PHISHING attacks that are trojan-based make up “a tonne” of the top 10 types of cyberattacks that is happening around the Pacific.
It’s also been revealed those phishing attacks are targeting “the copious amount of Microsoft vulnerability”, with data set gathered on Fiji and the Pacific showing those attacks are now “simply getting through” Microsoft Office365.
Alex Teh, chief executive officer of Auckland-based cyber-security distribution firm Chillisoft, revealed this at the TOPEX Conference 2024 on Saturday while addressing delegates on Generative Artificial Intelligence.
While cyberattacks on the dark web is not new, he said what’s new was the “bad guys” were now using Generative AI at machine volumes to launch various cyberattacks against individuals and organisations.
GenAI, he said, had now given the “bad guys” a weapon to hack into networks, and even steal identities by bypassing authentication security products, using available personal information on the internet, to compromise users, services and networks.
He said all it took was one email to fall victim to phishing.
He said current email cleaning products used in Fiji and the Pacific were “simply not enough”.
“Phishing attacks are targeting the copious amount of Microsoft vulnerability. Vulnerabilities are your phone hasn’t been updated, you’re using an old software, old applications,” Mr Teh said.
He warned the “bad guys” would use the fact that some of the applications on users’ machines had not been updated for a long time.
“Unfortunately, the bad guys also have the weaponry to attack those vulnerabilities and compromise your network.
“Chillisoft believes in building sustainable cyber-security ecosystems that defend Fiji. Chillisoft believes we will help the local economy by building valuable security analyst capabilities in Fiji.
“These resources are incredibly difficult to develop and really important to retain.”
He said Google’s fiber optic internet project coming up for Fiji and the Pacific represented a tremendous opportunity for Fiji to be the cybersecurity hub for the Pacific.
“The best way to do this, in my opinion, is to run a hybrid service.
“I think we are able to create a cybersecurity hub where IT services from Fiji can be pushed out to PNG, Samoa, Tonga – they are all in need and you have the biggest best population to do this.”
Mr Teh said executives should enquire about their company’s vulnerability management report with their IT departments, and also ensure they patched all their risky vulnerabilities to reduce their exposure to attacks.
