Taking a Look at the History of Cybersecurity
Let’s face it, cybersecurity now has to be a major point of emphasis for the modern business. With the immense amount of threats out there, cybersecurity has grown into a multi-billion dollar industry, with no limit in sight. Just a few years ago, there was no fileless malware, no ransomware, and no botnet army lying in wait to DDoS corporate data centers into oblivion. Today, we take a look at the brief (albeit rapidly growing) history of cybersecurity.
At the Beginning
Cybersecurity started as a research project. One man realized that it was possible for a single computer program to move across a network, while leaving a trail behind. That’s when he decided to write the code that became the “Creeper”. Sure enough, the Creeper worked and traveled between Tenex terminals on the old ARPANET leaving a message “I’M THE CREEPER : CATCH ME IF YOU CAN” behind.
When Ray Tomlinson, the inventor of email, saw this, he changed the code to make it self-replicating. This was, in effect, the first computer worm. Tomlinson then wrote a code called “Reaper” that chased down the replicating Creeper code and deleted it. This was the invention of antivirus software.
Shift to Criminality
Cybercrime started before there were personal computers. In a time when networking was brand new, most connected computer terminals had no security at all. This came to the attention of Soviet hackers who used code created by academics to infiltrate and steal information off of insecure computing networks. This came to the forefront in 1986 when German hacker Marcus Hess hacked an internet gateway hosted at the University of California at Berkeley. He used a connection to that system to hack into 400 computers connected to the ARPANET, including mainframes at the Pentagon. For his efforts, he was caught, tried, and convicted, landing a 20-month suspended sentence.
Around the same time this was happening, the personal computing boom had started and computer viruses were starting to be developed at a dizzying rate. As more people connected to what was now called the Internet, viruses were becoming a major problem.
Development of Cybersecurity Software
The late 80’s and early 90’s saw cybersecurity become a priority. The Computer Fraud and Abuse Act (CFAA) was passed and companies began to create very simple antivirus programs. The urgency was dialed up in 1988 after a software engineering student at Cornell University, Robert Morris (today, a longstanding MIT professor), wanted to test to see just how big the Internet was getting. He wrote a program that was designed to spread across the web, get into Unix terminals, and replicate. This project failed miserably when the code replicated so quickly as to slow the Internet to a crawl, causing immense damage. “The Morris Worm”, as it was called, led to the formation of the Computer Emergency Response Team (known today at US-CERT). Morris became the first person convicted under CFAA and received three years probation, 400 hours of community service, and a $10,050 fine.
The Morris Worm situation not only woke up the security industry, it woke up hackers. Viruses, worms, and other forms of malware were being developed so quickly that it was impossible for security measures to work. In the early 1990’s antivirus, began to be developed with the idea of thwarting malicious code. By the time the Internet was entering homes in the mid-90’s, there were already several antivirus vendors. Antivirus programs scanned the binary information on a computer and tested it against a database of individual virus code signatures. The software did a decent job of keeping viruses off of computers, but as you might expect, they found a lot of false positives. They also had a tendency to use a lot of a system’s resources to scan for viruses, leaving a computer inoperable, or frustratingly slow.
The Malware Boom
Where there are people, there are going to be thieves. As more and more people joined the “World Wide Web”, the number of different types of attacks grew. By 2007, there were nearly five million different malware strains. By 2015, half a million different strains of malware was being created each day.
Security began to lag. Antivirus couldn’t keep up with the constant stream of malware being created. Computers simply didn’t have the processing power to scan that fast. Over time, this led to innovations in cybersecurity. Endpoint protection platforms (EPP) were developed that didn’t waste time scanning for specific code. Instead, they found common denominators in the code of all the malware and searched for that. Security was enhanced, but threats continued to evolve.
The entire industry was flipped on its head with the deployment of WannaCry. The WannaCry ransomware was the most devastating piece of malware ever deployed. It was such a huge surprise to security professionals because the vulnerability it took advantage of was patched by Microsoft.
WannaCry worked by encrypting data and locking it away from the user. The hacker then forced the owner of the computer to pay (in Bitcoin) to get access to those files. This signaled a hard turn in the cybersecurity industry. If hackers were going to be able to deploy threats like this (or worse), it was crucial that the strategies used to protect people, resources, and data from this type of cybercrime be effective and understood. Security professionals now have developed what is called Endpoint Threat Detection and Response (EDR) services to proactively monitor systems to ensure they are not lousy with malicious code. Today, EDR solutions are the cutting-edge tool used by professionals keeping malware and other threats off of your network.
So Where Are We Now?
The combination of vigilance and automation are giving cybercriminals a run for their money. Unfortunately, that’s exactly what the hackers are after, and they are profiting. Hackers siphon at least $1.5 trillion each year off the world economy. In fact, some analysts have predicted that damages from cybercrime will reach $6 trillion by 2021. Cybersecurity has become a $200 billion a year industry. Even so, security breaches are up by 67 percent over the past five years.
Today the biggest threat comes from phishing attacks. A phishing attack is a social engineering strategy designed to gain access to a secure computing system by tricking end users into providing access. The main problem with phishing, apart from the millions of messages hitting email and social media inboxes every day, is that most people who have been successfully phished have no idea until something dramatic happens. Phishing results in billions of records being compromised every year.
If you would like to know more about cybersecurity, or if you are just interested in keeping your business’ data and network safe, call Ashton Technology Solutions today at 216397-4080.