Skip to navigation
   
Davey Winder's Blog
RSS

Major security survey reveals the blindingly obvious

By Davey Winder in Editorial

Posted in Business, Blog, Security on July 29, 2009 at 3:04 pm

Permalink | Author Profile

The Information Security Forum has published it’s Threat Horizon 2011 list, detailing the threats which the ISF reckons will present the most challenges for information security professionals during the coming two years. Future gazing within the world of ITSec is never an easy task, there are simply too many variables and the truth of the matter is nobody knows what the next big service to take off will be and how the bad guys will end up exploiting it. Which is why, for one thing, nobody was predicting hashtag spam and Twitter based third part phishing attacks a couple of years back. It is also probably why, right at the top of the Threat Horizon list in a stonking example of predicting the future by playing it as safe as possible, is the generic threat of, wait for it, criminal attacks.

The full list looks like this:

    Criminal attacks
    Weaknesses in infrastructure
    Tougher statutory environment
    Pressures on offshoring / outsourcing
    Eroding network boundaries
    Mobile malware
    Vulnerabilities of Web 2.0
    Incidents of espionage
    Insecure user-driven development
    Changing cultures

Apparently drawing upon the ‘knowledge and practical experiences of ISF Members, comprising some 300 of the world’s largest business and public sector organisations including many of the Fortune 100 corporations’ the Threat Horizon 2011 report is based upon research carried out within a ‘PLEST’ framework that takes into account Political, Legal, Economic, Socio-cultural and Technology factors.

“Many of the threats in 2011 will be familiar ones that are evolving and will present new and sophisticated attacks to compliment tried and tested techniques,” says Jason Creasey, head of research at the ISF. “It is also clear that the financial crisis is accelerating these changes, fuelled by increasing staff turnover and dissatisfaction along with the increased involvement of organised criminal groups that see online crime as a lucrative and low risk alternative to other nefarious activities.”

I don’t have access to those 300 big business brains, but I carried out my own research within a STBO framework that takes into account Stating The Blindingly Obvious and concluded that the security threats most likely to be causing us problems over the next couple of years, in no particular order as my crystal ball is on the blink, are: spam, malware, phishing, hacking, application vulnerabilities, OS vulnerabilities, malicious code and user stupidity.

12345
Rated: 100% (1 votes)
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Comment by ed hardy shoes - October 9, 2009 on 8:02 am

nice post

Comment by Prom Gowns - November 4, 2009 on 10:27 am

Hello, I want to thank you for this nice blog.

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

hypervisor console iPhone Project data recession Texas Instruments science lawsuit spending Opinion IP Mobile Phones XP teleworking prison family service InfoSec Rant surveys Big Brother Top 10 virtual machine fun Licensing Game stupid Microchip Parenting man-in-the-middle law meme China Backlash privacy millions Bill Gates iPhone 3G Conference AMD storage survey world of warcraft productivity Notebooks Russia Mobile Phone fraud remote working biometrics Programming OCR security Acer Psychic digitise news Patents work RAM Education avatar migration policy virtual world Top 500 Google Earth Zango ISP Internet GMail e-commerce YouTube Business Software Supercomputer ROFL Paris Hilton IBM Meh Developers copyright Facebook virus outsourcing ecommerce Olympics Mars gaming shopping report McKinnon e Madness Web Development payments admin open source Retail rootkits NASA Adobe staffing museum Jobs Sony Pirate Death Nexus code christmas workplace computing SMS Marketing Obama Europe IT tech Twitter books Banned search betting Press Flash Review Space NBC social networking services second life banks trust memory Silverlight Research Palm Pre terrorism library spam desktop Intel standards Digital Footprint linkedin exploit economy Blog Geeks patch management Lotus Gateway phishing Eee theft Windows credit crunch size crime OS fake global Recall Mafia Michael Jackson malware Military chips sick Battery Guardian email ISPA HP acquisition black hat Data Centre Spotify Eee PC Steve Ballmer Windows Phone 7 Series Advertising FBI President Trousers Employment adware information USA Trojan computer Vista Children Psion Deal economics Noro Enterprise holidays Addiction iPod games students Cisco MSN Study Voice Finjan Johnny Depp Performance computing Apps scan archiving Windows 7 graphics monetisation Health smartphone documentation Gadget hacker EU Energy remote compromise Android broadband virtualisation Dell hardware Application RATM Linux patent green School banking symantec Election ASUS nightmare dumb mobile IDC Networks debian carbon copy iPhone 3GS transactional security management PS3 Ballmer worker Google App Store Yahoo network Kindle hubdub Funny Browser BSI Browsers Steve Jobs snooping Nintendo Kill Switch hacking home tax Government Apple technology Hack environment App Palm earth hour Experiment Internet Explorer wifi CAPTCHA Media MiniBook stupidity Netbook statistics encryption politics web The Federation help fool Porn printing Jesus Phone campaign ID Theft Sex MessageLabs mail Kaspersky MSNBC Tesco Microsoft innovation VM Gartner development worm Texting scam Video credit card fraud hoax Rumour Amazon VeriSign Harry Potter BOFH xmas Beta Architecture payment server data protection VPN HPC Firefox SSL disclosure poll Army eBook universe GSM Blogging botnet money Digg Music web 2.0 DNS cloud scareware office
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement