It’s that time again.
With 2014 safely tucked away in the history books, we now look ahead wondering what 2015 will hold for us and the future of information and network security.
“While no one can totally reliably predict the future, there are often good indications in what we see that provide likely directions for the coming year,” said Geoff Webb, senior director, security strategy with NetIQ. “For example, it was pretty clear at the end of last year, after the details of the Target breach become public, that it wasn’t going to be a one-off incident. Rather, it was the opening salvo in what has proven to be a year-long attack on the retail industry.”
By looking across multiple sources of information, evaluating the patterns of attack and defense, and providing commentary to a broader market, you can help set the security conversation for the coming year, he said. “After all, the more we can share information, the better we all are at responding quickly and preventing successful attacks. And that has huge value for everyone.”
Here are five things that security professionals believe we need to think about in 2015:
Attacks Against Virtual Payment Systems – In light of the recent retail breaches involving credit and debit cards, there are many who think that the move to mobile payment solutions will help solve the security problem. Patrick Nielsen, Senior Security Research, with Kaspersky Lab, however, believes that it won’t take long for cybercriminals to take advantage of a potential vulnerability in the system.
More Old Security Holes Surface in Open Source Software – One of the most talked about security problems of 2014 was the Heartbleed bug. However, Heartbleed and other vulnerabilities found in open source code have been lurking there for years before they were discovered. Nielsen said we should expect to see more of these old security holes causing problems in 2015.
Data Loss Prevention (DLP) Will Become a Hot Issue for Business Leaders – Businesses need to know where their business critical information is at all times. Flagging content and communication before it leaves the office is a good start but it is not enough. “Machine learning, pattern recognition and ‘post-send’ message controls are the next wave of DLP functionality that will protect employees, clients and increasingly the brand,” said Cameron Burke, SVP of Business Development for Cirius.
Malware Will be Harder to Detect and Shutdown – It’s time we stopped thinking about malware as a nuisance that has to be kept off computers and started recognizing what it actually is – big business. And just like any business wants to grow stronger and increase its earnings in the coming year, malware developers will continue to put out products that will be sneakier and harder to detect, all in the name of higher financial gains.
Raw Security Incidents Will Continue to Rise – The recent Sony attack is a warning of just how devastating a cybersecurity incident can be, and that we need to be prepared for just about anything.
Organizations today face unprecedented security challenges, said Stephen Pao, GM Security at Barracuda. Attacks often are targeted and increasingly sophisticated, and security professionals are being asked to address these risks across an ever more complicated environment.
The chances that all of these security predictions come true, at least in part, are pretty good. The question is whether or not businesses will be up to the challenge of tackling these security issues before they cause damage. And that, only time will tell.