The attached deck "Cybersecurity 2020: Your Biggest Threats and How You Can Prevent Them" talks about strategic and tactical attacks to watch out for in 2019 and the defensive strategies to deploy against these emerging threats.
4. 4
Conventional Attacks
2020 Prediction Conventional attacks will still make up the bulk of all threats
Conventional Attacks Still In Play
▪ Phishing, Malware, Ransomware remain effective
▪ New tech opening new attack channels
▪ Most detection tools outdated
78%
of 2019 cyber-espionage
were phishing attacks
$10b
in 2019 damages
from ransomware.
Conventional Attacks are Evolving
▪ More sophisticated variants emerging
▪ Unconventional targets being selected
▪ Attacks-as-a-Service increasing
5. 5
Cloud Infrastructure Attacks
2020 Prediction Most orgs will suffer a Cloud-based compromise this year.
Criminals are Targeting Cloud Vulnerabilities
▪ Cloud data remains a valuable target
▪ Online data privacy fines are increasing
▪ Orgs have an exploitable Cloud “learning
curve”
Orgs are Approaching Cloud Security Wrong
▪ On-prem security not effective for Cloud
▪ Cloud and on - prem have different structures
▪ New security approach needed for Cloud
43%
of orgs had Cloud
security incidents in
2019
Only 27%
of orgs use Cloud data
protection
6. 6
DevOps Attacks
2020 Prediction DevOps will become an increasingly common target.
DevOps: Multiple Attacks in 2019
▪ DevOps emerged as a target
▪ April 2019 - Docker Attack
▪ September - 2019 Avast Attack
DevOps Attacks Offer Leverage
▪ DevOps increasingly vulnerable
▪ Criminals leave backdoors in software
▪ One attack can impact millions
66%
of DevOps and security
teams have negative-to-
neutral relationship.
190,000
accounts compromised
via a single hacked
Docker Hub db.
7. 7
SaaS Attacks
2020 Prediction We will see our first major breach of a SaaS company.
SaaS Platforms: High-Profile Targets
▪ Store mass amounts of valuable data
▪ Require perfect uptime and reliability
▪ Visible, competitive market
Multiple SaaS Attack Vectors
▪ Highly-vulnerable to DDoS attacks
▪ Valuable targets for ransomware
▪ Opportunities for credential stuffing
87%
increase in org spending
on SaaS licenses.
36%
of phishing attacks
target SaaS or webmail
services.
8. 8
Emerging Threats
2020 Prediction
The most cutting-edge orgs will be at the biggest risk from
emerging threats.
New Technology Always Means New Threats
▪ Orgs are adopting new, vulnerable tech
▪ Criminals are leveraging new capabilities
▪ The security landscape is changing faster
than ever
Most Dangerous Emerging Threats Include
▪ Deepfakes
▪ IoT Attacks
▪ Supply Chain Attacks
$3B
IoT security spend will
cross $3billion by 2021
38-43%
of orgs suffered a
supplier security event in
2019
10. 10
The average organization requires over 100 days to find
and remediate a threat that has already breached their
systems
MDR offers a comprehensive solution to combat current
threats before it can cause catastrophic damages
2020 will see MDR become a necessity for every effective
cyber defense plan
Fully managed multi-mode threat detection, auto
containment, and incident response from a recognized
MDR provider
of organizations will be using MDR services, up
from less than 5% today. By 2024, 40% of
midsize enterprises will use MDR as their only
managed security service.”
“ By 2024,
25%
- Gartner. MDR Services Market Guide, 2020
Strategy 1:
AI-Driven MDR
11. 11
Strategy 2:
Advanced
Cloud Security
Monitoring security events, configuration changes, and
remediation are key tenets of cloud security
Keeping pace with sophisticated cloud breaches requires
AI-driven use cases
Multi cloud security monitoring will emerge as a key
requirement
Cloud security requires visibility across the cloud stack:
Compute, Storage, Containers, and Serverless
The Cloud security market is projected to expand to $460 million
by the end of 2020.
12. 12
Strategy 3:
AI-Driven
Vulnerability
Management &
Response
AI-Driven Vulnerability Management and Response (VMR)
goes beyond traditional VM programs to offer advanced
triaging and swift remediation.
AI-Driven VMR fills a crucial gap in current VM programs by
focusing on auto remediation of vulnerabilities and exploits
seen in the wild.
In 2020, organizations will utilize Artificial Intelligence
driven VM programs that also provide remediation
With AI-Driven VMR, organizations will fortify on-prem and
next-generation systems, and be much more resilient to
cyber attacks
According to Ponemon, 39% of orgs realize that the breaches
they suffered were due to known, preventable vulnerabilities.
13. 13
Contact us today
to combat tomorrow’s
sophisticated cyber
threats
Visit www.paladion.net
Email sales@paladion.net