News: Predictions for the New Year

Predictions for the New Year

infosecinstitute posted a handy article about what to expect in the new year for cyber security, along with highlighting major game changers from 2015;

2016 Cyber Security Predictions: From Extortion to Nation-state Attacks - InfoSec Resources

2016 Cyber Security Predictions: From Extortion to Nation-state Attacks - InfoSec Resources Introduction Here we are, once again, to discuss the current cyber threat landscape, trying to predict possible evolutions of the menaces for the next year

Here's Everything from the Article Summed Up

Extortion as ransomware or denial of service will be used more than ever, and will also begin targeting devices such as smart watches, health systems, and all kinds of new technology.

International attention

CISA helped start this in 2015 by allowing companies to share vulnerability information with one another, but it's predicted that in 2016 many different countries and organizations will finally create a universal legal front against cybercrime.

Passwords are being replaced with stronger security, such as dual-authentication, biometrics, geo-location, and even behavorial analysis.

US Elections

My favorite part of the article talks about how hackers will use the topic of the elections to launch mass phishing campaigns, attack specific groups, and to target very specific individuals (possibly candidates themselves?)

The Internet of things will be put at risk as poorly configured devices and outdated technologies open up new holes in its pragmatic defenses.

Crimeware kits are gonna get more and more commercial

Finally, the article ends on a high note -- The number of cyber-attacks will continue to grow almost in every industry. At least we know it won't be hard to land a job in cyber security. :-)

Keep in mind, these are just predictions made by InfoSec. Feel free to voice your own thoughts below.

5 Comments

I highly doubt that companies will actually implant better passwords security. We all know how this all goes, companies just don't want better security. Other than that, nice post and thanks for sharing. :)

I mean we are seeing lots of double verification stuff that's linked to our smartphones, so that's one small step in the right direction.

On the flip side, that means there will be more hacks targeting phones in order to steal those credentials.

Implementing better security protocols means paying money; something that many, if not, all companies are averted to doing.

They will do nothing until an attack occurs, not terribly bright.

ghost_

I think I've learned enough Economics to know that companies will try to maximize profits by cutting corners...

As Ghost_ said, "They will do nothing until an attack occurs"
It reminds me very much of what a book once said:
"The farmer will only bothering to fix the fence once the sheep has escaped"

A universal legal front...if it means privatisation of infosec, then only can it work. If it's rather related to co-operation as they've been doing earlier, then I guess it to be a blunder, rather encouraging companies to stop researching in their security.

-The Joker

Share Your Thoughts

  • Hot
  • Latest