2017 is soooo last year. 2018 is the year of YOU! You are critical to the success of your enterprise security.
Let’s review some highlights from 2017. Ransomware was still a major security threat and there was a lot of low grumbling remaining from the 2016 Mirai botnet1, but things took off with the IoT Troop/Reaper botnet2. The Internet of Things (IoT) exploded in 2017 and really started to hit its stride. No longer is the Roomba® a handy housekeeping hack, but it’s a sophisticated smart tool that can be preyed upon if left vulnerable on your wireless network. IoT has made all our lives better at home and at work, but it’s also created an opportunity for exposure. This has amplified the chant from healthcare, manufacturing, finance and even consumers that devices must be secured, preferably before they ship, but certainly when networked.
Here we are in 2018, one month into the new year, and we’ve already seen the announcement that the new Spectre3 attack can infiltrate Intel® CPUs manufactured since 1995! Keeping it at bay requires software patches to almost all of these Intel CPUs and is an unfathomable security flaw that impacts virtually everyone4. This is already driving real change—not only patches, but an overhaul in how security and monitoring software interact with operating systems.
This brings me back to my original statement, “2017 is soooo last year!” There are newer, bigger security threats on the horizon, and you are key to securing your enterprise.
For example, do you know how many of your Windows® devices have installed the latest emergency patches from Microsoft®? (Refer to KB4056982, KB4056890, KB4056898, KB4056897 for more details in Microsoft Security Advisory: ADV18002.) Are your Apple® products updated, including Safari, iOS, Mac OS, and tvOS? Are your Linux® systems updated? You must assume that they all require updates. What about your Android® devices and your IoT devices? A better question is, do you know what devices are connected to your enterprise or your home?
Just think, if a Spectre attack can take control of your enterprise system remotely through a browser (as detailed by Apple vulnerability) we can only imagine the impact on identity theft. For all we know, next they’ll be taking the hard-earned money right out of your cryptocurrency wallet. Oh wait5…
The threats are endless and CYBERSECURITY MATTERS—especially as, year after year, we require so much more of it. Corporations, as consumers of information technology and drivers of the new frontier in IoT, need to take ownership of securing their networks. As we forge further into 2018, let’s remember our mantra: Security Starts with You.