Stolen, Spoofed Certificates
One difficulty that the article pointed out is stolen or faked certificates. When you log into a website, your bank for example, the traffic is encrypted with a “certificate”. This proves that the site can be trusted. The faking and stealing of these certificates was a prevalent strategy utilized by cyber-criminals in 2011. This can let them have access to confidential information.
A Common Security Mechanism in Trouble?
Sites use certificates as a security measure more than any other means. If these are no longer perceived as trustworthy it may affect everyone, from the consumer, to the large company that is responsible for protecting your data.
Technology Review also pointed to online attacks known as “hacktivism” as a key security challenge for this year. Organizations such as Anonymous and LulzSec crack passwords and break into company sites. Frequently, these groups do so to demonstrate that companies are woefully unprepared to manage hackers. Sometimes, they target companies or organizations that they believe are responsible for wrongdoing. Regardless of the motivation, anticipate these groups to continue their so-called hacktivism in 2012 and beyond.
In 2012 another security risk is the rising popularity of home automation. People connect alarm systems, lights, even locks, to the web to automate their homes. If reliable companies are not used or if hackers get into these systems think of the damage that can be done.