This time of the year typically two things happen: I am asked several times to either have a presentation or write an article about “Security in 2016”. The second thing is that everybody who writes a blog or otherwise thinks that they have to say something look into the crystal ball and writes an article about it.
Typically I try to avoid the first piece and get vocal about how I see the future â€“ at least in such articles. As I am thinking about the development of the threat landscape is obvious but there is no need to write such articles and presentations at the beginning of the year. Additionally, it would be extremely interesting to check predictions against the reality and look how accurate they were.
However, when I stumble across such articles I scan them and read the headlines. Well, there has been one, which makes two statements, which are probably obvious but I â€“ personally â€“ never made these statements as direct as in 5 Cyber Security Predictions for 2016:
- BoT â€“ Botnet of Things: I wrote about the challenges I see with the Internet of Things and that it scares the hell out of me. The way I typically looked at it was, that we need to treat them as a normal part of our network and make sure we keep good hygiene up on them as well (which will be a challenge by itself). But that they might â€“ or better will â€“ be used to serve as a node in a botnet is obvious and even scarier and was not yet in my focus. They will get infected as they are unpatched and connected to the internet. How do we get rid of them afterwards? No clue at all. How do we protect these devices? We do not known eitherâ€¦
- Cyber-Attack on Major Infrastructure: It is surprising to me, that it did not happen yet. I am not aware of any confirmed attack on the critical infrastructure, taking it really out. It will happen. To me this is totally clear. Is it 2016? I do not know. But I guess it is rather sooner than later.
We will for sure have an interesting year ahead of us. If we would be able to transform security and security organization into a service rather than a nuisance, we might have different predictions in a few years.
All the best!