Predictions, predictions...
Amid the torrent of forecasts for 2019, here are some key issues we think are worth your attention.
> 2018 saw two-factor authentication (2FA) being targeted successfully and a rise in such attacks is likely. 2FA should be used wherever possible, but precautions against phishing remain essential.
> We expect renewed public attention on GDPR as the first big fines are announced under the EU's data protection regulation. This is likely to increase the number of Subject Access Requests being submitted.
> Finding insecure Internet-connected devices is easy (see 'Routers' below). Even if their firmware can be updated, usually it isn't. That equation makes them an irresistible and growing target.
> More data will be leaked because of insecure cloud storage. A good way to begin the new year would be to audit all locations where data is stored. The maker of the Blur password manager probably wish they'd done this (see below).
> Supply chain risks will rise in importance as organisations appreciate the role of third parties in data breaches.
> Fileless malware was an increasing threat in 2018 and the trend will continue. These attacks defeat traditional signature-based security tools so behavioural-based solutions will rise in popularity.