vectors, contributing to a spike in crypto jacking, adware, and distributed denial of service (DDoS) attacks.
The company say its Telco Security Trends Report is based on anonymous data gathered from four communications service providers (CSPs) across Europe and Israel – who, between them, protect seven million customers. It found that during the period from November 2017 to February 2018, nearly two billion mobile security threats were blocked – an average of two each day per mobile device.
Of those security protections:
- Almost one billion were triggered by crypto mining malware, the leading security threat, corresponding to the rise in cryptocurrency valuation in late 2017/early 2018.
- Over one hundred million threats were triggered by adware only.
- Forty thousand threats were triggered by direct attacks in the form of ransomware and banking trojans.
The escalating IoT Threat Landscape?
As part of this study, Allot say they set up honeypots simulating consumer IoT devices and exposed them to the internet. The consequent results of this showed immediate successful attacks, peaking at a rate of over one thousand per hour, with findings revealing that a device can get infected within 42.5 seconds of being connected to the internet. There was also an increase of unique IP addresses attacking the honeypots over time, from 44 per day to a peak of 155 per day in less than a month of exposure.
Connected devices are forecast to grow to almost 31 billion worldwide by 2020. To help combat rising threats across this expanding mobile and IoT attack surface, the report found that CSPs are best positioned to deliver a unified, multilayer security service delivered at the network level to the mass market. By merging value-add network-based security with built-in customer engagement capabilities, the company say CSPs can simultaneously achieve rapid customer acquisition and high adoption rates of 40%, while generating incremental revenue.
“Cybercrime has become rampant across the growing mobile and IoT attack surface due to the financial motivation it provides” says Ronen Priel, VP product management at Allot. “CSPs can differentiate themselves from the competition by offering value-added security services to subscribers who are constantly under attack, while generating incremental revenue. It’s a win-win for both the CSP and subscriber.”