Brendan Ziolo gives security predictions for 2012 |
 As mobile malware continues to grow, Android malware will become more sophisticated, more dangerous and will begin to make money for the cybercrimnal as part of the underground economy. Rootkit technology will be used to conceal the malware and command and control (C&C) protocols will become more robust. This mobile malware will evolve so it can disable security features on the device and protect itself from removal. We’ll quite likely see the first Android malware that can exploit vulnerabilities in a network app to allow phone-to-phone infections via the Internet connection on Android devices in 2012. We’ll also see stealthier botnets next year too. This year, we saw the takedown of the largest botnet, DNSChanger, to date, but this was only the tip of the iceberg. In 2012, we will see more super-bots that spread silently using existing infection vectors, bury themselves using stealth rootkit techniques and make every effort to remain undetected. Read Interview>>
|
Social innovation, crowdsourcing, idea management, game mechanics, and collaboration |
 Companies which operate in highly commoditized markets, consumer packaged goods, pharma, and banking, for example, have begun to demonstrate they can really pull away from their competitors using social innovation tools. They’re the ones who understood first that crowds can help them in a way that their old-paradigm research and development functions couldn’t. Our observation is that most other industries have begun to follow their lead now that results are coming in. Not only does social innovation encourage engagement at scale it also gives the employees a sense of purpose which increases productivity. Read Interview>>
|
Zero-Day Attacks, Cybercrime and Advanced Persistent Threats |
 Signature and statistical-based security technologies, operating on assumptions of either a need for attack foreknowledge or using a narrow scope of analysis always will be chasing the attacker. Even so-called “malware protection systems” simply employ basic techniques to look for certain behavioral attributes in a sandbox and create IPS signatures, but they too miss many types of attacks. Security must be data-centric to be effective both today and in the next three years. All network-based security will operate from the perspective of full access to all network traffic and the ability to perform various types of real-time and specialized analysis. Read Interview>>
|
SaaS ERP and Premise ERP and staying at the forefront of technology and innovation |
 As companies continue to embrace cloud applications and cloud deployment strategies, the need to port their ERP systems from an on premise to an on demand environment quickly and without risk, will become increasingly important and a competitive differentiator in choosing an ERP provider. QAD is pleased to be the only company, we believe, to deliver both deployment independence and deployment portability. QAD Enterprise Applications’ scalability allows companies with as few as five users and as many as thousands to use the same applications and levels the playing field for local companies to operate the same as global organizations. Read Interview>>
|
Security threats, insider threats and data breaches, zero trust access controls, and the WikiLeaks incident |
 Insider threats are on the rise. Insider breaches are a result of an individual – usually a current or former employee, vendor or contractor – with improper access controls. The scary truth is many government agencies and organizations haven’t invested in adequate technology to manage insider threats. As a result, they’re falling victim to unnecessary breaches. WikiLeaks is a perfect example of a breach that could have been prevented with proper access controls. Access controls are critical to fighting insider threats. Least privilege and roll-based access controls, logging and policy enforcement technology all help detect malicious insider activity before it’s too late. Read Interview>>
|
Layered security and rise of “Social Authentication” and “Social Protection” |
 From providing certificates that put the trusted padlock on websites to patented technologies that lets internet users verify legitimate web content from faked content, Comodo empowers businesses and consumers to authenticate each other and protect their digital identities. Comodo provides a growing range of Identity and Trust Assurance encryption, verification and authentication services and security applications for business users, as well as for consumers. Comdo's solutions work across all platforms, including Linux. In addition, Comodo offers the only free online website identity assurance database (idAuthority) - maintained by a worldwide dedicated team of engineers at Comodo's Digital Trust Lab. Users can research any online business through Comodo. Read Interview>>
|
|
| Best Products and Services - Readers Trust |
|
|
|
