Digital siege

The attack came shortly before Christmas Eve: on December 23, 2022 at 7:30 a.m., nothing worked at the Schäfer Shop headquarters in the German city of Betzdorf. The employees of the medium-sized online supplier of office and warehouse equipment could no longer access the virtual servers, IT infrastructure or storage drives.

The webshop and telephone system were out of order, logistics systems were impaired and customer data disappeared. Instead of reviewing Christmas sales figures, the board had to deal with a ransom demand from hackers.

The company reacted quickly by cutting off all external data connections and informing employees as well as the State Criminal Police Office and the relevant data protection authorities.

Globally connected hacker gangs

How complex the infrastructure behind such attacks has become and how globally connected the hacker gangs’ operations are, was shown in a successful investigation from the end of May 2024.

Investigators from a dozen countries worldwide cooperated under the name "Operation Endgame", shutting down six of the world's most influential networks for ransomware attacks. In this type of attack, malware enters the supposedly protected IT system of the attacked company. During this infection, droppers – something like digital spies – examine the IT environment and make sure that no anti-virus software or other security precautions are installed. In the absence of such security measures, the main components of the malware then enter the system of the attacked company to steal passwords or emails from the system.

According to German Authorities, more than 100 servers and 1,300 domains were seized worldwide and crypto wallets with a total volume of more than 70 million euros were blocked at several crypto exchanges. Law enforcement agencies from the Netherlands, France, Denmark, Great Britain and the US were involved in the operation, supported by Europol and Eurojust, as well as investigators from Portugal, Lithuania, Romania, Bulgaria, Austria, Ukraine and Switzerland.

Cyber-attacks could impact banks, their clients and the wider financial ecosystem at any time.Brent Phillips, Chief Security Officer, Deutsche Bank

Companies in other industries have as well recognized the need to continually invest in cyber measures: According to a survey by PwC, 84 percent of German companies want to increase their investments for IT security. The expenditure is primarily intended to make the operation of the cloud, applications and interconnected machines more secure.

New dangers from AI and quantum computers

Ultimately, there is no alternative. If you look at the new challenges in cyber security that have long been in sight, the rapid development of artificial intelligence is very high on the list.

AI systems are not yet able to attack companies directly. However, they support attackers by using publicly available personal data to formulate deceptively realistic personal emails – and thus entice people to disclose sensitive information or make transfers. It is also possible to imitate voices with the help of AI or even fake people in video conferences.

And finally, quantum computers could fundamentally change the field of cybersecurity. They enable exponential speed-up for some computational problems that are infeasible to solve on any existing technology. For example, most of today's common cryptographic systems will be almost useless in the near future, because quantum systems can easily crack their keys and enable access to underlying systems – whether email systems, online bank accounts or digital signatures. What a conventional computer system takes millions years to break, a quantum computer can do in hours.

This page was published in 08/2024