1. Ransomware will be the most dangerous threat to organizations worldwide – Research from Symantec shows that Ransomware attacks worldwide increased by 36 percent in 2017 — with more than 100 new malware families introduced by hackers. More interestingly, though, is that people, especially Americans, are willing to pay. 64 percent of Americans are willing to pay a ransom after becoming victims of ransomware attacks, compared to 34 percent of people globall.

    2. Cyber-Crime-As-A-Service – Bad actors will expand Toolkits and services and will continue their ongoing development and become increasingly more sophisticated. The complex hierarchies, partnerships, and collaborations that mimic large private sector organizations will facilitate their diversification into new markets and the commoditization of their activities at a global level. Some organizations will have roots in existing criminal structures, while others will emerge focused purely on cybercrime. Organizations will struggle to keep pace with this increased sophistication and the impact will extend worldwide, with cryptoware, in particular, becoming the leading malware of choice for its threat and impact value. The resulting cyber incidents in the coming year will be more persistent and damaging than organizations have experienced previously, leading to business disruption and loss of trust in existing security controls.

    3. IoT a prime target of hackers – Companies will continue to adopt IoT devices with enthusiasm, not realizing that these devices are often full of security holes and therefore offer many opportunities for attackers. Additionally, there will be an increasing lack of transparency in the rapidly-evolving IoT ecosystem, with vague terms and conditions that allow organizations to use personal data in ways customers did not intend. It will be problematic for organizations to know what information is leaving their networks or what data is being secretly captured and transmitted by devices such as smartphones and smart TVs. When breaches occur, or transparency violations are revealed, organizations will be held liable by regulators and customers for inadequate data protection.

    4. The rise of mobile threats – Mobile devices will account for 73% of all internet consumption in 2018.  Hackers are creating more malware and finding creative ways to push it past normal security protocols. In many cases, the malware spreads through compromised apps published on the official Google Play Store.
    5. AI in cyber defense – Artificial intelligence promises miracles for solutions in the IT security industry; many security firms have implemented machine-learning systems to detect cyber threats and to assess computer systems automatically. Endpoint protection via AI is a great example of how AV is evolving and will continue to improve monitoring processes and threat detection.

      Cyber Security Assessment

Sources:

1. https://www.forbes.com/sites/jasonbloomberg/2017/12/28/using-bitcoin-or-other-cryptocurrency-to-commit-crimes-law-enforcement-is-onto-you/#70bc0e753bdc

2. http://resources.infosecinstitute.com/2018-cyber-security-predictions/#gref