Story image

McAfee CEO reveals his view of cybersecurity’s future at MPOWER

19 Oct 2017

McAfee partners, customers and executives converged on Las Vegas for McAfee MPOWER, which takes place at the ARIA convention centre over the next two days.

CEO Chris Young opened the conference by reiterating the community solidarity after the recent shootings; something that is also relevant for cybersecurity’s first responders.

Earlier this year McAfee separated from Intel and took its place as a standalone company, but did not completely sever its ties. In April, SVP of Intel Software and Services Group Doug Fisher expressed his support for McAfee as one of the biggest standalone companies in the cybersecurity industry.

At MPOWER today, Young let attendees decide what his talk was about – ‘read your mind’ or ‘read your future’ – through live, online voting from the audience, the future was the clear winner.

Security is truly dynamic and will continue to innovate

“We’re in one of the most dynamic industries you can possibly imagine because you can’t tell what’s going to happen from one day to the next,” Young says.

From the headlines comes a sense of desensitised attitudes towards security, but what happens when it hits organisations in real life, he asks.

“Predicting the future is sobering because there are thousands of organisations making their name in cybersecurity.”

He believes that endpoints will be more defined, automation and orchestration, analytics, threat intelligence management.

“Whether you have a SOC or not, you have security operations,” he adds.

Threat landscape – threats will never go away

Young says the past is the best predictor of the future.

“If you take one of the more common threat types today – ransomware, for example – it has actually been around for more than 30 years. We saw the first ransomware attacks in the late 80s. It wasn’t until that Bitcoin and other cryptocurrency took off that ransomware exploded.”

Today’s threats are derivatives of the past, evolving as adversaries change their motivations.

“We see attacks that go beyond malware itself. Some may call it fileless. We’re seeing benign scripting languages like PowerShell and JavaScript.”

He believes that attack vectors are blurred as multiple vectors converge and with many different attack patterns. What does this mean for those who are trying to prevent attacks?

Attack defence patterns will change and it will be difficult to categorise different types of attacks. It may not be a certain type of malware like a Trojan anymore – it could be a combination of many different attack types.

“There’s no silver bullet approach to dealing with any one style of attack. We must operate our defences as a whole that is greater than the sum of its parts.”

McAfee honed its portfolio to the ‘protect, adapt, detect’ approach in order to progress the threat defence lifecycle and make it a reality.

Security architecture needs to change

We need to increase bandwidth, control device security and basic security hygiene in order to move architecture from where it has been to where it is going, Young says.

As networks become more encrypted and opaque, network protection is increasingly difficult. Young sees the network as a transport layer; cloud and endpoints are where protection will be concentrated.

Resources are scarce – but change your perspective

People are the scarcest resource of all. This is driving the ‘skills shortage’, Young says. Architecture can only get organisations so far.

“We have to stop thinking about the cybersecurity skills shortage. Stop calling it a problem, call it a talent efficiency opportunity. We need to keep threat responders up to date on the threat landscape and keep the best people in your organisation. Those challenges put a different lens on the talent ‘problem’”.

People, processes and technology have to work together. Threat intelligence and operations, analytics and data science can facilitate human-machine teaming that, Young says, may completely change the security game.

McAfee MPOWER continues in Las Vegas on October 18 & October 19.

Norwegian aluminium manufacturer hit hard by LockerGoga ransomware attack
“IT systems in most business areas are impacted and Hydro is switching to manual operations as far as possible.”
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.
Mozilla launches Firefox Send, an encrypted file transfer service
Mozille Firefox has launched a free encrypted file transfer service that allows people to securely share files from any web browser – not just Firefox.
Ransomware’s decline equals cryptomining’s rise
ESET’s Security Days Conference recently took place to go over the current threat environment and what to look out for next.
IoT and DDoS attacks: A match made in heaven
A10 Network’s Adrian Taylor uses findings from a number of reports to illustrate his point that advances in technology are facilitating cybercrime.