San Jose, California, December 31, 2012
Zscaler, enabling business beyond the corporate network, today revealed its predictions for cyber security for 2013. The security industry will be going through dramatic changes from the government to vendors with the effects reaching everyone, even in their homes.
Zscaler’s 2013 predictions include:
White collar researchers are parting with vulnerability information, selling it to a middle man and not asking questions about where it may end up. This trend will continue, but expect new participants to enter the fray, namely nation states. Governments, the US government included, have shown increasing comfort leveraging online attacks to achieve specific goals. Nation states, desperate for top talent to stay ahead, will not confine themselves to only home grown talent, but will become increasingly aggressive bidders on the open market. "Unlike physical weapons whose R&D costs limit their production to governments willing to spend billions, 0-day vulnerability information thrives in the private market," said Michael Sutton, vice president of Zscaler's security research team.
Vendors such as Mozilla and Google made it an acceptable practice to reward security researchers for revealing vulnerabilities. Microsoft has continued to make slow but steady steps forward such as the creation of Bluehat, security conference sponsorships, and through financial rewards for the capture of malware authors. As Microsoft leverages security as a differentiator for Windows 8/RT against mobile competitors, expect this to be the year they pay for vulnerability discoveries .
Zscaler sees enterprises place much emphasis on prevention without the ability to detect threats. Compromised PCs and data breaches have become a daily fact of life. We will see enterprises will begin shifting their security budget toward detective controls.
Connected hardware devices ensure that our digital lifestyle is always online and always accessible. From thermostats to garage door openers, traditional electronics are now Internet connected. The hardware industry has not kept up with these changing security trends. We expect this wave of connected hardware to preset a vast amount of low hanging fruit for security researchers and attackers alike.
Zscaler (NASDAQ: ZS) enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud-first world. Its flagship services, Zscaler Internet Access™ and Zscaler Private Access™, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100 percent cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances are unable to match. Used in more than 185 countries, Zscaler operates a multi-tenant distributed cloud security platform, protecting thousands of customers from cyberattacks and data loss. Learn more at zscaler.com or follow us on Twitter @zscaler.
Zscaler™, Zscaler Internet Access™, and Zscaler Private Access™, ZIA™ and ZPA™ are either (i) registered trademarks or service marks or (ii) trademarks or service marks of Zscaler, Inc. in the United States and/or other countries. Any other trademarks are the properties of their respective owners.
Vice President, Global Communications