Today, the trend towards Bring Your Own Device (BYOD) is increasingly impacting on IT departments; this, however, brings complexity when it comes to security and IT Support. The challenge that South African organisations are facing with BYOD is introducing and managing a solid security strategy.
Security risks rise in businesses are also on the rise because many employees adopt "my way" work lifestyles in which their devices, work and online behaviour mix with their personal lives virtually anywhere - in the office, at home and everywhere in-between.
According to the Cisco Connected World Technology Report, based on a survey commissioned by Cisco of 1800 Information Technology professionals across 18 countries*:
Fewer than one-third (21%) of South African respondents use company-issued devices for other activities even though they are supposed to be for work only.Android malware
Android malware encounters grew by 2577% in 2012; however mobile malware represents only 0.5% of total web malware encounters.
Android malware entered the mainstream consciousness in 2012 with explosive growth and the first documented botnet. Malware, short for malicious (or malevolent) software, is software used or programmed by attackers to disrupt computer operation, gather sensitive information, or gain access to private computer systems. It can appear in the form of code, scripts, active content, and other software. Malware includes computer viruses, ransomware, worms, Trojan Horses, rootkits, keyloggers, dialers, spyware, adware, malicious BHOs, rogue security software and other malicious programs; the majority of active malware threats are usually worms or Trojans rather than viruses.
Spam trends
Spam volume dropped by 18% from 2012 to 2011, with spammers working "banker's hours" for a 25% drop in spam over the weekend.
In 2012, the majority of spam was sent during the working week - Tuesday was the heaviest spam day of the week. The top spoofed brands involve prescription drugs and luxury watches like Rolex and Omega. (ASR)
Spammers maximise the ROI of their efforts, targeting real-world events with specific and short-lived campaigns.
January to March: Windows software, which coincided with the release of the Microsoft Windows 8 consumer preview.
January to March and September to December: Professional networks like LinkedIn, correlated with the desire for a career change during the beginning and end of the year.
September to November: Cellular providers around the release of the Apple iPhone 5.
The Internet of Everything and security's future
Looking ahead, the Internet of Everything represents the largest online trend today. As more people, things and devices connect to the Internet, more data from more places will be introduced across corporate and service provider networks, which opens up new vulnerabilities and a need for more sophisticated security approaches.
Exponentially more machine-to-machine (M2M) connections are coming online each day, leading to a proliferation of end points that extend far beyond mobile devices, laptops and desktops to an "any-to-any" scenario, in which any device can connect to any cloud to any application across any network.
These new connections generate data in motion that needs to be protected in real time as it is evaluated for actionable insights through the network and before it's compromised and causes irreparable damages.
For network security professionals, the focus becomes content-neutral plumbing - shifting from the endpoint and the periphery to the network.
Den Sullivan, head of architectures and enterprise of Cisco Emerging Theatre, said: "Each year, the security threats and defences change as a result of one another. The Cisco Annual Security Report is our expert research, highlighting global threat patterns and trends. Today, we live a blended work-personal life. With more and more devices, the number of end points for network security proliferates quickly. When 'everything' is connected, in fact before this, when the acceleration starts, IT organisations in South Africa will need to be ready for security scalability.There are many technologies available to secure today's networks, and now is the time for South African CIOs to make sure their security is robust as more and more devices connect to their networks. It is important to consider security from the ground up and build it into the network's intelligence, using the most suitable security standards and protocols."
The study
The Cisco 2013 Annual Security Report highlights the most important security trends of the year and provides tips and guidance to keep enterprise technology environments more secure.
(*)The Cisco Connected World Technology Report magnifies the threats outlined in the security report. The third in an annual series, it was commissioned by Cisco and conducted by InsightExpress, an independent market research firm based in the US. The global study consists of two surveys: one focused on college students and workers aged 18 to 30, and the second focused on IT professionals. Each survey includes 100 respondents from each of 18 countries, resulting in a pool of 3600 respondents. The 18 countries include: the US, Canada, Mexico, Brazil, Argentina, the UK, France, Germany, The Netherlands, Russia, Poland, Turkey, South Africa, India, China, Japan, South Korea, and Australia.