[APRALO-Policy] INTERPOL’s ASEAN Cyberthreat Assessment 2021
Gopal Tadepalli
gopal.tadepalli at gmail.com
Tue Nov 30 09:47:11 UTC 2021
Dear All,
Further to my earlier mail in the trace, please consider reading the INTERPOL’s
ASEAN Cyberthreat Assessment 2021 report at:
https://www.interpol.int/en/News-and-Events/News/2021/INTERPOL-report-charts-top-cyberthreats-in-Southeast-Asia
The INTERPOL’s ASEAN Cybercrime Operations Desk (ASEAN Desk) with the
support from law enforcement agencies in the region and INTERPOL’s private
sector cybersecurity partners identify the region’s top cyberthreats:
- *Business E-mail Compromise* campaigns continue to top the chart with
businesses suffering major losses, as it is a high-return investment with
low cost and risk.
- *Phishing*. Cybercriminals are exploiting the widespread use of global
communications on information related to COVID-19 to deceive unsuspecting
victims.
- *Ransomware*. Cybercrime targeting hospitals, medical centers and
public institutions for ransomware attacks has increased rapidly as
cybercriminals believe they have a higher chance of success given the
medical crisis in many countries.
- *E-commerce data interception* poses an emerging and imminent threat
to online shoppers, undermining trust in online payment systems.
- *Crimeware-as-a-Service* puts cybercriminal tools and services in the
hands of a wider range of threat actors – even non-technical ones, to the
extent that anyone can become a cybercriminal with minimal ‘investment’.
- *Cyber Scams*. With the increase of online transactions and more
people working from home, cybercriminals have revised their online scams
and phishing schemes, even impersonating government and health authorities
to lure victims into providing their personal information and downloading
malicious content.
- *Cryptojacking *continues to be on the radar of cybercriminals as the
value of cryptocurrencies increases.
Gopal T V
0 9840121302https://vidwan.inflibnet.ac.in/profile/57545https://www.facebook.com/gopal.tadepalli
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Dr. T V Gopal
Professor
Department of Computer Science and Engineering
College of Engineering
Anna University
Chennai - 600 025, INDIA
Ph : (Off) 22351723 Extn. 3340
(Res) 24454753
Home Page : http://www.annauniv.edu/staff/gopal
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
On Sun, Oct 3, 2021 at 9:18 AM Gopal Tadepalli <gopal.tadepalli at gmail.com>
wrote:
> Thank you Dr. Maureen Hilyard for the post in the trace.
>
> It may be useful to study this report in conjunction with "my choice"
> paper titled:
>
> The Psychology of Internet Fraud Victimisation: a Systematic Review
> Journal of Police and Criminal Psychology Vol. 34, Pp 231–245, 2019
> https://d-nb.info/1202645739/34
>
> Sincerely,
>
>
>
> Gopal T V
>
> 0 9840121302https://vidwan.inflibnet.ac.in/profile/57545https://www.facebook.com/gopal.tadepalli
> ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
> Dr. T V Gopal
> Professor
> Department of Computer Science and Engineering
> College of Engineering
> Anna University
> Chennai - 600 025, INDIA
> Ph : (Off) 22351723 Extn. 3340
> (Res) 24454753
> Home Page : http://www.annauniv.edu/staff/gopal
> +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>
>
>
> On Sat, Oct 2, 2021 at 9:40 PM Maureen Hilyard via Apralo-policy <
> apralo-policy at icann.org> wrote:
>
>> Hi everyone
>> FYI - A new report is out about Phishing (attacks that steal user data)
>> : https://interisle.net/PhishingLandscape2021.html
>>
>>
>>
>> Some key takeaways from the report:
>>
>> - *Most phishing is concentrated at small numbers of domain
>> registrars, domain registries, and hosting providers.* 69% of the
>> domains used for phishing were registered in 10 Top-level Domains and 69%
>> were registered through just 10 registrars.
>> - *Phishing attacks are disproportionately concentrated in new gTLDs
>> (nTLDs).* While the new TLDs' market share decreased during our
>> yearly reporting period, phishing among the new TLDs has increased.
>> - *Phishing domain registrations in some TLDs are overwhelmingly
>> dominated by a small number of registrars.* In some cases, 90% or
>> more of the malicious domains in a TLD were registered through one gTLD
>> registrar.
>> - *41% of all phishing attacks occurred at just ten hosting
>> providers.* We identified 4,110 hosting networks (ASNs) where
>> phishing web sites were reported. 28% of all phishing attacks occurred on
>> just four hosting networks.
>> - *Phishers targeted 1,804 businesses or organizations during the 1
>> May 2020 to 30 April 2021 period.* The top 10 brands targeted over
>> the course of our annual period account for 46% of the reported phishing
>> attacks.
>> - *When phishers register domains, they tend to use them quickly.* 57%
>> of domains reported for phishing were used within 14 days following
>> registration and more than half of those were used within 48 hours.
>>
>>
>> Maureen
>> _______________________________________________
>> Apralo-policy mailing list
>> Apralo-policy at icann.org
>> https://mm.icann.org/mailman/listinfo/apralo-policy
>>
>> _______________________________________________
>> By submitting your personal data, you consent to the processing of your
>> personal data for purposes of subscribing to this mailing list accordance
>> with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and
>> the website Terms of Service (https://www.icann.org/privacy/tos). You
>> can visit the Mailman link above to change your membership status or
>> configuration, including unsubscribing, setting digest-style delivery or
>> disabling delivery altogether (e.g., for a vacation), and so on.
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/mailman/private/apralo-policy/attachments/20211130/882e0b7c/attachment.html>
More information about the Apralo-policy
mailing list