2015 prediction: Expect massive spikes in global information security threats

Frank Ohlhorst

Updated November 19, 2014 at 11:55 AM

Paco Hope asserts that it is inexcusable to support or enable "export-grade" cryptography. The Logjam security flaw, like FREAK before it, drives this point home.

Increases of global information security threats remain as much a certainty as death and taxes, at least according to the latest Information Security Survey from PWC. That report, which was published in October, highlights several troublesome trends and provides valuable information for those concerned with enterprise IT security. Nonetheless, interpreting the information delivered into applicable best practices remains a challenge for many IT security professionals. Especially those who will be assigned the task of keep their organizations from becoming one of the latest statistics in the battle against cybercrime.

PWC rightly points out that cyber security has become a persistent business risk and that threats (both to the economy and intellectual property) are on the rise. The report goes on to identify some very troubling incidents, including:

More than half (53%) of global securities exchanges have experienced a cyber attack (IOSCO Survey)
In South Korea, some 105 million payment card accounts were exposed in a security breach (Symantec Corp)
City officials in Verden, Germany announced the theft of 18 million email addresses, passwords and other information (TechWeek, Europe)
Cyber thieves stole more than $45 million from worldwide ATM accounts of two banks in the Middle East (CNet.com)

While the above mentioned compromises prove to be just a small fraction of the security incidents that occurred in 2014, those incidents do reveal some of trends, namely that financial gain is a key motivator for attackers and that even the most secure organizations are still susceptible to threats, two realizations that should be game changers for those seeking to protect IT assets from cybercrime.

Is the victim at fault?

When it comes to cybercrime, the complacency of the victims is sometimes at fault. While that does not excuse the criminal nature of the attackers, it does highlight the need for organizations to be proactive in protecting their assets - after all, the law only comes into play after a crime has be committed, meaning that the numerous anti-cybercrime laws on the books hold little sway against determined cybercriminals.

In other words, organizations should be taking a defensive position and grid themselves for attack as inevitability and as not an exception to the rule. That ideology will prove to be a key factor in the paradigm shift needed to protect against the onslaught of attacks expected in 2015.

PwC is forecasting that global security incidents are on track to grow some 48% in 2015, which should strike a dissonant chord with the majority of security professionals.

Is risk management the answer?

With the idea of a security paradigm shift on the table, today's cyber-defenders should be thinking in different terms than just traditional security initiatives, shifting their focus towards an ideology of "cyber risk management", which is being fueled by an initiative founded by the NIST.

The NIST has set forth a security framework (NIST Cybersecurity Framework) that stresses management over technology and highlights several best practices that should help organizations defend against the imminent threats posed by increasing cyber-attacks. While some of the elements of the framework fit under the realm of accepted best practices and common sense, there are other elements that encompass a sea-change on how organizations deal with cyber threats, namely in the core ideology of five concurrent and continues functions that provide a strategic view into the lifecycle of an organization's management of cyber security risk. Those functions include:

Identify: Build an institutional understanding of cybersecurity risk to organizational systems, assets, data and capabilities
Protect: Develop and implement the appropriate safeguards, prioritized through an organization's risk management process, to ensure delivery of critical IT capabilities without compromises
Detect: Build the appropriate systems and policies to identify the occurrence of a cybersecurity event
Respond: Create and implement the appropriate activities, policies and events that must occur if a cyber-security event occurs
Recover: Develop and implement the appropriate activities, prioritized through the organization's risk management process, to restore the capabilities or critical infrastructure services that were impaired through a cybersecurity event.

While the NIST states that its methodologies and best practices are optional, the organization does make a strong case for those looking to benefit from a holistic approach to cyber security, and at the very least, sheds some light on what should be an important conversation within any business relying on cyber capabilities to conduct business.

Those charged with the management of enterprise cyber security must delve deeper into what makes up an enterprise's cyber security ideology and make appropriate adjustments before disaster strikes.

Yahoo Sports
NBA Draft Lottery: Hawks get No. 1 pick, despite 3 percent chance of winning
The Atlanta Hawks won the No. 1 overall selection in the NBA Draft Lottery. The Hawks had a 3 percent chance of winning the top pick.
Yahoo Sports
2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set
With the lottery order set, here's a look at Yahoo Sports' projections for both rounds of the 2024 NBA Draft.
Yahoo Sports
Former MLB infielder, Little League World Series star Sean Burroughs dies at 43
The seven-year major leaguer collapsed while coaching his son's Little League game on Thursday.
Yahoo Sports
The best RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Finance
Here's 1 big investing mistake you are probably still making
Maybe a 5% CD isn't the best choice for your hard-earned money.
Yahoo Finance
How rich homebuyers are avoiding high mortgage rates
Homebuyers with means are turning to an old strategy to get around a new crop of high mortgage rates: all-cash deals.
Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.
Yahoo Sports
Fantasy Baseball Waiver Wire: A hitter who should be rostered in every league is available in more than half of them
Prep for the final days of Week 6 with Dalton Del Don's latest batch of fantasy baseball waiver wire pickups!
Autoblog
Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)
Trucks aren't known for being fuel efficient, though times are changing. These are the trucks with the best gas mileage in various segments.
Yahoo Sports
Wide receiver rankings for 2024 fantasy football
The Yahoo Fantasy football analysts reveal their first wide receiver rankings for the 2024 NFL season.
Yahoo Sports
Tight end rankings for fantasy football 2024
The Yahoo Fantasy football analysts reveal their first tight end rankings for the 2024 NFL season.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.
Yahoo Sports
Derrick Lewis strips off shorts, moons crowd in St. Louis after KO win over Rodrigo Nascimento
“I appreciate St. Louis for letting me show my naked ass tonight."
Yahoo Finance
Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'
Ryan says he would be writing in a Republican candidate instead of voting for Donald Trump.
Yahoo Finance
Bud Light sales still falling as Modelo, Coors fight to keep their gains
The competition among beer giants is still brewing.
Yahoo Sports
Please save 'Inside the NBA'
Appreciate 'Inside the NBA' while it's still here, because if this goes away, there may never be anything as good again.
Yahoo Sports
Is Pacers coach Rick Carlisle right to be upset about officiating in Knicks series and a big-market bias?
Indiana's head coach refused to blame the officiating following Game 1, then looked at the high road two days later and went a step away from nuclear.
Yahoo Sports
2024 NBA Draft Lottery: Top prospects, teams with the best odds and how the lottery works
Here is everything you need to know about the upcoming NBA Draft Lottery and NBA Draft.

News

Life

Entertainment

Finance

Sports

New on Yahoo

2015 prediction: Expect massive spikes in global information security threats

Is the victim at fault?

Is risk management the answer?

Recommended Stories

NBA Draft Lottery: Hawks get No. 1 pick, despite 3 percent chance of winning

2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set

Former MLB infielder, Little League World Series star Sean Burroughs dies at 43

The best RBs for 2024 fantasy football, according to our experts

Here's 1 big investing mistake you are probably still making

How rich homebuyers are avoiding high mortgage rates

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

The FDIC change that leaves wealthy bank depositors with less protection

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'

Fantasy Baseball Waiver Wire: A hitter who should be rostered in every league is available in more than half of them

Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)

Wide receiver rankings for 2024 fantasy football

Tight end rankings for fantasy football 2024

The best budgeting apps for 2024

Derrick Lewis strips off shorts, moons crowd in St. Louis after KO win over Rodrigo Nascimento

Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'

Bud Light sales still falling as Modelo, Coors fight to keep their gains

Please save 'Inside the NBA'

Is Pacers coach Rick Carlisle right to be upset about officiating in Knicks series and a big-market bias?

2024 NBA Draft Lottery: Top prospects, teams with the best odds and how the lottery works