2020年计算机网络王道_2020年8种最大的网络安全威胁

2020年计算机网络王道

Cybersecurity has continued to be a major issue throughout 2019 and as organisations begin to rely even more on IT, it remains a serious concern. While most companies are by now aware of how important cybersecurity is, many have yet to implement the necessary measures needed to adequately protect them. In this post, we’ll look at what security threats 2020 is likely to put in their way.

在整个2019年，网络安全一直是一个主要问题，随着组织开始越来越依赖IT，这仍然是一个严重的问题。 尽管大多数公司现在已经意识到网络安全的重要性，但许多公司仍未采取必要的措施来充分保护它们。 在本文中，我们将探讨2020年可能遇到的安全威胁。

1. 缺乏网络安全教育 (1. Lack of cybersecurity education)

Perhaps the biggest cyber threat to any business is the lack of knowledge and understanding within a company about cybersecurity. Today, the digital revolution is affecting the working practices of employees throughout companies big and small. With more and more employees using connected technologies as part of their everyday jobs, it is more important than ever to ensure all staff are aware of what cybersecurity risks they face and how they can work in a way that will enhance security.

对任何企业而言，最大的网络威胁可能是公司内部对网络安全的知识和了解不足。 如今，数字革命正在影响着大小公司中员工的工作习惯。 随着越来越多的员工在日常工作中使用互联技术，比以往任何时候都重要的是确保所有员工都知道他们面临的网络安全风险以及如何以增强安全性的方式开展工作。

In 2020, expect to see more organisations putting cybersecurity strategies into place that include ongoing training for staff on the latest technologies and threats and, importantly, letting them know how to work responsibly and respond to incidents.

到2020年，期望看到更多组织将网络安全策略付诸实施，其中包括对员工进行最新技术和威胁方面的持续培训，重要的是，让他们知道如何负责任地工作和应对事件。

2. 数据泄露的威胁 (2. The threat of data breaches )

The enormous value of personal data to the criminal underworld means that data is a principal target for hackers. As a result, the threat of a data breach will continue to be one of the biggest issues that businesses will face in the coming years. This means companies will need to ensure personal data is secure end to end, from the moment it is sent to them to its safe disposal. The use of SSL certificates, encrypted data storage, logical access, password management and the rapid patching and updating of web applications is vital in this area.

个人数据对黑社会的巨大价值意味着数据是黑客的主要攻击目标。 结果，数据泄露的威胁将继续是企业在未来几年中将面临的最大问题之一。 这意味着公司将需要确保端到端的个人数据安全，从发送到个人数据到安全处理。 SSL证书，加密数据存储，逻辑访问，密码管理以及Web应用程序的快速修补和更新在此领域至关重要。

For those who succumb to a data breach, tough fines, reputational damage and even lawsuits await.

对于那些屈服于数据泄露的人来说，严厉的罚款，声誉受损甚至诉讼都在等待着。

3. 技能短缺 (3. Skills shortages)

The complex nature of cybersecurity means that increasing numbers of organisations are employing the services of highly-skilled, security experts. Unfortunately, as these professionals are in short supply, there is a considerable skills gap in many companies just at the time when the need is the greatest.

网络安全的复杂性意味着越来越多的组织正在使用技术娴熟的安全专家提供的服务。 不幸的是，由于这些专业人员短缺，许多公司在需求最大时就存在相当大的技能缺口。

In response, many companies are now implementing the use of intelligent, automated security tools that use advanced technologies to scan and block attempted intrusions, infections or other forms of attack like DDoS. These services can often be delivered by your service provider.

作为响应，许多公司现在正在实现使用智能，自动化安全工具的使用，这些工​​具使用先进的技术来扫描和阻止企图入侵，感染或其他形式的攻击，例如DDoS。 这些服务通常可以由您的服务提供商提供。

4. 漏云 (4. Leaky clouds)

The majority of enterprises use the cloud for at least part of their IT solution and it is increasingly becoming popular as the place to store data and run operational processes. However, its popularity has not been kept a secret from cybercriminals and the number of cloud-based threats has continued to rise.

大多数企业至少将云用于其IT解决方案的一部分，并且作为存储数据和运行操作流程的场所，云正变得越来越流行。 但是，它的受欢迎程度并未被网络犯罪分子保密，并且基于云的威胁的数量持续增加。

In 2020, companies will need to maintain the security of critical data and make sure they have real-time threat intelligence in place, to minimise the risk of data breaches or critical operations being taken offline.

2020年，公司将需要维护关键数据的安全性，并确保拥有实时威胁情报，以最大程度地降低数据泄露或关键操作下线的风险。

5. 移动设备风险 (5. Mobile device risk  )

For many employees, the smartphone is now an essential work tool used not only to access the company system but to store important data. This puts organisations at risk from poorly secured connections, mobile malware and device theft. It is critical, therefore, that all mobile devices that can be used to access the organisation’s systems are secured. One solution is to ensure access is carried out via a secure web app.

对于许多员工而言，智能手机现在已成为必不可少的工作工具，不仅用于访问公司系统，还用于存储重要数据。 这使组织面临安全连接不良，移动恶意软件和设备盗窃的风险。 因此，至关重要的是，必须确保所有可用于访问组织系统的移动设备的安全。 一种解决方案是确保通过安全的Web应用程序进行访问。

6. 物联网漏洞 (6. IoT vulnerability )

Mobiles aren’t the only remote devices that are vulnerable to attack; perhaps even more at risk are the IoT devices which have proliferated in use over the last few years and on which many organisations increasingly rely. They present a plethora of potential vulnerabilities that organisations need to protect themselves from, such as insecure wi-fi connections, hard-coded credentials, unverified firmware and unencrypted data. In addition, a compromised router or network attached storage server gives an attacker access to data and can serve as a platform to launch more attacks. In 2020, organisations which use the IoT will need to look carefully at how to ensure these vulnerabilities are protected against.

移动设备并不是唯一容易受到攻击的远程设备。 物联网设备可能会面临更大的风险，在过去几年中，物联网设备的使用激增，许多组织也越来越依赖该设备。 它们提出了组织需要保护自己的大量潜在漏洞，例如不安全的wi-fi连接，硬编码的凭据，未验证的固件和未加密的数据。 此外，受损的路由器或网络连接的存储服务器会给攻击者提供访问数据的权限，并且可以用作发起更多攻击的平台。 在2020年，使用IoT的组织将需要仔细研究如何确保防止这些漏洞。

7. 流氓国家 (7. Rogue states)

It is not just cybercriminals that are out to steal data and cause chaos, unfortunately, some governments are at it too – and these rogue states will have more advanced technologies, IT expertise and financial backing than the average hacker.

不幸的是，不仅仅是网络犯罪分子会窃取数据并造成混乱，不幸的是，一些政府也这样做。这些流氓国家将比普通黑客拥有更多先进的技术，IT专业知识和财务支持。

While cybercriminals are usually financially motivated, state-sponsored attacks can have a number of purposes, such as causing major security breaches to undermine companies, taking critical services offline using a DDoS attack, industrial or political espionage, spreading fake news to influence elections and even taking those who oppose them offline.  

尽管网络犯罪分子通常是出于经济动机，但由国家发起的攻击可能有多种目的，例如造成重大安全漏洞破坏公司，使用DDoS攻击使关键服务脱机，工业或政治间谍活动，传播假新闻以影响选举，甚至使反对他们的人下线。

State-sponsored cybercrime is the new cold war and while major companies, public utilities, defence and political organisations are particularly at risk, all organisations need to be aware of their risk of attack and how to protect themselves. 

国家支持的网络犯罪是新的冷战，而大型公司，公用事业，国防和政治组织尤其处于危险之中，所有组织都需要意识到其遭受攻击的风险以及如何保护自己。

8. 智能恶意软件 (8. Intelligent malware)

The war between cybercriminals and cybersecurity teams isn’t being carried out simply by the human brain anymore. Both camps are now using artificial intelligence (AI) and machine learning as tools in their armoury. Unfortunately, this means that cybercriminals are now able to create extremely sophisticated malware and methods of attack and at a pace that cybersecurity companies are finding challenging to deal with. It may only be a matter of time before one of these stealthy attacks strikes with devastating effect.

网络犯罪分子与网络安全团队之间的战争不再仅仅由人脑来进行。 这两个阵营现在都将人工智能(AI)和机器学习作为工具。 不幸的是，这意味着网络犯罪分子现在能够创建极其复杂的恶意软件和攻击方法，并且其步伐是网络安全公司发现应对挑战的速度。 这些隐秘攻击之一具有毁灭性打击可能只是时间问题。

结论 (Conclusion)

In 2020, cybersecurity will continue to challenge organisations big and small. We’ll see persistent risks like data breaches remaining high on everyone’s agenda, while the development of new technologies brings new threats, such as intelligent malware and IoT vulnerabilities. As companies expand their use of IT, we’ll also see a need to protect the cloud and mobile devices while ensuring that there are highly skilled IT experts driving security strategies and educating everyone else how to stay secure.

2020年，网络安全将继续挑战各种规模的组织。 我们将看到诸如数据泄露之类的持续风险仍然是每个人的首要任务，而新技术的发展带来了新的威胁，例如智能恶意软件和IoT漏洞。 随着公司扩大对IT的使用，我们还需要保护云和移动设备，同时确保有高技能的IT专家来制定安全策略并教育其他人如何保持安全。

If you need highly secure hosting for your organisation, check out our range of hosting solutions.

如果您需要组织的高度安全的托管服务，请查看我们的托管解决方案范围。

翻译自: https://www.eukhost.com/blog/webhosting/8-biggest-cybersecurity-threats-for-2020/

2020年计算机网络王道