The Digital Trust Digest is a curated overview of the week’s top cybersecurity news. Here are four things you need to know this week.
Explosive IoT adoption drastically expands the enterprise attack surface
IoT devices may offer increased operational efficiency and impactful data-driven insights, but security in the IoT space lags behind innovation.
From smartwatches to thermostats, each individual IoT device presents attackers with a new potential entry point. Organizations must balance the advantages of connected devices with the risks of IT sprawl and limit the potential lateral movement of an attacker.
According to Zscaler, IoT attacks rose by 700% between 2019 and 2020. Don’t become a statistic. Head over to IoT For All for a deeper rundown.
Expect IoT governance to evolve alongside privacy regulations
The vast majority of IoT devices collect, store, and share the personal data of their users and environments. In high-governance industries like finance and healthcare, this presents a significant compliance risk.
Even for mainstream industries, user data privacy is a sensitive issue. As enterprises embrace the wider use of IoT devices, governance around privacy must have a place at the forefront of these plans. Privacy protection for IoT users should be a high priority for enterprises at the leadership level.
TechTarget has the details about how new legislation and new tech will play into the privacy conversation.
Defense contract awarded to a firm specializing in homomorphic encryption
It’s getting harder and harder to keep classified info, well, classified. As the post-quantum arms race continues to escalate, the government will likely adopt homomorphic encryption as a new tool to protect sensitive data.
Traditional encryption methods focus on data in transit. Homomorphic encryption will be capable of protecting data while in use, and it will use more complex encryption keys than the ones widely used today.
The Defense Advanced Research Projects Agency recently announced a multimillion-dollar contract with New Jersey-based firm Duality Technologies, which specializes in homomorphic encryption. The Washington Examiner reports the full story.
Airline woes reveal widespread vulnerability
Last week, the Federal Aviation Administration suffered a system outage that disrupted thousands of flights across the U.S. This, in conjunction with Southwest Airlines’ holiday meltdown, shows just how fragile the aviation infrastructure can be.
Though neither of these incidents has been attributed to an attack, they have involved factors that make airlines particularly appealing to cyber threats. In fact, malicious attacks against airlines and airports are already quite frequent.
With the threat of quantum computing attacks on the horizon, is the aviation world a disaster waiting to happen? The latest from Forbes shows just how bad the damage could be.