dcsimg

Top Threat Predictions for 2013 Revealed

  • Top Threat Predictions for 2013 Revealed

    Top Threat Predictions for 2013 Revealed-

    The password-only security model is dead. Easily downloadable tools today can crack a simple four- or five-character password in only a few minutes. Using new cloud-based password cracking tools, attackers can attempt 300 million passwords in only 20 minutes at a cost of less than $20 USD. Criminals can now easily compromise even a strong alpha-numeric password with special characters during a typical lunch hour. Stored credentials encrypted in databases (often breached through Web portals and SQL injection), along with wireless security (WPA2) will be popular cracking targets using such cloud services.

    Fortinet predicts that next year we'll see an increase in businesses implementing some form of two-factor authentication for their employees and customers. This will consist of a Web-based login that will require a user password along with a secondary password that will either arrive through a user's mobile device or a standalone security token. While it's true that we've seen the botnet Zitmo recently crack two-factor authentication on Android devices and RSA's SecurID security token (hacked in 2011), this type of one-two punch is still the most effective method for securing online activities.

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8

Top Threat Predictions for 2013 Revealed

  • 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8
  • Top Threat Predictions for 2013 Revealed-3

    The password-only security model is dead. Easily downloadable tools today can crack a simple four- or five-character password in only a few minutes. Using new cloud-based password cracking tools, attackers can attempt 300 million passwords in only 20 minutes at a cost of less than $20 USD. Criminals can now easily compromise even a strong alpha-numeric password with special characters during a typical lunch hour. Stored credentials encrypted in databases (often breached through Web portals and SQL injection), along with wireless security (WPA2) will be popular cracking targets using such cloud services.

    Fortinet predicts that next year we'll see an increase in businesses implementing some form of two-factor authentication for their employees and customers. This will consist of a Web-based login that will require a user password along with a secondary password that will either arrive through a user's mobile device or a standalone security token. While it's true that we've seen the botnet Zitmo recently crack two-factor authentication on Android devices and RSA's SecurID security token (hacked in 2011), this type of one-two punch is still the most effective method for securing online activities.

Fortinet, a leader in high-performance network security, recently revealed FortiGuard Labs' 2013 threat predictions, highlighting six threats to watch out for next year. Expected trends include mobile advanced persistent threats, IPv6 safe havens and exploits through machine-to-machine communications.