More on 2008 Predictions

In Predictions for 2008 in included the following:

3) Expect increased awareness of external threats and less emphasis on insider threats. Maybe this is just wishful thinking, but the recent attention on botnets, malware professionalization, organized criminal cyber enterprises, and the like seems to be helping direct some attention away from inside threats. This may be premature for 2008, but I expect to see more coverage of outsiders again.

Today I saw the SANS Top Ten Cyber Security Menaces for 2008. (I thought using the term "menace" neatly sidesteps trying to classify these items using traditional terms, since the list mixes threats, attacks, tools, and so on.) Here is the "consensus list," according to 12 "cyber security veterans," in ranked order:

  1. Increasingly Sophisticated Web Site Attacks That Exploit Browser Vulnerabilities - Especially On Trusted Web Sites

  2. Increasing Sophistication And Effectiveness In Botnets

  3. Cyber Espionage Efforts By Well Resourced Organizations Looking To Extract Large Amounts Of Data - Particularly Using Targeted Phishing

  4. Mobile Phone Threats, Especially Against iPhones And Android-Based Phones; Plus VOIP

  5. Insider Attacks

  6. Advanced Identity Theft from Persistent Bots

  7. Increasingly Malicious Spyware

  8. Web Application Security Exploits

  9. Increasingly Sophisticated Social Engineering Including Blending Phishing with VOIP and Event Phishing

  10. Supply Chain Attacks Infecting Consumer Devices (USB Thumb Drives, GPS Systems, Photo Frames, etc.) Distributed by Trusted Organizations

I've written before that I am not a big fan of expert opinions, but this is a generic list that does not try to "measure risk" for a particular organization. I still prefer alternatives, but I find it fascinating that the big bad insider is listed as number 5. Every other item is arguable an outsider problem, as my prediction stated. The first three are absolutely outsider-based. I take all of this as a good sign that the tide is turning (again).


Anonymous said…
One of the rising threats is also:

"The US Central Intelligence Agency (CIA) has revealed that hackers have launched online attacks that disrupted power equipment and cut power to several cities outside of the US. Speaking at a conference of security professionals last week, CIA analyst Tom Donahue disclosed the recently declassified attacks while offering few specifics on what actually went wrong..."

I find this info. here:,6.0.html



Popular posts from this blog

Zeek in Action Videos

MITRE ATT&CK Tactics Are Not Tactics

New Book! The Best of TaoSecurity Blog, Volume 4