5 Cyber Security Predictions For 2019

Cyber Security Predictions For 2019

We all aware about that Cyber Security is big challenge to all .In 2018 also most of Cyber Crimes and Cyber Attacks take place and create lots of Risks and damage to organizations. 

In terms of annual storylines in cybersecurity, 2018 didn’t disappoint. Industry uproar ensued after Spectre and Meltdown exposed computer chip vulnerabilities, and VPNFilter malware exposed new dangers to routers and network-attached storage products. Once again, the biggest, most trusted brands suffered costly and damaging data breaches­. Victims included Amazon and Facebook, Macy’s and Kmart, Adidas and Under Armour, Delta Airlines and Cathay Pacific — and that’s just a start. And concerns around the cyber tampering of our elections, including allegations of foreign hackingof the Democratic National Committee, along with new international security standards that put a greater onus on global corporations (such as the General Data Protection Regulation), made 2018 a busy year for cybersecurity followers.

Now that the New Year is upon us, it’s natural to wonder what to expect in the 12 months ahead. In truth, there will be dozens of plots and subplots, some based on continuing themes, others introducing new ones altogether. Here, however, are four key predictions that I think will have a profound influence on the cybersecurity industry for 2019.

1.Regulation and public sentiment on privacy  will drive data protection policies

Last year, CSO predicted that the European Union (EU) would quickly punish a few companies in violation of its General Data Protection Regulation (GDPR) to make an example of them. That didn’t happen. The threat of penalties over compromised personal information will still have a huge effect on security operations in 2019 nonetheless.

Those penalties are likely coming. “The EU will break some fingers with the GDPR,” says CSO Senior Writer J.M. Porup. “Enforcement is going to be harsh beginning in the first half of 2019. Companies engaged in surveillance capitalism, like Google and Facebook, are in for a rough few years.” Hundreds of complaints have been filed, including some against Google and Facebook.

In 2019, we’ll see how the EU will react to those complaints. That will provide some much-needed clarity regarding the risk that GDPR and other privacy regulations present. If the GDPR doesn’t react, then that’s telling, too. It sends the message not to take the regulation seriously.

Rising concern over how companies use and protect personal information will encourage many Americans to hold those companies more accountable. “The reaction by consumers to constant security breaches and other unethical information disclosures (e.g., Facebook) leads U.S. consumers to demand more default privacy and control over their own information,” says CSO contributor Roger Grimes.

Grimes expects to see an effort to enact privacy laws similar to GDPR nationally in 2019. The California Consumer Privacy Act has already passed into law and goes into effect in 2020.  On November 1, Sen. Ron Wyden introduced a bill titled the Consumer Data Protection Act (CDPA), which has stiff penalties, including jail time, for privacy violations.

Given the federal government’s current state of effectiveness, that bill is unlikely to gain much traction. In the meantime, most organizations that handle consumer data in the U.S. will look to other regulations such as the GDPR and CCPA for guidance. “California and New York will continue to drive the conversation around consumer data privacy, while Washington drags its heels,” says Porup.

“Companies will … start seriously thinking about a privacy-first approach to data, especially as these laws expand to more jurisdictions, and to narrowly targeted verticals, such as banking, medical and payments,” says CSO contributor Maria Korolov. “That will require some major changes in how companies collect, use, and share data.” 

2. Ransomware tapers off, but still wreaks havoc

Ransomware will taper off as criminals shift to other ways to generate revenue. “While ransomware will still be a problem, it will be more of a focused, targeted attack,” says Steve Ragan, CSO’s senior staff writer. He cites the declining number of ransomware attacks. According to Kaspersky, the number of users who encountered ransomware in 2017 and 2018 fell by nearly 30 percent over the 2016 to 2017 time period.

‘The randoms went down, and the targeted ones were big news,” says Ragan. For example, the ransomware group responsible for SamSam is now focusing primarily on a relatively few U.S. companies, mainly municipal and healthcare organizations, according to Symantec.

The reason for the decline is that criminals are finding cryptojacking and other schemes are more effective money-makers. The number and quality of ready-made cryptomining tools means that criminals don’t need to be technically skilled. That’s reflected in the 44.5 percent rise in number of users that have experienced a cryptomining attack in the past year, according to Kaspersky. “Hidden coinminers continue to proliferate in 2019, and malware authors are taking advantage of them to disrupt your business,” says CSO contributor David Strom. “Cryptomining will continue to be a threat as long as attackers can make quick cash from the infections.”

Top 5 Website Vulnerability Scanning Tools [New Listing 2018] -CyberLuC

3. Nations At Cyberwar

Perhaps it will begin with a skirmish rather than a major battle, but I predict that low-level cyberwarfare among the world’s most powerful players — the United States, China and Russia — will increasingly destabilize international relations and threaten to upset the world order. This goes behind voting machines, registered voter databases and other election-related technology. Remember when a Russian cyberattack cut off electricity to a quarter-million Ukrainians days before Christmas in 2015? I believe similar scenarios will occur with increasing frequency.

With digital technology wherever we look and the explosion of the internet of things (IoT), the possibilities of cyber-mayhem are limitless. Think of nuclear reactors, chemical plants and satellites in space — all are potentially vulnerable targets. State-sponsored attacks can come in all sizes, and many will likely be launched as warning shots. But in times of cyberwar, you don’t need to drop bombs to wipe out a country’s infrastructure. All it takes is a few expert hackers.

4. Cybersecurity Raises Its Profile In The Boardroom

In 2019, cybersecurity concerns will be a major topic in the boardroom and executive offices of every significant enterprise. Major data breaches suffered by leading firms across industries has struck fear into CEOs and other officers and board members that their company could be next. What’s more, partners, shareholders and customers now seek to hold corporate leaders ultimately responsible, and that sentiment is only heightened internally within organizations.

As the damages from breaches continue to become more evident — a lower bottom line, a plunging stock price, a tainted brand — responsibility for cybersecurity failures will go beyond the CIO’s and CISO’s oversight of the IT department and directly to the CEO’s office door. Many board discussions will revolve around mitigating cyber risks and how they can improve their organization’s security posture.

5. Microsoft will move Advanced Threat Protection (ATP) to all its mainstream products

Windows 10 Advanced Threat Protection (ATP) is a service that allows anyone with an E5 license to see under the hood and review what an attacker did to a system. It relies on telemetry that is enabled when the computer is linked to the ATP service.

The software giant will move to fortify its continuing efforts to build a security-focused brand image by making ATP standard with all Windows versions. “This will be a key selling point in choosing Windows products over IBM's Red Hat in the coming year,” says CSO contributor and Windows expert Susan Bradley.