We also expect to see an increase in mobile malware, which effectively locks the user out the device or machine so the cyber criminals can access data, to have an impact on businesses via their increasingly mobile workforces. Hacktivism attacks which usually target governments will spill over into business and enterprise markets.
Attacks using advanced evasion techniques will increase, with enhanced capabilities to identify and bypass some “Next Generation” security tools. Attackers will continue to develop exploits that will be ‘sandbox aware’ aiming to bypass security systems, demonstrating that sandboxing is a feature and not a complete security solution.
Unfortunately, the poor cyber security foundations of many companies will continue to create an environment of high motivation, high opportunity for the attacker in 2014. Last year, I saw a number of successful high profile attacks that occurred due to poor patching, misconfigurations, out of date security, and a lack of enterprise wide security visibility. Businesses need to understand that lax cyber security could have significant implications on their company data, operations and financial viability.
Sign up for Computerworld eNewsletters.