Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

12/24/2009
12:59 PM
Fredric Paul
Fredric Paul
Commentary
50%
50%

5 Security Predictions For 2010

Varonis shares five security trends that will impact SMBs in the coming year.

Varonis shares five security trends that will impact SMBs in the coming year.Raphael Reich, senior director of marketing for data security vendor Varonis, says the issues listed below will have a big effect on companies of all sizes, but SMBs may be even more vulnerable to these trends because they have less time and money to spend on IT security.

Here are Reich's top 5 security trends:

1. Unstructured data continues to "dog" organizations that do not begin to get it under control. Unstructured data represents about 80% of business data, and grows at over 50% per year, with data being generated from many sources and devices. Also constantly changing are the needs users have to access this data. Without proper solutions in place, managing this data is labor intensive, and organizations that do not make it a priority to get better control of this data will forever be playing catch-up with it.

2) Protecting Personally Identifiable Information (PII) becomes a bigger priority for organizations. Information about customers is a tremendously valuable business resource, especially as businesses seek to build closer relationships with their customers. At the same time, individuals and governments want to protect the privacy and security of this information, as witnessed by the growing number of countries and US states that have PII legislation in place. With more and more PII being created, analyzed, and used, businesses will need to intensify their efforts to protect PII to ensure they are complying with laws and industry best practices.

3. US Healthcare changes drive increased security requirements for patient data. Electronic medical records and computerized physician order entry systems promise to help transform US health care. As healthcare organizations, hospitals, doctors, and others begin to use these systems, security of patient information will be critical to establish patient trust and rapid adoption.

4. Employees continue to abuse business data access. Unfortunately this is not a new story, but a continuing saga. Employees already have access to far more data that is needed to do their jobs. General curiosity coupled with anxiety about job stability in today's economy will tempt employees to abuse access privileges and take corporate data home or to their next employer, or potentially inflict damage before they leave the company.

5. Economic times continue to demand that IT purchases have positive impact on operational efficiency. Organizations continue to scrutinize new purchases to ensure that IT products demonstrate clear return on investment through reduction in capital expenditures and/or increased operational efficiency. Because ongoing operations represent a recurring cost, organizations will focus on how to reduce these costs to gain lower operating costs and greater efficiency now, and into the future.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/10/2020
Researcher Finds New Office Macro Attacks for MacOS
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/7/2020
Hacking It as a CISO: Advice for Security Leadership
Kelly Sheridan, Staff Editor, Dark Reading,  8/10/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-8720
PUBLISHED: 2020-08-13
Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable denial of service via local access.
CVE-2020-12300
PUBLISHED: 2020-08-13
Uninitialized pointer in BIOS firmware for Intel(R) Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-12301
PUBLISHED: 2020-08-13
Improper initialization in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-7307
PUBLISHED: 2020-08-13
Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the RiskDB username and password via unprotected log files containing plain text credentials.
CVE-2020-8679
PUBLISHED: 2020-08-13
Out-of-bounds write in Kernel Mode Driver for some Intel(R) Graphics Drivers before version 26.20.100.7755 may allow an authenticated user to potentially enable denial of service via local access.