Zscaler Reveals 2013 Global Cyber Security Predictions
San Jose, California, December 31, 2012
Zscaler, enabling business beyond the corporate network, today revealed its predictions for cyber security for 2013. The security industry will be going through dramatic changes from the government to vendors with the effects reaching everyone, even in their homes.
Zscaler’s 2013 predictions include:
Privatization of Malware Goes National
White collar researchers are parting with vulnerability information, selling it to a middle man and not asking questions about where it may end up. This trend will continue, but expect new participants to enter the fray, namely nation states. Governments, the US government included, have shown increasing comfort leveraging online attacks to achieve specific goals. Nation states, desperate for top talent to stay ahead, will not confine themselves to only home grown talent, but will become increasingly aggressive bidders on the open market. "Unlike physical weapons whose R&D costs limit their production to governments willing to spend billions, 0-day vulnerability information thrives in the private market," said Michael Sutton, vice president of Zscaler's security research team.
Microsoft Starts Paying for Vulnerability Discoveries
Vendors such as Mozilla and Google made it an acceptable practice to reward security researchers for revealing vulnerabilities. Microsoft has continued to make slow but steady steps forward such as the creation of Bluehat, security conference sponsorships, and through financial rewards for the capture of malware authors. As Microsoft leverages security as a differentiator for Windows 8/RT against mobile competitors, expect this to be the year they pay for vulnerability discoveries .
Shift to Detection from Prevention
Zscaler sees enterprises place much emphasis on prevention without the ability to detect threats. Compromised PCs and data breaches have become a daily fact of life. We will see enterprises will begin shifting their security budget toward detective controls.
Hacking the Internet of Things Goes Mainstream
Connected hardware devices ensure that our digital lifestyle is always online and always accessible. From thermostats to garage door openers, traditional electronics are now Internet connected. The hardware industry has not kept up with these changing security trends. We expect this wave of connected hardware to preset a vast amount of low hanging fruit for security researchers and attackers alike.