Emerging Online Security Trends and Threats
Cybersecurity professionals and end users reported rising numbers of incidents and events again this year. Twenty million new strains of malware were created (including new threats and variants of existing ones).I
Below are highlights of the cyber security threat landscape predicted for near future and suggestions for what to do to protect your information.
Mobile Devices (laptops, cell phones, thumb drives, etc)
Hactivism (attacks carried out for political or social motivated purposes, e.g. Wikileaks)
Exploits Of Social Media (Facebook, MySpace, Twitter, etc)
Increasing Use Of Apple Macintosh Computers
Botnets And Malware (techniques used to steal private information)
Application or Tool Vulnerabilities (e.g. Oracle Database, PDF’s, other attachment types)
Cloud Computing (Hosted solutions)
What Can You Do?
Use the following sound cyber security practices to to help defend against the myriad of challenges and mitigate potential impacts of incidents:
- Ensure that you have encryption and password features enabled on your smart phones and other mobile devices. Use strong passwords that combine upper and lower case letters, numbers, and special characters, and do not share them with anyone.
- Properly configure and patch operating systems, browsers, and other software programs.
- Use and regularly update firewalls and anti-virus/anti-spyware programs.
- Be cautious about all communications; think before you click. Use common sense when communicating with users you DO and DO NOT know. Do not open email or related attachments from untrusted sources.
- Don't reveal too much information about yourself on social media websites. Depending on the information you reveal, you could become the target of identity or property theft. Be wary of scams, such as fake profiles designed to exploit your trust.
- Organizations considering a move to a cloud-based environment should fully research the risks and benefits of cloud computing before moving to that environment. It is critical that your security requirements are addressed in contractual agreements in advance.
- Allow access to systems and data only by those who need it; protect those access credentials.
- Follow your organization's information security policies. Report violations and issues immediately.