Information security professionals should readjust some widely held views on how to combat cyber risks, according to a new Forrester Research report.
Security professionals emphasize strengthening the network perimeter, it states, but evolving threats—such as increasing misuse of employee passwords and targeted attacks—mean executives need to start buffering internal networks. In what Forrester calls its new “Zero Trust” security model, companies should also analyze employee access and internal network traffic.
The report bears out conclusions from several other studies. For example, password credential abuse was the most common cause of the 275 data breaches studied in Verizon Business’s latest annual Data Breach Report. It was involved in 46 percent of cases, up from 26 percent the year before.
(To continue reading "Zero Trust Model" from the Security Management's December issue, click here.)