Security 2007: Data theft still the one to watch

By Will Sturgeon, Special to ZDNet Asia
Friday, January 05, 2007 09:56 AM

Although data loss and theft dominated 2006's security headlines, it seems people have not learned their lessons and similar problems are likely to plague 2007.

Jay Heiser, research VP at Gartner, said "professional outsiders and motivated insiders" will pose the greatest threat to companies during 2007 with both intent on stealing valuable data.

"For approximately five years, we've been experiencing a steady increase in the professionalization of cybercrime," Heiser said, warning this trend is likely to continue to grow at a worrying rate as criminals within and outside the organization tear strips off many companies.

Heiser said: "For many organizations, the biggest risk will be insiders, not outsiders. The fact is that a significant amount of proprietary and regulated data walks out the door everyday."

External attackers are also showing far greater targeting of specific corporate data and problems such as spear-phishing--highly targeted e-mail frauds--are likely to increase, according to Mikko Hypponen, CTO of F-Secure.

Hypponen also expects Wi-Fi to become more of a target for attackers during 2007 as users become increasingly unplugged and wireless Internet access becomes ever more commonplace.

MessageLabs is also warning of other emerging technologies which are now very much ready for the prime time, singling out instant messaging and voice over IP (VoIP) as areas businesses need to be guarded about.

A MessageLabs advisory warned: "2007 will see VoIP become a prime target for phishing attacks whereby spoof phone calls are made to victims to extract their credit card details or steal their identity using third-party software."

The growth of 'Trojan supermarkets' is also predicted by MessageLabs--in the form of online stores offering everything the modern cyber criminal should ever require at just a few hundred dollars.

F-Secure is also predicting that 2007 will finally become the year when its repeated warnings about mobile phone malware begin to come good.

However, Gartner's Heiser remains unconvinced: "If I were a cybercriminal I would craft stealth software that stole stuff from computers with valuable information. I don't have enough imagination to think of anything highly valuable to steal from a mobile phone."

Will Sturgeon of Silicon.com reported from London.


WORTHWHILE?

0

0 votes
Blog

Talkback 2 comments

I agree with this article. In fact, I have been saying the same thing for years. One reason why is because my company owns the USA patent for taking ID off the internet permanently using a third party, wireless or hard wire device...

In January 2006, EDI Secure LLLP was purchased by IDPixie LLC which now owns the patent US 6,598,031 B1 granted on July 22, 2003 for APPARATUS AND METHOD FOR ROUTING ENCRYPTED TRANSACTION CARD IDENTIFYING DATA THROUGH A PUBLIC TELEPHONE NETWORK from inventor Jeffrey Ice. So to update EDI Secure LLLP's place in the marketplace, I add the above and below data. The below pledge is just what I have been doing with the profits I make.

My Pledge

I, Mr. Abdul Tawala Ibn Ali Alishtari, pledge my Foundation to halt child slavery activities including his Global Peace Film Festival, Inc., at www.peacefilmfest.org. I pledge moral support of legal, peaceful activities and my non-profit gifts offshore, onshore and globally, primarily with philantrophy from my personal investment to help halt all fraud, violence and scams hurting innocent children, women and families so help me God.
Posted by Abdul Tawala Alishtari on Thursday, January 18 2007 04:34 AM

Update to comment—

IDPixie LLC CEO, Mr. Abdul Tawala Ibn Ali Alishtari, has a solution the FFIEC needs for top level of US authentication under NIST standards. IDPixie LLC products take ID offline via wireless or using an offline device. IDPixie LLC's team developed the best way to get royalties while serving the 4 trillion swipes of credit or debit cards in the USA in 2007. This product takes private ID off the Internet by using single use credit card numbers plus external devices. Thus,
whomever else does this is in violation of patent.

IDPixie LLC owns EDI Secure LLLP that in 2003 was granted by the US a patent to keep private ID off the Internet. That means every time a debit or credit card is swiped, IDPixie LLC can legally charge 25 cents or more to protect US bank depositors regardless of who does it like major banks or card suppliers. This means 4 trillion US swipes a year equals $1 trillion USD per year income. All banks are taking ID off the Internet by FFIEC mandate in 2007. So even if they violate the patent, they must pay IDPixie LLC eventually in the billions of dollars USD.

Wall Street gurus went crazy over this. IDPixie LLC offers from investors for over $100 million USD to steal the company. Mr. Alishtari built bank security systems in six nations and the
Caribbean. His family advised 4 US Presidents. He fended off hostile investors and attempts to destroy value to trying to force a sale but
IDPixie LLC is intact.

If IDPixie LLC only gets 20% market collection and protection while owning US patent for the next 16 1/2 years, that generates $250 billion within 5 years gross per year. This is not an investment offer nor is it an offer for securities in areas or regions where such bans apply. It is only an update to company progress and protections since 2003.

This is IDPixie LLC's exclusive royalty is granted by the United States Patent Trademark Office, USPTO. The same technicians who built platforms to all US standards in 2000 build this platform. We utilize a closely held patent, granted to EDI Secure LLLP and now assigned to IDPixie LLC on the single use credit card number using an offline device. This patent was granted in July 22, 2003 to a predecessor company now owned by IDPixie LLC. That patent number is US 6,598.031 B1 to Mr. Jeffrey Ice, Inventor, for "APPARATUS AND METHOD FOR ROUTING ENCRYPTED TRANSACTION CARD IDENTIFYING DATA THROUGH A PUBLIC TELEPHONE NETWORK" i.e. Internet, phones or any electronic medium in the US of A.

My Pledge

I, Mr. Abdul Tawala Ibn Ali Alishtari, pledge my Foundation to halt child slavery activities including my charity, the Global Peace Film
Festival, Inc., at www.peacefilmfest.org. I pledge moral support of legal, peaceful activities and my non-profit gifts offshore, onshore and globally, primarily with philanthropy from my personal investment to help halt all fraud, violence and scams hurting innocent children, women and families so help me God.

Sincerely

Abdul Tawala Ibn Ali Alishtari
Posted by Abdul Tawala Alishtari on Tuesday, February 13 2007 03:04 PM


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

Hands-on programming: Extract plain text from documents with Syncfusion's components

Web Development

Justin James recently tried Syncfusion's Essential DocIO and Essential PDF to help him extract text from documents he downloaded from the Internet. Here's the code he wrote to get the plain text.


Read more »



Will technology divide us further?

Blog thumbnail

So I finally watched 2012 over the weekend, but the film left me feeling extremely agitated.

The possibility that the world may meet its watery end in three years didn't..... by Eileen Yu

Read more »

Tags

  1. attack
  2. authentication and encryption
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. symantec corp.
  19. viruses and worms
  20. web