The international reach and sophistication of the criminal gangs operating cybercrime around the world was perfectly illustrated by the news that Spanish police have broken up a gang using a ransomware virus to defraud thousands of Europeans.
Allegedly led by Russian criminals, some based in Dubai in the United Arab Emirates and others in Spain, the gang included Ukrainians, Georgians and other nationalities.
This incident clearly illustrates how much of the cybercriminal activity around the world today is international in nature, run on professional footings by criminal gangs targeting people and institutions for financial gain.
Gangs looking to make money out of their operations dominate today’s cybercriminal activities. It is not about notoriety or fame anymore.
Using sophisticated and highly targeted techniques to get through and around security, these gangs look to get their hands on information or other valuable data that they can make money out of.
Today it is not about if cyber attackers will get into your network, but when. Perimeter defences are fine to stop the scattergun approach employed by older security threats, but for the more advanced persistent threats we increasingly see today, the rules have changed. It is no longer a question of simply stopping them getting into your organisations, but now it about how quickly you are aware you have been compromised and how quickly you can track and stop that compromise spreading.