As the Summer holidays draw on apace, we thought it might be time to subject ourselves to a mid-year assessment.
At the end of last year we made some predictions:
- Malware – The volume of malware will continue to increase, targeted at multiple platforms (especially mobile)
- CryptoLocker – Data encryption and destruction Malware like CryptoLocker will become more and more of a headache for Enterprise and individual users.
- Windows XP shuffles off – Many issues around windows patching
- Enterprise Private Clouds will grow quickly
- Behavioral based anomaly detection – will increase significantly
- Social networks will be used to socially engineer employees
- Mobile security – Increasing levels of security for mobile devices will be provided by the device manufacturers
So how are we doing?
- Malware – Targeted Malware has been rife in the first half of 2014 with several high profile takedowns by global law enforcement (Zeus/Cryptolocker earlier this year and ‘Shylock’ this week http://www.infosecurity-magazine.com/view/39289/nca-leads-global-shylock-malware-takedown/
- Cryptolocker – The subject of a global ‘you have 2 weeks to save yourself’ alert (see TOTW 05/06/14).
- Windows XP exploits – ‘operation Clandestine Fox’ and many other Zero days are crawling out of the woodwork.
- Enterprise private clouds – BOOMING! See: http://www.computerworld.com/s/article/9249814/Enterprises_increasingly_look_to_the_private_cloud
- Behavioural based security – Taking off, wait for our end of year report.
- Social networks will be used to social engineer employees – LinkedIn Users have been targeted by Phishing attacks after breaches: http://www.infosecurity-magazine.com/view/39370/linkedin-users-hit-with-new-phishing-scam
- Mobile Security increasingly to be provided by vendors of device or OS – Yesterday, Samsung announced a major deal to supply Knox security to the South Korean Financial Association. Nepotism apart, a big development: http://en.kioskea.net/news/25120-samsung-to-provide-knox-security-to-south-korean-financial-association
Not bad work for our crystal ball.
The message is clear. Malware and information security breaches are becoming more mobile, more targeted, more accurate and more effective. You have little chance of identifying or dealing with attacks using point technologies, let alone understand your risk profile.
ITC’s NetSure360° Managed Security service, which was the best product winner at this year’s ISSA-UK ‘Security In The Spotlight’ event (just saying!) integrates our five steps to security process with best of breed technology so that you can see the wood from the trees and focus on what is really important to your business.
We expect more of the same in the next half of the year, not to mention a massive rise in credit card thefts from European traders.
If you would like to discuss any aspect of your information security with us, please contact us on: 020 7517 3900 or email [email protected]