Check Point releases cyber-security predictions for 2017

Following in-depth analysis of the company’s latest Security Report, Check Point says a rise in connected and mobile devices will add to the complexity of IT security in 2017.

  • 8 years ago Posted in
Check Point® Software Technologies has published its five key security predictions for 2017.
 
Based on data from the company’s latest Security Report, which analyzed thousands of security checkups and gateways globally, the predictions cover consumer-driven trends including mobile and the IoT, as well as corporate-specific areas like critical infrastructure and cloud security.
 
 
Trend 1: Mobile
 
With smartphone usage up 394% and tablet usage up an enormous 1700% over the past four years, it is no surprise that attacks on mobile devices are continuing to grow. According to Check Point’s 2016 Security Report, one in five corporate employees will be the cause of a company data breach through mobile malware or malicious WiFi – both highly effective attack vectors on mobile devices.
 
As this trend continues, Check Point expects to see enterprise breaches that originate on mobile devices becoming a more significant corporate security concern. The recent nation-state sponsored attacks on journalists’ mobile phones means that these attacks methods are now out in the wild and we should expect to see organized criminal gangs use them. However, mobile security remains a challenge for enterprises – a push-pull between productivity, privacy and protection.
 
 
Trend 2: The Internet of Things (IoT)
 
Updating and patching IoT enabled devices can be challenging, particularly if the manufacturers of these devices do not have a specialist security focus. In the coming year organizations can expect to see cyberattacks spreading to industrial IoT, perhaps via devices such as printers.
 
 
 
 
Trend 3: Critical Infrastructure
 
Critical infrastructure, which includes major energy, utilities and telecommunications companies, is highly vulnerable to cyberattack. Nearly all critical infrastructures were designed and built before cyberattacks were a major threat, and as such even basic principles of information security are not embedded in their design. In early 2016, the first blackout caused intentionally by a cyberattack was reported. Security planners in critical infrastructure need to plan for the possibility that their networks and systems will see attack methods consistent with multiple potential threat actors: nation-state, terrorism and organized crime.
 
Trend 4: Threat Prevention
 
The Check Point’s 2016 Security Report revealed a nine-fold increase in the volumes of unknown malware attacking organizations, with nearly 12 million new malware variants being identified every month. Ransomware is becoming particularly prevalent, and it will become as much of a problem as DDoS attacks in 2017.
 
Given ransomware’s effectiveness, enterprises will have to employ a multi-faceted prevention strategy, including advanced sandboxing and threat extraction, in order to effectively protect their networks. They will also need to consider alternative ways to cope with ransomware campaigns. Such methods would include coordinated take-downs with industry peers and law enforcement, as well as the establishment of financial reserves to speed payments, if that is the only mitigation option.
 
It is also likely that there will be an increase in targeted attacks to influence or silence organizations, with ‘legitimate’ actors launching such attacks. The current U.S. Presidential campaign and interference from other nation-states demonstrates this possibility and will serve as a precedent for future campaigns.
 
Trend 5: Cloud
 
As enterprises continue to put more data in the cloud and utilize hybrid network infrastructures, including software-defined networking, they will create additional backdoors for hackers to access other enterprise systems. Additionally, any attack to disrupt or take down a major cloud provider could affect all of their customers’ businesses. While generally disruptive, such an attack would most likely be used as a means to impact a specific competitor or organization, who would be one of many affected, making it difficult to determine, or prove motive.
 
There will also be a rise in ransomware attacks impacting cloud-based datacenters. As more organizations embrace the cloud, both public and private, these types of attacks will start targeting these emerging infrastructures, through either encrypted files spreading cloud to cloud or by hackers using the cloud as a volume multiplier.
 
 
Darrel Burkey, Director, IPS Products, Product Management at Check Point said: “Data from our latest Security Report presents a complex and, in some respects, alarming picture for information security in 2017. As far as mobile, cloud and IoT are concerned, we passed the tipping point a long time ago – these technologies are an integral part of doing business, and cybercriminals have adapted their techniques accordingly.”
 
“Malicious hackers have also become smarter when it comes to malware and ransomware, releasing new variants on a minute by minute basis. The days of signature-based antivirus being enough to screen out malware are long gone.”
 
“Using these predictions, organizations can develop their cybersecurity plans to keep them one step ahead of emerging cyber-threats - preventing attacks before they can inflict damage.”
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Atos has launched Atos OneCloud Sovereign Shield, a set of solutions, methodologies, and...
New distribution agreement set to bolster Westcon-Comstor’s Zero Trust offering in more markets...
Research from Avast has found that employees in almost a third (31%) of Small and Medium...
This year, over half of MSPs or their end customers have been attacked by ransomware but only 53%...
Trend Micro has published new research revealing that 90% of IT decision makers claim their...
Cyber consultants call on businesses to act now, or risk budgets shrinking further in ‘real...