Technology never stands still and neither do cybercriminals. Thankfully, our cybersecurity continually evolves to tackle the latest developments. These are five big issues in cybersecurity in 2018 that could affect your business:
Most people don’t pay much attention to cryptocurrencies, but they pose a knock-on risk for everyone. Scammers now have a direct financial incentive to remotely take control of your computers: not to access data but rather to harness your machines’ processing power. Google has cracked down on apps that do this with permission, but there’s a real risk of malware taking advantage of browser flaws to seize control if you don’t have adequate IT support. That can mean slowed performance and even your equipment overheating.
State Sponsored Attacks
We hear plenty about foreign governments trying to interfere with social media, but many major malware attacks are so sophisticated that a hostile state is almost certainly involved. While government networks are always targets, there’s also an incentive for such attacks to go after businesses that deal with government projects or simply play a key infrastructure role. Addressing such threats through managed IT support can be vital to businesses: for example, from 2018 all Department of Defense contractors must meet tough minimum security standards.
Balancing security and practicality is always a difficult task, but in 2018 the pendulum is swinging towards safety first. For example, two major bugs discovered this year, Meltdown and Spectre, took advantage of a flaw in a feature built into virtually every computer processor that’s designed to speed up performance. Google tested the waters with businesses before rolling out a fix that increases Chrome’s memory use by 1% , concluding it was a price worth paying to reduce risks.
In a separate case, Google has started having all staff use physical USB “keys” as part of their log-in process. The inconvenience seems worth it as the company reports zero successful phishing attempts (at least to its knowledge) since introducing the measure.
There’s more to cybersecurity than the underlying technology: just like any area of business, people and procedures play a vital role. Historically the security industry has worked on a mutual philosophy of responsible disclosure where somebody who discovers a security flaw reports it to the manufacturer or developer in question and doesn’t make the flaw public until a fix is ready.
If 2018 is anything to go by, that philosophy is getting a lot more contentious. For example, Google’s take on responsible disclosure sets down a 90 day limit for fixes before it goes public. That led it to reveal a Microsoft Edge flaw that hadn’t yet been fixed – a controversial move given Google and Microsoft are rivals in the browser market.
There’s also an argument among some security researchers that keeping bugs quiet for too long reduces the incentive for developers to prioritize a fix. It’s too soon to say how this debate shakes out, but passing up IT support and simply assuming developers will keep their software adequately patched looks a rash move.
Most tools can be used for positive and negative purposes and artificial intelligence is no exception. Malware that combines the speed of computers with the reasoning and learning of humans could be more effective than anything that has preceded it. Imagine phishing attacks that were automatically crafted to use language and tone that matches that used by real staff in the target business.
However, AI is also a force for good in cybersecurity and IT support. Earlier this year, Microsoft revealed how a combination of artificial intelligence and cloud computing meant it took barely a minute from a user’s computer spotting an unfamiliar file to the message getting out to Windows PCs around the world that the file was a likely threat.
How Computex Anticipates the Cybersecurity Trends
The cybersecurity landscape evolves quickly, and it takes an organization that evolves just as fast to keep up with it. That’s why the technology used here at Computex is always future-facing; we don’t use legacy equipment to face the security challenges of tomorrow.
We analyze and utilize the upcoming trends to determine effective, innovative, and sometimes disruptive technology to use for enterprise-level organizations.
Interested in finding out what Computex can do for your organization? Reach out to us. We’re happy to continue to conversation in greater detail and answer any questions you may have.