The main cybersecurity threats targeting children in 2024

With most children now having access to or owning a smartphone or tablet, the age at which they begin their introduction to the digital world and technology is steadily decreasing. Therefore, it is important for parents to keep up to date with the latest cybersecurity threats targeting children to better protect them from potential risks. Kaspersky experts explore some of the key cybersecurity trends that parents need to be aware of and provide tips on how to protect their children's online activities.

1. Children will increasingly use AI tools that, so far, are not ready to provide the necessary level of cybersecurity and age-appropriate content

According to a UN survey, around 80% of young people claimed to interact with AI several times a day. With the development of AI, numerous not widely known applications have emerged with seemingly innocuous functions, such as posting a photo to receive its edited version. However, when children upload their photos to such applications, they never know what databases they will remain in and where else they may be used.

In addition, AI applications, in particular chatbots, can easily provide, if requested, material inappropriate for minors. For example, there is a plethora of AI chatbots that are specifically designed to provide an "erotic" experience. Although some require some form of age verification, it is dangerous as some children may prefer to lie about their age and prevention of such cases is poor.

2. The increase in malware attacks on young gamers

According to the latest online statistics, 91% of children aged 3-15 years old play games on any kind of device. For some games, unsupervised communication via voice or text messages is a big part of the experience. With more young people online, criminals can build a virtual relationship of trust in the same way they would in person. First, cybercriminals gain the trust of young players by luring them with gifts or promises of friendship. Once they gain a young player's trust, they then obtain their personal information by suggesting that they click on a phishing link, which downloads a malicious file to their device disguised as a game mod for Minecraft or Fortnite.

3. The growth of the FinTech industry for children signals the emergence of new threats

More and more banks are offering specialised products and services designed for children, including bank cards for children as young as 12 years old. However, launching bank cards for children automatically exposes them to financially motivated threat actors and conventional scams, such as promises of free PlayStation 5 or other valuable assets after entering the card details on a phishing site. Using social engineering techniques, cybercriminals may exploit children's trust by pretending to be their peers and requesting the sharing of card details or the transfer of money to their accounts.

4. The number of smart home threats with children as potential targets will increase

Despite the growing number of threat cases for smart home devices, manufacturers are not rushing to create technology immune to cyber attacks that would proactively prevent potential vulnerability exploits. However, it also means that children can become tools for cybercriminals in an attack. For example, if a smart device becomes a fully functional surveillance tool and a child is home alone, cybercriminals can contact them via the device and request sensitive information such as their name and address when their parents are not home - or even their parents' credit card number. In such a scenario, beyond simply hacking the device, there is also the risk of financial data loss or even physical attack.

5. Children will demand that their personal online space is respected

As children mature, they develop greater self-awareness, which includes an understanding of their personal space, privacy and sensitive data, both offline and in their online activities. Consequently, when a parent firmly announces their intention to install a parental digital app on a device, not all children will take it calmly. This is why parents need to develop the skill of discussing their children's online experience and the importance of parental digital apps for online safety with respect for personal space. This includes setting clear boundaries and expectations and discussing reasons for app use with each child.

6. Children are tempted to download apps that are not available in their country, but stumble upon malicious copies

If an app is not available in your area, young users will look for alternatives, which are often malicious copies. Even if they turn to official app stores such as Google Play, they still run the risk of falling victim to cybercriminals. From 2020 to 2022, Kaspersky researchers have identified more than 190 apps infected with the Harly Trojan on Google Play that signed users up to paid services without their knowledge. A conservative estimate of the number of downloads of these apps is 4.8 million, but the actual number of victims may be even higher.

Kaspersky experts believe that protecting children from cybersecurity threats in 2024 requires proactive measures from parents:

• By staying aware of the latest threats and actively monitoring their children's online activities, parents can create a safer online environment for their children.
• It is important for parents to have open communication with their children about the potential risks they may face online and enforce strict guidelines to ensure their safety.