In today’s connected world there are too many devices and too many networks to protect and cyber criminals are more sophisticated than ever. The 2017 threat landscape proved that no one is immune to cyber attacks. But can we take the cybersecurity mistakes made in 2017 to better arm ourselves for a safer 2018? There is hope. Organizations that take a comprehensive and holistic approach to security and the ability to monitor identity, access, authentication, threat, network detection and response and vulnerabilities have the best chance at combating whatever new threats attackers throw at them in the coming year. Below, the Core Security experts weigh in on what we can expect in 2018 and what C-level teams need to be thinking about in order to successfully navigate today’s complex cyber environment.
Protect yourself from insider threats
Organizations need to protect themselves from the inside out. Stephen Newman, head of products and strategy at Core Security, predicts that insider assisted threats - when a threat actor convinces an individual inside a company to steal secrets - will continue to expand. Company loyalty is diminishing, healthcare costs are skyrocketing, companies are no longer participating in 401K matching and companies are sending more and more jobs overseas, creating more reasons for an employee to be enticed by a threat actor.
“Traditional malware and vulnerabilities/exploits are becoming more difficult to hide – at least inside advanced companies that have valuable data to protect,” says Stephen Newman. “This is driving threat actors to other means of accessing confidential data. With so much of our personal lives out in the open on social media or due to other hacks, threat actors will blackmail employees into helping them.”
Just like ransomware is holding individuals hostage, we anticipate that with the level of personal information exposed, some industrious bad guys will start using the data against the individuals, creating the perfect storm for an inside job.
Will IoT ever be secure?
Probably not, according to Bobby Kuzma, Security Researcher at Core Security. There are too many devices to protect, creating an easy environment for even the most unsophisticated criminal. “IoT security will continue to suck. Everyone will complain and nobody will be able to do anything about it,” he says.
As Kuzma explains, “Identities will continue to be compromised at alarming rates, and passwords reuse will continue with reckless abandon. Multifactor or intelligent authentication will remain "too complex" or "too costly" for most scenarios.”
Fight the good fight
In light of recent breaches, many organizations are changing their networks and trying to implement a “Zero Trust” way of thinking, which requires thorough authentication before granting access to any networked resource. Carefully planning out a “Zero Trust” model is the right approach, says Stephen Newman. “To stay one step ahead in today’s dynamic threat landscape, organizations need to be strategic and forward-focused, instead of focusing just on what hurts.”
And it’s not just security leaders who need to change their way of thinking. The government needs to redirect its focus in regards to cybersecurity policy in 2018. We’re going to see a shift in the concept of digital identity. “The concept of credit scoring is going to have to fundamentally change,” says Newman. “Virtually everyone now is exposed, so we need a new system.”
Organizations who will successfully (and securely) navigate through 2018 will have a 365 view of their security posture, not only looking at traditional network, endpoint, and vulnerability information but also working to substantially reduce threat discovery and response time.