SC Magazine Autralia summarized Ed Skoudis’s and Joannes Ullrich’s RSA presentation on the six most dangerous IT Security threats of 2011 and what to expect in the year ahead. They are:
- DNS as command-and-control
- SSL slapped down
- Mobile malware as a network infection vector
- Hacktivism is back
- SCADA at home
- Cloud Security
Additional trends:
- IPv6
- Oldies
- Social Networking
- Malware
- DNSSEC
The reference to the Malware item above is that blacklisting is a losing proposition and organizations need to move to whitelisting. IMHO, this especially true for establishing positive network control at the application level.
