Kevin Mitneck
Former FBI most-wanted hacker; team leader, the Global Ghost Team
"What has been clearly demonstrated over the last decade is technology is not keeping pace with hackers, and manipulation using social engineering is now the preferred method of crime. People are the weakest link and we must build the human firewall. Everyone must role-play - a proven technique used in other areas of business. Through the war-gaming strategy of 'red teaming', your organisation must engage third parties to mimic the real bad guys that are trying to penetrate your systems, your people. Only when challenged will you know if your security is effective. Installing something no longer means security."
James Saunders
Director, National Cybercrime unit at the UK National Crime Agency
"The fight against cybercrime will benefit from greater attention to cyberhygiene from individuals and businesses, but more of the fight will be taken 'upstream' to the sources of global cybercriminality. Digital capabilities will be more ingrained into all UK law-enforcement bodies, and there will be a larger international community of investigators with the skills to do the job."
Sebastien Marcel
Head of Biometrics, IDIAP Research Institute, Switzerland
"Biometrics are becoming more prevalent for devices to recognise nomadic users, but there are legitimate concerns. It might be possible to forge a fake biometric [input] from a leaked template and to perform a presentation attack -- AKA spoofing. We'll see a lot more research on privacy-preserving mechanisms for presentation-attack detection -- AKA anti-spoofing."
Gadi Aviran
Founder and CEO, SENSECY
"Cybercrime has gone global -- the thief stealing from my computer probably does not live in my country, let alone my continent. In ten years' time, we will understand cybercriminals far better -- both their MOs and their psyche. Law-enforcement agencies will have to co-operate globally, and vendors and governments must come together and create higher standards for products and services."
Angela Sasse
Director, the Research Institute in Science of Cyber Security
"In ten years, we will have security that is largely invisible to legitimate users, and that delivers added value. Today, security gets in the way of people's activities, and requires too much time and attention. People are tired of mental gymnastics and being interrupted by warnings when they go online. Future services will deliver security and privacy as part of a great customer experience."
Colonel Artur Suzik
Director, NATO Cooperative Cyber Defence Centre of Excellence
"Success in fighting cybercrime will, in the long run, critically depend on international law-enforcement co-operation. Criminals act across borders and will happily continue exploiting the jurisdictional constraints of national law enforcement. Governments and international bodies will need to continue developing effective cross-jurisdictional collaboration mechanisms."
This article was originally published by WIRED UK
