What’s in store in Information Security for 2013?
If we continue the trends of 2012, the good news is that Security will improve for larger or well-funded organizations. Here some of the main issues of Information Security that I predict for 2013…
Clouds for Enterprise and Government
In 2013 more businesses and government will continue the move to cloud computing while also seeking security checks and balances to protect corporate data. Cloud services are finally getting over its hype curve, and are starting to deliver reliable and secure platforms.
Sandboxing Smartphone Apps
Using a sandbox application to access corporate emails, that application is only resident on the machine while you’re receiving emails but you can’t copy out or in any attachments and then all transient data disappears when the application exits.
Cross-Platform Attacks Increase
Write once, infect anywhere? A dream come true for any malware writer. But until recently, the relatively small base of alternative operating systems (Mac, Linux, Unix, Android), did not make it easy to cross-platform malware. In 2012, however, malware authors altered their approach with the Flashback malware. With the Flashback Trojan in early 2012, more than 600,000 Mac computers were infected. Since Flashback, more than one attack has targeted multiple operating systems via cross-platform vulnerabilities present in Java and Flash, and no doubt that targeting those in 2013 will continue. With the prevalence of Macs in the workplace and the number of mobile devices, this is becoming an easier target.
Malware Targets Critical Infrastructure
In 2012 we saw two major attacks from government and hacktivists [strange bedfellows!] organizations attacking foreign countries infrastructure [Iran, Egypt] or companies [Saudi energy]: Flame and Shamoon malware. There will be more to come… The scary thing is that these malware lived without detection for months…
Malware Targets New High Tech Mobile Technologies
One of the more innovative attacks to emerge over the past year involves fake QR codes, which attackers have printed out and used to cover up real QR codes on advertisements! Attackers promise “free $100 to open a bank account” and send consumers to fake versions of their bank’s website, then steal their access credentials. Another new banking technology for payment convenience is near field communication (NFC), but since it’s still young, many security issues will be discovered and exploited! Another mobile issue will be Digital Wallets, and expect any combination of smartphones, payment capabilities, or credit card data to draw attackers’ interest…
STAY SAFE IN 2013!