News

Industries

Companies

Jobs

Events

People

Video

Audio

Galleries

My Biz

Submit content

My Account

Advertise with us

Significant trends in network security in 2016

Fortinet and its threat research division, FortiGuard Labs, have made their annual predictions of the most significant trends in malware and network security going into 2016.
Significant trends in network security in 2016
©Eugene Sergeev via 123RF

New Rules: The Evolving Threat Landscape in 2016 report is designed to reveal the new trends and strategies cyber criminals will employ in the year to come. Fortinet researched these predictions to arm their customers with the knowledge they need to maintain their advantage in the cyber security arms race and proactively change the way all businesses look at their security strategies going into the new year.

The top cyber security trends for 2016 include:

Increased M2M attacks

Several troublesome proofs of concept made headlines in 2015 demonstrating the vulnerability of IoT devices. In 2016 we expect to see further development of exploits and malware that target trusted communication protocols between these devices. FortiGuard researchers anticipate that IoT will become central to "land and expand" attacks in which hackers will take advantage of vulnerabilities in connected consumer devices to get a foothold within the corporate networks and hardware to which they connect.

Worms and viruses

While worms and viruses have been costly and damaging in the past, the potential for harm when they can propagate among millions or billions of devices from wearables to medical hardware is orders of magnitude greater. FortiGuard researchers and others have already demonstrated that it is possible to infect headless devices with small amounts of code that can propagate and persist. Worms and viruses that can propagate from device to device are definitely on the radar.

Attacks on cloud

The Venom vulnerability that surfaced this year gave a hint about the potential for malware to escape from a hypervisor and access the host operating system in a virtualised environment. Growing reliance on virtualisation and both private and hybrid clouds will make these kinds of attacks even more fruitful for cyber criminals. At the same time mobile devices running compromised apps can potentially provide a vector for remotely attacking public and private clouds and corporate networks to which they are connected.

New techniques

Rombertik garnered significant attention in 2015 as one of the first major pieces of 'blastware' in the wild. But while blastware is designed to destroy or disable a system when it is detected (and FortiGuard predicts the continued use of this type of malware), 'ghostware' is designed to erase the indicators of compromise that many security systems are designed to detect. Thus, it can be very difficult for organisations to track the extent of data loss associated with an attack.

Evading malware

Many organisations have turned to sandboxing to detect hidden or unknown malware by observing the behaviour of suspicious files at runtime. Two-faced malware, though, behaves normally while under inspection and then delivers a malicious payload once it has been passed by the sandbox. This can prove quite challenging to detect but can also interfere with threat intelligence mechanisms that rely on sandbox rating systems.

Each of these trends represents a significant and novel challenge for both organisations deploying security solutions and for vendors developing them.

Let's do Biz