Security industry predict 2010 threats

Security threats in 2010, as predicted by security industry suppliers, analysts and experts.

Share

Social networks are going to become a prime target for cybercriminals in 2010, according to security predictions from annual security reports released this month by CA, Cisco Systems and Symantec.

A prediction list gathered from Independent Security Evaluators (ISE) and another list issued by Websense also anticipate increased threats on or towards major social networking sites.

Social networks was the only prediction highlighted by all five sources, but increased use of search engine optimisation (SEO) attacks, shorts URLs and malvertising, as well as an upcoming focus on smartphones and the Mac OS X platform, were also noted on multiple accounts.

Unique predictions include a potential cryptographic algorithm break, botnet turf wars, attacks on voting mechanisms for elections and reality shows, a major utility breach in the U.S. and hijacked computers held for ransom.

James Quinn, senior research analyst at Info-Tech Research Group, expects the push towards financial incentives will continue from the hacker's perspective. But the biggest trend that will continue from 2009 into 2010, according to Quinn, is the increasing speed at which threats will evolve.
"Security companies have gotten very, very good at responding to threats, and so as a result, bad guys have had to change the nature of the threat more rapidly .... I think what we are going to continue to see is an increase in that rate of evolution," he said.

Quinn also expects 2010 will be an interesting year in terms of reputation-based security software. While the model allows anti-malware vendors to work quickly by looking at where information is coming from, whether it works effectively still remains in question, he pointed out.

"They are moving towards this model out of an efficiency basis, simply because there is so much good code and there is so much bad code available that it becomes impossible to work on a signature basis with any kind of performance," he said.

The following is a compilation of potential upcoming threats to look out for in 2010, as predicted by the CA Global Advisory Team, Cisco, Symantec Hosted Services, Websense Security Labs and contributions from a group of security experts at Independent Security Evaluators.

Find your next job with computerworld UK jobs