The Dichotomy of a Hacker
Now more than ever, it is important to implement a robust, state of the art cyber security plan across the board. A forward thinking, security first attitude will prevent eventual loss when the attack does occur, leaving the thief with useless bits and bytes. Networks must now act as watch dog and enforcer around traffic that passes through users and data centers to the cloud.
With new data being created every second, advanced persistent threats (APTs) and new threat vectors have forced a new way of thinking around user, cloud, and datacenter security. New technologies are becoming available with better security intelligence, predictive and proactive capabilities, and cross-cloud API security integration. These new security platforms are designed to make your networks smarter, your datacenter more secure and your cloud more agile.
According to the 2015 Accenture Technology Vision Report, 81 percent of executives believe that industry boundaries will dramatically blur as platforms reshape these industries into interconnected ecosystems. This means it’s critical for organizations to align with new security trends, better network designs, and the cloud.
According to Cisco, the current market around cybercrime ranges between $450 billion to $1 trillion per year. Further estimates expect this number to increase. Hackers, cyber criminals, hacktivists, and nation states have learned to monetize their opportunities:
Social Security Number: $1 DDoS as a Service: About $7/hour Medical Records: >$50 Credit Card Data: $0.25 – $60 Bank Account Info: >$1,000 Mobile Malware: $150 Malware Development: $2,500 (comm malware) Spam: $50 for about 500k emails Custom Exploits: $100k – $300k Facebook Account: $1 for an account with at least 15 friends
New findings from Juniper Research suggests that the rapid digitization of consumers’ lives and enterprise records will increase the cost of data breaches to $2.1 trillion globally by 2019, almost four times the estimated cost of breaches today. The average cost of a data breach in 2020 will exceed $150 million by 2020, as more business infrastructure gets connected.
Hackers are nimble, resourceful and becoming more organized. Our progressive digital age is creating new kinds of targets. This is where network, computer, and datacenter security intelligence come into play. Networks must now act as the watch dog and the enforcer around all traffic that pass through your datacenter. New kinds of intelligence policies will allow you to integrate security APIs with third-party systems, deploy network-wide sensors, create policy and contextual-based data sharing, and allow nextgeneration firewall technologies to help act as infrastructure enforcers. This creates an end-to-end embedded and dedicated securities architecture for the evolving threat matrix.
We are far beyond traditional router and switch capabilities. Network sensors, filters, port controls, and advanced policies are all enabling the modern network to be a lot more intelligent. Enterprise network systems allow you to not only segment traffic but also place security monitors on ports and connections spanning your entire ecosystem. If an exploit is detected, or anomalous traffic is found, you can blacklist the traffic, isolate it, and prevent it from doing damage within your environment.
From there, monitoring, auditing, and logging mechanisms give you new kinds of insights into who, or what, was actually trying to get into your environment. The new idea behind a smart and secure network is simple: Your network must now act as both a sensor and an enforcer. You can extend Next Generation Firewall (NGFW) security policies from the edge and into your network architecture. This goes beyond DLP, IPS, and IDS. You can have an application assigned to a specific port or traffic point within a network. From there, sensors can detect malformed packets, traffic spikes, or strange connection requests and enforce security policies to stop the potential attack.
Cloud security has come a really long way. For example, let’s assume that you have proprietary or compliance-bound workloads that you want to host in the cloud. You have very specific security requirements around encryption, security, and monitoring. What are your options? Because the hybrid cloud is becoming one of the most popular cloud platforms, new ways to secure migrant traffic have emerged. Advanced technologies can encrypt data in real-time prior to sending the information into a cloud environment and decrypt only when an authorized user retrieves the data from the cloud.
When it comes to security, compliance, and policy, encryption keys are stored locally and never leave the user’s site. Furthermore, those keys are never shared with the cloud provider. These kinds of solutions allow you to deploy applications into the cloud and completely control the traffic flow. Once inside the data center, a combination of NGFW systems, network intelligence, VM-level security, and monitoring can round off a powerful cloud-to-datacenter security architecture.*
The epidemic of breaches affects all sensitive data throughout the entire global digital economy. An aging architecture and antiquated thinking about data security has thwarted implementation of new, viable solutions to protect valuable data. Databases are no exception. Breaches are becoming ubiquitous and so are the variants related to the attacks. These incidents not only provide an overview of the attacks; how and why they happened, but a roadmap to absolute protection underscoring the need to act swiftly and humble the hacker when the next attack inevitably occurs.