TALKING BUSINESS
… IT’ S NOT JUST ABOUT EDUCATING THE END USER; GOVERNMENTS NEED TO ADOPT LEGISLATIVE FRAMEWORKS THAT PROMOTE CYBER SECURITY ISSUES RANGING FROM PROVIDING FORMAL EDUCATION ON SECURITY ISSUES, TO PROPERLY PROTECTING CRITICAL INFRASTRUCTURE
we analyse this paradox and the consequences it might have. Finally, among the various topics covered, we discuss the reality of mobile malware in the context of unstoppable technological developments, which imply new attack scenarios. The truth is that the rise of virtual reality technology raises new security risks that affect not only digital information, but also users’ physical wellbeing. While these applications collect and store increasingly sensitive data, mobile malware is constantly growing and becoming more complex, therefore reinforcing the importance of, and need for, safe development practices.
Trends 2017: Security held ransom, also details the factors that introduce difficulties to the implementation of internationally effective legislation on cyber security. Although significant regulations exist, state-level actors, companies and citizens around the world still face many challenges, as Miguel Mendoza analyses in his section.
As for the anti-malware industry itself, David Harley walks us through the current view that assumes a split between“ traditional” malware detection and“ next-generation” signature-less detection. Thankfully, he tears down the myths around the latter.
Vulnerabilities in systems and … in people? There is an element that cuts through all of these topics. It’ s a need that’ s bigger than ever and vital to users, companies and vendors in understanding current and future risks, and furthermore, draws attention to the fact that in the era of connectivity, a significant change of mindset is needed.
The common denominator across all sections of the report is the human factor. Consequently, we need to keep working until people stop being the weakest link. If we don’ t, we will remain at a stage in which we have users using latest generation technology, but with security concepts from decades before.
As we conclude in the report, it’ s not just about educating the end user; governments need to adopt legislative frameworks that promote cyber security issues ranging from providing formal education on security issues, to properly protecting critical infrastructure. In this sense, it is also imperative that businesses commit to carrying out proper information security management and that developers do not prioritise usability over the security of their products.
30 INTELLIGENTCIO www. intelligentcio. com