There’s a behind-the-scenes alliance shielding us all from attack.
The cybersecurity industry is founded upon two types of competition: that between security vendors and cybercriminal adversaries, and that between the vendors themselves. What’s unusual about the situation is the way in which these two battlegrounds are connected; to prevent threat actors from infecting devices with malware and infiltrating business networks, cybersecurity vendors often have to establish a temporary truce. This balance between competition and collaboration is characterized by Jaya Baloo, CISO at antivirus company Avast, as a “friendly rivalry” that allows for all the largest market players to work hand-in-hand when it is important to do so. In conversation with TechRadar Pro at MWC 2022, Baloo spoke to the unconventional relationship between vendors in the sector. She insists the cybersecurity community is focused first and foremost on shielding people against attack, and that turning a profit is a secondary consideration. “I don’t really care which antivirus you’re using, so long as you’re using one,” she told us. “We’re still seeing so many people attacked on so many different devices, so our biggest concern is the people who are completely unprotected.” In the coming years, there is expected to be a blending together of various emerging technologies, which will create the foundation for new digital experiences for consumers and businesses. At MWC 2022, for example, there was plenty of talk about the interplay between 5G, AI, IoT and edge computing, a heady mixture that will enable use cases ranging from driverless cars to autonomous factories and more. However, this level of interaction between technologies is bound to create headaches for security professionals, noted Baloo, especially if new products and services are not developed with security front-of-mind. “There is an organic and orgasmic coming together of technologies right now,” she said. “But this will involve an increase in complexity, and complexity is the enemy of security.” In a scenario such as this, cybersecurity companies stand the best chance of shielding customers from attack if they share intelligence on new vectors, vulnerabilities and cybercriminal groups. Baloo highlighted the work of the Avast threat intelligence team, which publishes regular reports unpacking its discoveries. One recent report analyzed an increase in phishing attacks on Ukrainian companies in the leadup to the Russian invasion, for example, and the previous instalment covered the spike in DDoS hacktivism.
