Cybersecurity 2020: Your Biggest Threats and How You Can Prevent Them
- 1. 1 CYBERSECURITY 2020 www.paladion.net Your Biggest Threats and How You Can Prevent Them
- 2. 2 Enterprise Security for 2020 Key Cyber Strategies to deploy in 2020 Advanced Cloud Security AI-Driven Vulnerability Management & Response AI-Driven MDR Key threats to tackle: DevOps Attacks Cloud Infrastructure Attacks Conventional Attacks Emerging Threats SaaS Attacks
- 4. 4 Conventional Attacks 2020 Prediction Conventional attacks will still make up the bulk of all threats Conventional Attacks Still In Play ▪ Phishing, Malware, Ransomware remain effective ▪ New tech opening new attack channels ▪ Most detection tools outdated 78% of 2019 cyber-espionage were phishing attacks $10b in 2019 damages from ransomware. Conventional Attacks are Evolving ▪ More sophisticated variants emerging ▪ Unconventional targets being selected ▪ Attacks-as-a-Service increasing
- 5. 5 Cloud Infrastructure Attacks 2020 Prediction Most orgs will suffer a Cloud-based compromise this year. Criminals are Targeting Cloud Vulnerabilities ▪ Cloud data remains a valuable target ▪ Online data privacy fines are increasing ▪ Orgs have an exploitable Cloud “learning curve” Orgs are Approaching Cloud Security Wrong ▪ On-prem security not effective for Cloud ▪ Cloud and on - prem have different structures ▪ New security approach needed for Cloud 43% of orgs had Cloud security incidents in 2019 Only 27% of orgs use Cloud data protection
- 6. 6 DevOps Attacks 2020 Prediction DevOps will become an increasingly common target. DevOps: Multiple Attacks in 2019 ▪ DevOps emerged as a target ▪ April 2019 - Docker Attack ▪ September - 2019 Avast Attack DevOps Attacks Offer Leverage ▪ DevOps increasingly vulnerable ▪ Criminals leave backdoors in software ▪ One attack can impact millions 66% of DevOps and security teams have negative-to- neutral relationship. 190,000 accounts compromised via a single hacked Docker Hub db.
- 7. 7 SaaS Attacks 2020 Prediction We will see our first major breach of a SaaS company. SaaS Platforms: High-Profile Targets ▪ Store mass amounts of valuable data ▪ Require perfect uptime and reliability ▪ Visible, competitive market Multiple SaaS Attack Vectors ▪ Highly-vulnerable to DDoS attacks ▪ Valuable targets for ransomware ▪ Opportunities for credential stuffing 87% increase in org spending on SaaS licenses. 36% of phishing attacks target SaaS or webmail services.
- 8. 8 Emerging Threats 2020 Prediction The most cutting-edge orgs will be at the biggest risk from emerging threats. New Technology Always Means New Threats ▪ Orgs are adopting new, vulnerable tech ▪ Criminals are leveraging new capabilities ▪ The security landscape is changing faster than ever Most Dangerous Emerging Threats Include ▪ Deepfakes ▪ IoT Attacks ▪ Supply Chain Attacks $3B IoT security spend will cross $3billion by 2021 38-43% of orgs suffered a supplier security event in 2019
- 10. 10 The average organization requires over 100 days to find and remediate a threat that has already breached their systems MDR offers a comprehensive solution to combat current threats before it can cause catastrophic damages 2020 will see MDR become a necessity for every effective cyber defense plan Fully managed multi-mode threat detection, auto containment, and incident response from a recognized MDR provider of organizations will be using MDR services, up from less than 5% today. By 2024, 40% of midsize enterprises will use MDR as their only managed security service.” “ By 2024, 25% - Gartner. MDR Services Market Guide, 2020 Strategy 1: AI-Driven MDR
- 11. 11 Strategy 2: Advanced Cloud Security Monitoring security events, configuration changes, and remediation are key tenets of cloud security Keeping pace with sophisticated cloud breaches requires AI-driven use cases Multi cloud security monitoring will emerge as a key requirement Cloud security requires visibility across the cloud stack: Compute, Storage, Containers, and Serverless The Cloud security market is projected to expand to $460 million by the end of 2020.
- 12. 12 Strategy 3: AI-Driven Vulnerability Management & Response AI-Driven Vulnerability Management and Response (VMR) goes beyond traditional VM programs to offer advanced triaging and swift remediation. AI-Driven VMR fills a crucial gap in current VM programs by focusing on auto remediation of vulnerabilities and exploits seen in the wild. In 2020, organizations will utilize Artificial Intelligence driven VM programs that also provide remediation With AI-Driven VMR, organizations will fortify on-prem and next-generation systems, and be much more resilient to cyber attacks According to Ponemon, 39% of orgs realize that the breaches they suffered were due to known, preventable vulnerabilities.
- 13. 13 Contact us today to combat tomorrow’s sophisticated cyber threats Visit www.paladion.net Email [email protected]
- 14. 14 Thank You