Abu Dhabi: Against the backdrop of a spike in cyber attacks globally, the UAE Cyber Security Council has warned users that criminals are using faster and more targeted techniques to hack users’ devices.
Speaking to Gulf News, Dr Mohamed Al Kuwaiti, the Council’s chairman, said that the Council had recently alerted users of several vulnerabilities in the operating systems of the devices of major international companies, allowing the attacker to control the devices.
The Council’s warning focused on protecting assets and sensitive information, pointing out the steps that must be followed to provide protection for all companies and government institutions.
In May, after the release of Fortinet’s latest Global Threat Landscape Report (which covered the second half of 2023), the Council recommended installing the latest version of software of a major company in order to avoid any hacks or leaks of personal information and data.
Prime targets
The Report found that cyber attackers increased the speed at which they exploit vulnerabilities by 43 per cent, indicating a growing threat.
“Ransomware attacks will continue to make headlines, with the UAE and the broader Middle East being prime targets”, Dr Al Kuwaiti said. “Additionally, we are witnessing a rise in Distributed Denial of Service [DDoS] attack against UAE organisations, particularly against our critical infrastructure, amid a challenging geopolitical climate that amplifies cyber threats.”
He added: “It’s against this backdrop that the UAE Cyber Security Council is proud to introduce the State of the UAE Cybersecurity Report, which offers a comprehensive and accurate analysis of our nation’s cyber threat environment, providing actionable insights and recommendations. With cyber attacks on the rise, it is imperative the entire ecosystem to engage proactively in reducing the nation’s vulnerability to these threats.”
Last month, the Council had also called for the need to protect assets and enhance “physical digital security” to prevent hacks and financial losses, pointing out that weak physical security can lead to the leaking of companies’ confidential data, and legal responsibilities and financial repercussions for companies.
The Council explained that physical digital security is the protection of data and devices from physical actions that may cause loss or damage to digital assets.
Security measures
The Council identified five measures to enhance physical security:
• Be careful not to share sensitive information
• Ensure that unauthorised individuals cannot access private data
• Protect printed documents that contain sensitive information
• Track devices and erase data remotely if it is lost or stolen
• Use locked safes or secured storage solutions
Commenting on the Global Threat Landscape Report, Dr Al Kuwaiti said: “The global landscape of cyber threats indicates a worrying picture of the increasing speed in which cyber attackers exploit security vulnerabilities...”
He added: “The Report attributes this acceleration to multiple factors, including, firstly, artificial intelligence, as attackers employ artificial intelligence [AI] techniques to automate the processes of searching for and testing vulnerabilities, which enables them to exploit them much faster than human capabilities.
Profits from piracy
Dr Al Kuwait said another factor us is “profitable trade”, as electronic piracy operations generate huge profits for attackers, which motivates them to constantly develop their techniques and search for new vulnerabilities.
To address this rapid development in hacking technologies, Dr Al Kuwaiti called for automation and reducing burdens, as AI can automate many repetitive and arduous tasks in the field of cybersecurity, which reduces the burden on human analysts and allows them to focus on more complex tasks and continuous protection, as systems based on AI can work around the clock.
UAE takes action
“We would like to emphasise that the Cyber Security Council plays a pivotal role in combating these hacks,” Dr Al Kuwaiti said, listing measures such as training national cadres to deal with electronic attacks, enhancing the coordination between various cyber operations centres, raising awareness among community members about the importance of cyber security, and how to protect themselves from electronic attacks.