Ross Cooper de la Verizon Bussines Security a scris citeva predictii pentru 2010, pe care as vrea sa le comentez putin.

1. Services will protect themselves: Facebook, Google, Twitter, TinyURL and the like will gain more control over criminal content… Intr-un an in  care „iesirea din criza” este cuvantul la ordine, nu vad companiile investind semnificativ in domeniul de securitate. Doar sa ne amintim ca Microsoft a ratat o versiune de Windows cu Vista,  facind un produs sigur dar greu acceptat de utilizatori. Isi permit aceste companii investitii in securitate sau se vor concentra pe consolidarea cistigurilor? Raspunsul cred ca il stim cu totii.

2. Malware will not evolve. No significant changes in malware will occur in 2010. Consider ca 2010 va fi anul in care criptografia isi va face prezenta simtita foarte pregnant in domeniul de concepere  si distributie a malware-ulurilor. Anul de raspandire a virusilor criptografici.

3. Consumers are getting smarter: The number of older “newbies” being introduced to the Internet’s crime is going to be significantly less in 2010 than in the past.  Tehnologia este din ce in ce mai prezenta in viata noastra. Aflam despre patch-uri pentru Windows de la buletinele de stiri. Deci folosirea tehnologiei va fi mult mediatizata si atunci ca rezultat, nivelul cunostintelor de securitate IT va creste.

4. Windows 7 (not necessarily IE8) will prove to be more robust than expected, but ISV’s will have the light shone on them by MS as the attacks move more towards the applications (and, possibly, away from browser exploits.) ATL issues in ISV products will have a spotlight in 2010 (those that don’t use IE to do their interactions.). Observatiile de la primul punct cred ca sunt valabile si aici. Windows 7 va fi o solutie robusta, dar ISV (Independet Software Vendor) vor oferi intotdeauna o portita. Long life Adobe.

5. Serious finger-pointing and frustration over basic essential protocols (SMTP, DNS) will occur amongst “governments”, and non-technical organizations as spam and phishing prove even more difficult to thwart. Serious finger-pointing poate, dar nu vad adoptarea unor masuri coerente sau finantarea unor solutii de genul DNSSEC.

6. Breaches will increase, albeit possibly smaller in average number of records compromised. There will be more money transfers made via accounting staff compromised credentials in 2010 than past years. Companiile de procesare de carduri/bancile vor incerca sa evite orice fel de probleme de securitate si de expunere a datelor. Visa si Mastercard vor taxa scump pe cei care nu vor lua masuri de securizare.

7. Nothing of note happens to non-PCs (e.g. phones, PDAs, Macs, etc). Cred ca vom vedea aici primele atacuri in masa. PDA-urile sunt noile tinte, sunt device-urile care sint target-ate de noile platforme de networking.

8. CaaS works, not surprisingly for most of us. CaaS (Communications-as-a-Service) va deveni noua tinta. Aici se va concentra informatia si granitele vor fi din ce in ce mai greu de tras si prin urmare de aparat.

9. Virtualization does not come under real-world attack as a target, but the media will sensationalize at least one story where VM’s were involved (but the VM software had nothing to do with the issue.) Joanna will continue to ride her horse. Aici sunt de acord.

10. China will continue to be blamed for everything. Evident ca asa va fi, dar as reformula China and the Romanian Hacker will continue to be blamed for everything.

Have Fun in 2010.

Anunțuri