Do You Want CybSec With Your Cookies?
Mar08

Do You Want CybSec With Your Cookies?

This week’s cybersecurity threat report from SonicWall doesn’t hold any real surprises from every other cybsec alert that frequents my inbox — i.e. the Cisco 2018 Annual Cybersecurity Report — but it does reinforce the key themes: cybsec threats are bad, and growing worse (it was called the ‘greatest concern’ at last month’s Senate threats hearing). “We tend to view the world as a cybersecurity arms race… the good guys make advances and the bad guys make advances,” John Gordineer, Director of Product Marketing, SonicWall, tells IT Trends & Analysis. The cybsec vendor said cyber attacks are becoming the number one risk to business, brands, operations and financials, and it identifies almost 500 new previously unknown malicious files each day, which makes this one of the hottest IT — and business — markets. MarketsandMarkets states the data protection market is expected to grow from $57.22 billion in 2017 to $119.95 billion by 2022, at a Compound Annual Growth Rate of 16%, while the total cybsec market will grow almost as quickly, from last year’s $137.85 billion to $231.94 billion by 2022, at a CAGR of 11%. While the SonicWall survey found that the number of attacks was down, the variety of attacks is increasing, which he attributed to several factors, especially in ransomware attacks, he said. First, companies that paid their ransoms did not get their data back; more effective protection is being deployed; and data backup and recovery solutions make companies less likely to become a victim or need to pay ransoms. As a result, the bad actors are scrambling to retool their ransomware to be more profitable, since they are catching fewer victims, said Gordineer. “We’re curious to see where that goes in 2018. One of the things we’re seeing is ransomware as a service.” Key findings of the SonicWall survey included: -9.32 billion total malware attacks in 2017, an 18.4% year-over-year increase; -ransomware attacks dropped from 638 million to 184 million between 2016 and 2017; -ransomware variants increased 101.2%; -the company collected 56 million unique malware samples in 2017, a 6.7% decrease from 2016, but the total volume of unique malware samples in 2017 was 51.4% higher than 2014; and -the average organization will see almost 900 file-based attacks per year hidden by SSL/TLS encryption. Cisco’s results offered similar dire news: -32% of breaches affected more than half of respondents’ systems, compared with 15% in 2016; -more than half of all attacks resulted in financial damages of more than $500,000, including, but not limited to, lost revenue, customers, opportunities, and out-of-pocket costs; -complexity is growing: in 2017, 25% of security professionals said they used products from...

Read More

What to Expect at RSA Conference USA 2018

The theme for RSA Conference 2018 USA is “Now Matters.” No more clever themes like ancient stone tablets, which I really miss…but I digress. What the theme “Now Matters” means is that “urgency and pressure” are being felt in the IT community. So what if you chose to upgrade a server or a switch a bit later than anticipated? Sure, you may lose some opportunity costs of additional performance that could have been achieved, but the world is not going to end. There are special cases like end-of-support or lack of firmware upgrades for older equipment, but they are predictable and can be dealt with ahead of time. But if you ignore the “now” in security and leave an attack surface unattended, you may experience negative consequences. This is an issue that matters to areas of infrastructure such as networking and cloud computing platforms, which I cover. To read the complete article, CLICK...

Read More

Thinking about Identity Management..

With February behind us, the cybersecurity industry is about to experience a push toward the annual RSA Security Conference in San Francisco. I expect around 50,000 people to attend this year. It ought to be crowded, loud, and extremely passionate. Now normally, identity and access management (IAM) is sort of a niche player at RSA. Oh sure, there are plenty of biometrics, smart card, and security token vendors present, but IAM discussions are muted by a cacophony of noise around things like next-generation endpoint security, behavioral analytics, and CASB. To read the complete article, CLICK...

Read More

What’s on CISO’s Minds in 2018?

I’ve just begun a research project on CISO priorities in 2018. What I’m finding so far is that CISOs are increasing their focus in several areas including the following: To read the complete article, CLICK...

Read More

“Gotta Have” Endpoint Security Suite Functionality

The movement toward next-generation endpoint security has accelerated over the last few years for a simple reason – cybersecurity professionals aren’t happy with the efficacy of existing antivirus tools. This market demand has led to a wave of investment and innovation from vendors like Carbon Black, CrowdStrike, Cylance, Morphisec, SentinelOne, and many others. New endpoint security technologies tended to come in one of two areas. Advanced prevention tools added new techniques for detecting malware that bypassed AV signatures. Many of these tools also contained anti-exploit technologies for detecting and blocking common memory exploits and/or attacks against common applications like browsers. At the other end of the endpoint security continuum, some organizations had new requirements for endpoint detection and response (EDR). These tools monitor endpoint behavior and collect data which is then used for security analytics. In the past, most organizations chose new tools for advanced prevention or EDR but not both. About 75% to 80% went with advanced prevention and the remainder chose EDR. To read the complete article, CLICK...

Read More