Mobile

12/10/2013
04:47 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Trend Micro Predicts Cybersecurity Concerns For 2014 And Beyond

Mobile threats, targeted attacks, and vulnerabilities for the Internet of Everything highlighted

DALLAS, Dec. 9, 2013 – Trend Micro Incorporated (TYO: 4704; TSE: 4704) today released its annual security predictions report, "Blurring Boundaries: Trend Micro Security Predictions for 2014 and Beyond." The outlook cites that one major data breach will occur every month next year, and advanced mobile banking and targeted attacks will accelerate. Critical infrastructure threats, as well as emerging security challenges from the Internet of Everything (IoE) and Deep Web, are also highlighted. The report parallels Trend Micro's long-term projections in the recently released nine-part online video drama entitled, "2020: The Series," depicting a technology saturated society and the corresponding cyber threats.

"We see the sophistication of threats expanding at a rapid pace, which will impact individuals, businesses and governments alike," said Raimund Genes, CTO, Trend Micro. "From mobile banking vulnerabilities and targeted attacks, to growing privacy concerns and the potential of a major breach each month, 2014 promises to be a prolific year for cybercrime. We will also see the evolution of the IoE, which serves as a prelude to the surge in technological advancements as the decade closes."

Prominent predications for 2014 include:

Malicious and high-risk Android apps will reach 3 million

Banking via mobile devices will be compromised by an uptick of Man-in-the-Middle attacks, making two-step verification inadequate

Cybercriminals will increasingly use targeted-attack-type methodologies like open source research and highly customized spear phishing

Targeted attackers will increasingly use advanced threats such as clickjacking and watering hole attacks and target mobile devices

Lack of support for popular software such as Java 6 and Windows XP will expose millions of PCs to attack

Public trust, compromised by revelations of state-sponsored monitoring, will result in a variety of efforts to restore privacy

The Deep Web will continue to vex law enforcement's ability to address widespread cybercrime

The report also focuses on the rise of the IoE, which promises to be the proverbial game changer in personal technology in the years to come. With augmented reality delivered through wearable technology including watches and eyewear, the possibility of large-scale cybercrime from identity theft by 2020 is a very real possibility as the technology continues to proliferate from 2014 and beyond.

This reality is brought to life in Trend Micro's "2020: The Series," which is based on Project 2020, a white paper developed in collaboration with the International Cyber Security Protection Alliance (ICSPA). The unique series presents a future consumed by technology and seeks to inspire stakeholders to take action now against looming cyber vulnerabilities.

View "Blurring Boundaries: Trend Micro Security Predictions for 2104 and Beyond" at:

http://about-threats.trendmicro.com/us/security-predictions/2014/blurring-boundaries/

Watch "2020: The Series" in its entirety to learn what the future holds for technology at: 2020.trendmicro.com.

Supporting assets:

TrendLabs Security Intelligence Blog entry:

http://blog.trendmicro.com/trendlabs-security-intelligence/2014-predictions-blurring-boundaries

Simply Security Blog:

http://blog.trendmicro.com/blurring-boundaries-trend-micro-security-predictions-for-2014-and-beyond

About Trend Micro

Trend Micro Incorporated a global leader in security software, rated number one in server security (IDC, 2013), strives to make the world safe for exchanging digital information. Built on 25 years of experience, our solutions for consumers, businesses and governments provide layered data security to protect information on mobile devices, endpoints, gateways, servers and the cloud. Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem. All of our solutions are powered by cloud-based global threat intelligence, the Trend Micro&trade Smart Protection Network&trade infrastructure, and are supported by over 1,200 threat experts around the globe. For more information, visit TrendMicro.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-13435
PUBLISHED: 2018-08-16
** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The Passcode feature allows authentication bypass via runtime manipulation that forces a certain method to disable passcode authentication. NOTE: the vendor indicates that this is not an attack of interest w...
CVE-2018-13446
PUBLISHED: 2018-08-16
** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.1 for Android. The Passcode feature allows authentication bypass via runtime manipulation that forces a certain method's return value to true. In other words, an attacker could authenticate with an arbitrary passcode. ...
CVE-2018-14567
PUBLISHED: 2018-08-16
libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251.
CVE-2018-15122
PUBLISHED: 2018-08-16
An issue found in Progress Telerik JustAssembly through 2018.1.323.2 and JustDecompile through 2018.2.605.0 makes it possible to execute code by decompiling a compiled .NET object (such as DLL or EXE) with an embedded resource file by clicking on the resource.
CVE-2018-11509
PUBLISHED: 2018-08-16
ASUSTOR ADM 3.1.0.RFQ3 uses the same default root:admin username and password as it does for the NAS itself for applications that are installed from the online repository. This may allow an attacker to login and upload a webshell.