Database security software firm Sentrigo, has released the top data security trends to watch for in 2010.
Sentrigo says in 2010 it will be easier to perform attacks, which will become more sophisticated and completely automated. This will lead to an increase of random attacks that no longer target a specific company, but instead look for specific vulnerabilities.
Cloud Computing makes it harder to protect data since the data frequently moves and can be replicated without notification, and the applications that access this data are also highly changeable. This will prevent many organizations from moving to a cloud model for applications with compliance requirements where auditable proof is required.
Generally, companies have viewed attacks as either coming from outside the network perimeter or from internal users abusing privileges. However, the line between internal and external is blurring as a result of several new attack vectors:
- Organized crime targeting specific companies by inserting “sleepers” to infiltrate the organization as employees or contractors, solely for the purpose of gaining access to sensitive data;
- New types of malware, easily embedded in relatively innocuous looking sites, that take control of internal machines and attack autonomously from within;
- As the ramifications of a depressed economy continue to result in increased and longer periods of unemployment, the use of financial means to leverage insiders to assist outsiders via bribes or extortion will become more common.
Solutions that protect data, regardless of the source of the attack, will therefore be an essential component of an organizations’ security strategy.