Smart Cities Will Soon Be Under Attack

Uploaded on 2020-02-03 in TECHNOLOGY--Developments, NEWS-News Analysis, GOVERNMENT-Local, TECHNOLOGY--Hackers

Cyberattacks, criminal hacking groups and data breaches are not going away and there is a constant stream of high profile data breaches, ranging from the theft of medical information, account credentials, corporate emails, and internal sensitive enterprise data.

Increasingly, many analysts are predicting a new trend that identifies smart cities as being at risk and in need of particularly serious focus. In smart cities, the scope for disruption is immense.

  • Hackers could take over the AIs that control critical infrastructure, putting water or electricity supplies in the hands of malicious actors. 
  • Connected cars might make a daily commute easier, although virtually all of our the nessecary data to operate them will reside in cloud computing datasets stored in data dumps strewn all over the Internet, where the dataflow and access to information is potentially vulnerable.

That convenience of a high level of urban interconnectivity  comes at a cost, says Mariarosaria Taddeo, who is a Senior Research Associate at the University of Oxford's Internet Institute. Artificial intelligence is a key part of cyber security’s future development, according to Ms Taddeo who says  “My speculative idea is that the more you have smart cities, the wider the surface of attack.”

Other experts take hope from the evolution of older software like Adobe Flash. Previously hackers have relied on a single flaw, says Ryan Kalember, head of cyber security strategy at Proofpoint, a leading technology protection company. “With a bug in 2010, I could do something really effective because the system was not designed in a resilient way.”

Mr Kalember is  optimimistic for improved security methods: smartphones, for example, already use biometric authentication such as fingerprint or facial recognition instead of passwords. “As you have things like face identification it becomes increasingly absurd that we have dozens, of passwords managed in deeply insecure ways,” he says. This shift is essential, he adds, because although technical vulnerabilities will be harder to exploit in future, humans are already the weakest link in cyber security, with the most tech-savvy individuals vulnerable to increasingly personalised and complex attacks.

The rise of deep fakes, synthetic audio, video and photos of people generated by algorithms, is one source of vulnerabilities. “Deep fakes are becoming increasingly common, increasingly accessible and increasingly realistic,” warns Henry Ajder, head of communications and research analysis at DeepTrace Labs, a start-up that identifies deep fakes.

Hackers can depict someone saying or doing almost anything using ever-decreasing amounts of initial material. So far, the technology has mainly been used to create so-called revenge pornography. But the risk of other criminal uses of deep fakes is growing as the tech improves.

But cyber security should not come at the cost of privacy, warns Ms Taddeo. She points to state of the art systems that can “monitor all of your movements while you’re connected, any keystroke, movement on the trackpad, where your eyes are moving”.  

Between pervasive data collection and constant authentication, she says, the risk is that we create a panopticon, where surveillance systems are expanded out of all proportion.

There are three key pieces of technology that are likely to drive the development of Smart City  secuirty in the coming decade:

Machine Learning And AI
Artificial Intelligence is already being deployed in a wide range of situations and it is likely that hackers are already incorporating AI into their attack methods.

The Cloud
Cloud storage represents both a risk and an asset when it comes to cyber security. On one hand, distributed storage can make critical information easier to steal, because an attacker only needs to identify one weak machine in order to compromise a system. On the other hand, with the correct encryption, cloud storage can actually be more secure than physical drives.

Blockchain
Blockchain has the potentail to revolutionise cyber security in the coming years. By providing a secure way to share key information between multiple users, it promises to protect data from the most common types of cyberattack. On the other hand, it might not be long before even blockchain is compromised.

TechTimes:       PhilPapers:   FT.com:      News Statesman:      ZDNet

You Might Also Read:

Securing Smart Cities Using AI:
 

 

« Mandatory IoT Security In Britain
Amazon Prime Scam Cost Victims £1m »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Paraben

Paraben

Paraben provides digital forensics solutions for mobile devices, smartphones, email, hard drives, and gaming system.

BMC Software

BMC Software

BMC provide solutions for IT service management, Cloud management, IT workload automation, IT operations, and mainframe system management.

Telia Cygate

Telia Cygate

Cygate are specialists in information security, data networks, and data centre and cloud technologies.

Reposify

Reposify

Reposify’s cybersecurity solution identifies, manages and defends companies’ global digital footprints.

LSEC

LSEC

LSEC is a not for profit organization that has the objective to promote Information Security and the expertise in BeNeLux and Europe.

TechVets

TechVets

TechVets is a non-for-profit helping UK veterans and service leavers retrain into Cyber Security and Technology jobs.

CounterCraft

CounterCraft

The CounterCraft Cyber Deception Platform fits seamlessly into existing security strategies and delivers high-end deception for threat hunting and threat detection.

DOS

DOS

DOS is an Ecuadorian company with 3 decades of presence in the market and extensive experience in the planning, management and execution of IT Service Integration Projects.

Uleska

Uleska

Uleska is a scalable platform that provides automated and continuous software security testing whilst translating cyber risk.

Perseus Cyber Security

Perseus Cyber Security

Perseus provides all-around digital protection for small and medium-sized businesses through state-of-the-art software solutions, flexible online training and emergency response.

Curtail

Curtail

Curtail keeps businesses running by using live traffic analysis to identify defects before software goes live, and detect and isolate security threats before they impact systems.

Microminder Cyber Security

Microminder Cyber Security

Microminder Cyber Security are innovators, advisors, strategists committed to solving your cyber security challenges.

Nuts Technologies

Nuts Technologies

Nuts Technologies are simplifying data privacy and encryption with our innovative and novel data containers we call nuts based on our Zero Trust Data framework.

Conosco

Conosco

Conosco are industry-leading experts throughout the UK in strategic consulting, project delivery, business communications, support, and security.

Mitigo Group

Mitigo Group

Mitigo offers a well considered and effective approach to keeping businesses completely secure from any digital attacks.

Netcraft

Netcraft

Netcraft is a global leader in cybercrime detection and disruption, combining cutting-edge technology with decades of experience to protect organizations of all sizes from digital threats and attacks.