Clearly, there is a struggle to keep up-to-date with the raft of laborious tasks that keep the lights on. Simply staying on top of the updates, signatures, patches and rules for a multitude of disparate security solutions takes its toll on the number of hours in a day.
Another challenge is knowing where data and workloads live, with many organisations not having a clear grip on their data, or even to a certain extent of knowing the function of that data. Many IT execs are left wondering what applications are using that data? Why is a Windows 2000 server still running in the corner of the accounts department? Who authorised workloads in public clouds? This makes it hard to accurately measure the impact of losing it, until it’s too late.
Security and Cybersecurity will be the hot topic for 2017. Boards and senior management know that they cannot simply leave this to the ‘IT Guys’ any more, and that with the growth and complexity of threats they will need to keep pace with the ‘Bad Guys.’
Organisations need to ensure the basics are covered – strong authentication and management of system credentials to reduce potential for toxic user access, the nature of securing the end-user, and storage and movement of data inside the cloud. Beyond the basics, they need to identify and understand how best to take security montitoring and enforcement past endpoint and special-use devices to protect the foundational elements of the network.
With all that in mind, let’s have a look at some key changes we at Juniper see on the horizon for this year. Over the coming weeks we will present a series of content that will dive deeper into each of the following Cybersecurity issues and our predictions for 2017 and beyond…
In 2016 we saw the first attacks on, and with, IoT connected devices – it has been made clear that these devices are susceptible to attack. Traditional security is not the answer for these devices, a new approach is needed.
In 2016 we saw a number of high profile DDOS attacks driven by hijacked IoT devices, and more recently DDoS-as-a-Service being offered on the Dark Net. What could we see in the future, and how can we be better prepared?
What’s the next target for IoT? Taking control of devices may be the first stage, What if your coffee machine demands ransom before pouring that espresso? Or a thermostat stuck at a North Pole temperature setting demanding payment for services prior to adjustment? What could happen next, and what can we do to be better prepared – or prevent this from happening?
It could be a brand/manufacturer of car held ransom, a business held ransom or a high-profile individual, but eventually it will happen. Should we be concerned, and what should manufacturers be thinking to avoid or mitigate?
The ultimate target for any hacker is your data. Whether it’s personal or corporate information, they don’t care, as long as it has value. In 2015 the Symantec ISTR reported a 35% growth in Ransomware attacks, and they are getting smarter – what can be done and how can you avoid being held to ransom?
We have seen multi-million dollar attacks on banks which were almost untraceable. For anyone needing to fund their next cyber-attack, this is a great way to fund those activities. Will this spread, or become more complex in 2017 and what can be done?
Phishing and clicking are still the most successful delivery methods, but malware evolves quickly, with new techiques arriving all the time. What are some of these techniques, and how can machine learning be used in the war to combat them?
Nation States move from passive to active cyber defense
Cyber defense of a country has been passive, watching for indicators of compromise and responding. That is changing. An example is Stuxnet, the alleged Russian hacks on the US election campaign. Lines are being drawn and we will see nations moving defense from passive to active. What changes will this bring and are we ready?
The Automat(i)ons are coming...
Businesses often struggle under the weight of security processes – patch updates, signatures, and firewall rules. Today, the security team is often a tactical deployment, so how can you benefit from automation to make them a strategic security resource?
If you enjoyed reading this blog and would like to read related security blogs please visit here