United States
Anatomy of an ARP Poisoning Attack
WatchGuard Technologies, Inc.
WatchGuard Technologies, Inc.
ProductsPartnersSupportAbout UsHow to BuySearchLog In
 
 

Five Important Security Trends in 2009

The network security landscape is ever-changing, so the threat to business networks never looks the same year to year. As we move into 2009, WatchGuard anticipates a few shifts in how attackers try to intrude on networks, and some changes in the context in which these networks operate. Here are five of the changes we expect.

1. The Web Is the Battleground

It's important for every network administrator to understand that the main battleground will be on the web. Attackers follow people and people are on the web, with almost every Internet service "web-ized" – from phone calls on Vonage and Skype to entertainment and training on YouTube and Hulu.com. Attackers also know that many businesses have custom-written web applications that often include vulnerable code. Add to that the fact that the cost of attacking is next to nothing. In fact, it's so low that attackers reap immense margins even if their attacks only succeed one or two percent of the time.

Our recommendation is for IT administrators to redouble defenses on web servers and browsers.

Strong defenses are multi-layered and interlocking. Read how WatchGuard provides complete unified threat management for far-reaching protection. »

2. More Attacks via SSL / HTTPS

SSL Diagram
View diagram showing how WatchGuard SSL delivers access in a typical network environment

Every quality e-commerce site uses HTTPS to encrypt transactions. As a result, virtually all network administrators have to allow SSL to pass through their firewall, simply to support their organization's business mission. Because SSL is encrypted, administrators can't actually see what is being carried in that SSL traffic and attackers like to take advantage of the camouflage. Formerly, doing so was technically too difficult for most hackers, but now that organized crime is driving malware, malware is getting increasingly sophisticated.

We advise administrators to pay particular attention to endpoint integrity. Look for strong authentication capabilities in security products and robust SSL VPN capabilities.

WatchGuard SSL provides powerful endpoint and mid-point security, with flexible authentication options, so remote users can connect without compromising the network. »

3. Social Networking Threats Will Get Worse

Social Networking Icons

In a world where a "friend" is an online stranger you arbitrarily decide to trust, security is almost nonexistent. Security analysts have long known that social networking sites such as MySpace, Facebook, Friendster, and others are, from a security viewpoint, rough neighborhoods. In 2009, we expect to see more uses of social networking sites as attack platforms, and more tricks and scams pulled against the participants.

We recommend that network administrators block all access to these sites unless there is a compelling business reason to use them.

See how WebBlocker allows you to tightly control access to sites that host malicious or inappropriate content, including HTTP and HTTPS access. »

4. Botnets with More Stealth

Botnet technology actually made some of its most breathtaking innovations in 2007, and those innovations paid off in 2008 with noisy, high-traffic infiltrations that got lots of press. We believe that in 2009, bots will be just as big and more effective than ever, but botmasters will put increased emphasis on discreet segments operating quietly under the radar. They have figured out how to make bots extremely lucrative, and now their focus will shift to keeping bots active for longer and longer periods without being detected.

The best defense against botnets is a fully integrated, multi-layered, interlocking security solution for wide-ranging protection in all attack vectors.

Learn more about how botnets get inside networks and what you can do to keep your network safe. »

5. The Year of Cyber-Law

WatchGuard System Monitor
Get stunning, real-time reports on any WatchGuard device across your network

Questionable activities involving the Internet, from harassment to malicious impersonation, grew so rapidly these last few years that the law has not been able to keep up. These glaring holes are causing legislatures to scramble. Many laws will be proposed – and some of them perhaps not well considered.

We can't predict how many will pass, but whatever the results, we advise you to be on the alert for a wave of legislation in 2009. You and your customers will be obligated to comply, and in some cases, to prove your compliance.

Real-time logging and rich historical reporting are the keys to security auditing. Read how WatchGuard System Manager ensures you have the security activity information you need. »