The Future of Cybersecurity in 2016: Will it Rely on Chance or Strong Leadership?
In the rapidly evolving world of cybersecurity, 2016 was anticipated to bring a host of challenges and trends. Here's a look at some of the key predictions that shaped the cybersecurity landscape back then.
- Increased Ransomware Attacks: Ransomware, a type of malicious software that encrypts a victim's data and demands a ransom to restore access, was expected to rise significantly in 2016.
- Growth of Internet of Things (IoT) Vulnerabilities: As more devices became connected, the attack surface expanded, making IoT devices a prime target for cybercriminals.
- Cloud Security Challenges: With the move towards cloud computing, securing data in the cloud became a major concern. Protecting sensitive information from breaches and ensuring compliance with regulations was a top priority.
- Greater Use of Encryption and Privacy Protections: As data breaches became more common, there was a growing emphasis on encrypting data and implementing privacy protections to safeguard sensitive information.
- Advanced Persistent Threats (APTs): APTs, stealthy cyber attacks by threat actors, were expected to continue posing a significant threat in 2016.
- Insider Threats and Human Error Issues: Human error and insider threats remained a significant concern, with employees unintentionally or intentionally causing security breaches.
- Increased Regulatory and Compliance Demands: With the increasing number of data breaches, regulatory bodies were expected to tighten their compliance requirements, placing additional pressure on organisations.
- Mobile Device Risks and Mobile Malware: As mobile devices became more prevalent, the risk of mobile malware increased, making mobile security a critical concern.
- Social Engineering and Phishing Attacks: Social engineering and phishing attacks, which trick users into revealing sensitive information, were expected to remain a significant threat in 2016.
- Big Data Security Challenges: The growing amount of data being generated and collected presented new security challenges, including data privacy, data integrity, and data governance.
- Cybersecurity Workforce Shortage and Skills Gap: The demand for cybersecurity professionals far outstripped the supply, leading to a skills gap that made it difficult for organisations to find and retain qualified cybersecurity experts.
Simon Crosby, Co-founder & CTO of Bromium, emphasised the need for a shift in focus from post-hoc analysis to preventing breaches before they start. He suggested forcing vendors to accept liability if a breach occurs and paying endpoint security vendors based on the value they deliver.
The cybersecurity sector saw significant activity in 2015, with large acquisitions such as EMC by Dell and Websense by Raytheon, and companies like Rapid7 and Sophos going public. However, many security vendors focused on detection, which, alone, could not protect against advanced, intelligent attacks. Crosby suggested that free options should only be considered when regulations demand the functionality, but the vendors fail to protect.
Despite the spending, numerous daily reports of breaches due to 'sophisticated attacks' indicated that many companies' infrastructure remained vulnerable. Significant breaches in 2015 included TalkTalk, Hilton, Carphone Warehouse, and Ashley Madison.
As we move forward, it's crucial for organisations to question the status quo, demand greater accountability from vendors in the cybersecurity industry, and invest in solutions that make infrastructure more secure by design to prevent breaches.
- The increased use of technology in various aspects of life, such as the Internet of Things (IoT), cloud computing, and mobile devices, has expanded the attack surface, making cybersecurity a critical concern in preventing ransomware attacks and other malicious activities.
- In the rapidly evolving world of cybersecurity, technology solutions should focus on prevention rather than just detection, as emphasized by Simon Crosby, Co-founder & CTO of Bromium, to protect organizations from advanced, intelligent attacks and hold vendors accountable for breaches.
