Trend 4 SECURE US TO SECURE ME #TECHVISION2019 In October 2018, JPMorgan Chase, Mastercard, This cooperative effort is just one example of how companies are evolving to Fidelity, and other global payment firms become more resilient against the new reality of cyberthreats. Today’s ecosystem-dependent business world amplifies exponentially the impact of participated in the first joint cybersecurity cyberattacks: incidents that cripple one enterprise can grow rapidly and exercise meant to test operational preparedness expand to threaten a company’s ecosystem, industry, and beyond. Interconnectedness increases companies’ exposure to risks, and leading during simultaneous attacks of payment businesses are recognizing that while they already collaborate to deliver best- 1 in-class products, services, and experiences, it is high time security joins that systems� Through the process, the companies effort as well. found they have very different approaches on how to respond to threats, when to engage law The level of risk has been rising for some time. Enterprises have been building vast interconnected ecosystems, but only 29 percent of business and IT enforcement, and even hold varying definitions executives report that they know that their ecosystem partners are working of what constitutes a breach� Critically, though, diligently, like they are, to be compliant and resilient with regard to security. Here, “weakest link” takes on a new importance: liability. Now these linkages the exercise allowed the firms to uncover ways are being exploited by attackers—both criminal and state actors alike—to they could better coordinate responses and catastrophic effect. dramatically improved their ability to respond to In connected ecosystems, such attacks can reach unprecedented scale. The threats� WannaCry cryptoworm did not stop at ransoming the data of individual businesses, but exploited an operating system vulnerability to spread across the globe, infecting 300,000 computers spanning 150 countries in a matter of days.2,3,4 The Mirai malware was used to hijack more than 100,000 Internet of Things (IoT) devices and launch an attack on a domain registration services provider in 2016; since then, even though its original developers were caught, 5 new variants have emerged. One such variant, Satori, spread to 100,000 6 home routers in 12 hours. 60 TECHNOLOGY VISION 2019 THE POST-DIGITAL ERA IS UPON US