Social Media Security Wave: Facebook’s Latest Partnership with Websense

Tags: security, facebook, websense

Facebook is making more of an effort to limit the social media maliciousness madness. To address this, Facebook and Websense teamed up recently to protect Facebook’s users from third-party malicious URLs spam. Websense is adding a layer of security to the social networking giant's existing protection measures in hopes of preventing users from clicking on links without understanding where those clicks may lead.

The solution is live now. Here is how it works: when a user clicks on any link in Facebook, Websense uses its ThreatSeeker Cloud Malware Identification platform to analyze each URL in real-time for potential malicious content. If Websense determines that the link is malicious, users will be warned and shown an intermediate page that offers them the following choices:

·         Continue at their own risk

·         Return to the previous screen

·         Get more information on why the page is flagged as suspicious

This development is not unexpected. The rapid spread of social media has put many organizations at risk. It is sure that users of various social networks cannot live without them and they will access them from anywhere. Further, social media is increasingly being exploited as the means for vulnerabilities and threats. Cybercriminals are focusing now in distributing malware through social networking sites and this will create new threats in any organization's network or to individual’s devices. Overall, IDC believes that over the coming years the number of cyber attacks will continue to increase.

Key Points:

1.    For a few organizations, social media tools are considered risky from a security standpoint. They are least valuable to organizations; however they bring great value among adopters or users. As social network applications gain acceptance and are allowed into enterprises, they also bring with them concerns over the potential of a security breach as a result of the increasingly complex forms of malicious attack vectors. Here is a business opportunity for security vendors who plan to create innovative new offerings that take advantage of the fast scalability of the social-media security. 

2.     Facebook is the world’s largest social network with more than 800 million users and is becoming more and more essential for companies of any size as well as for individual users. Most businesses recognize that Facebook has the potential to generate tremendous value for their business. As a result, they are able to respond in near real time, which can ultimately lead to actions that improve the business.

3.    Facebook has many future plans like integrating social into the media consumption of watching, listening to, and reading content and doing so using Facebook's platform. Facebook's innovations will also help accelerate the growth of the company's advertising business. However, with different types of social-engineering attacks, it is possible to persuade people to click on malicious links, allowing backdoors or other malware to be installed. Facebook or any other social network's site has a responsibility to protect their users. Protecting a site the size of Facebook is a major undertaking. The Facebook-Websense announcement is only a beginning. Many such measures are required as more and more people use Facebook for their everyday communication.

4.     Malware infections are increasing as a result of social media use. IDC's recent Asia/Pacific security survey results show that respondents believe their organizations suffered from an increase in malware activities. To mitigate the risks created by social media, certain technologies are preferred. Secure Web gateways with real-time content analysis and data-loss prevention can block advanced malware and data-theft attacks, many of which seek entry through social media.

There is no doubt that Facebook, like any well accepted social media platform, has become a breeding ground for malware and other malicious links. Thus, in recent times, Facebook has employed numerous security mechanisms to protect its sites and users. This year in May, Facebook partnered with Web of Trust for increased protection. Web of Trust will continue to provide its protection services to Facebook. Web of Trust mainly checks links which are marked as malware or spam. By adding Websense, a cloud-based solution, they further enhance the security offered to Facebook users. The partnership is yet to prove its effectiveness on the world's largest social-networking Web site, but giving the current attack rate, any form of additional protection is a good thing.

Thoughts on the increase in cyber attacks

Tags:

In order to address the rising number and in some cases the sophistication of cyber attacks, IDC believes that organizations will need to approach security in a different way. The traditional methods of isolating systems through firewalls will not be sufficient as the systems become more complex. From a traditional IT perspective the introduction of both public and private clouds create significant challenges. Additionally, the consumerziation of IT and policies like bring your own device dramatically increase the number of threats that organizations will face in the coming years. IDC expects these threats will only grow as the number and variety of mobile devices continues to expand.

In the coming years, IDC recommends that organizations need to expand their approach to security. Security needs to become more advanced and organizations will need to take a more holistic approach to security. This will involve the deployment of a variety of products from different vendors and IT consulting and integration services required to make systems all work together. From a product perspective, the systems will need to become application device and location aware. For example, going forward it will no longer be sufficient to merely determine that I am allowed to access a certain system or data. The security system will need to know what type of device I am using, where I am, and what type of network I am using before granting access.

Finally, IDC believes that organizations will need to do a much better job of educating their employees. In many cases the employees may know that they employer has a security policy, but have no idea what that policy is. This can be a delicate process as most end users eyes tend to glaze over when IT begins to discuss the rising security threats and what steps are needed to prevent a breach. Further, most end users view security not as an essential part of their computing environment, but as a roadblock to productivity. To overcome these objections, IDC believes that IT will need to better speak the language of the end user. In many cases this is difficult for IT to do.

Note: Poon-Wei Ang Contributed to this entry

Cisco Introduces the Cius

Tags: cisco, cius, tablets, mobility

On Thursday July 21, Cisco held an analyst event to provide more information on their new tablet, the Cius. The tablet is Cisco's entry into the rapidly growing tablet market. It is based on the Android operating system and has been designed to work with Cisco wireless LAN infrastructure. The table will be released on July 31st and is expected to retail for approximately 750USD. Finally, the device will not be available through traditional consumer retailers as the device has been designed for commercial enterprises.

With the introduction of this device,  Cisco is not trying to design and develop a consumer tablet to rival the Galaxy Tab, Motorola Xoom or the iPAD. Rather they are trying to pursue the enterprise market. Over the long term, I believe that while the consumer tablets have their place, there is also plenty of space in the market for a dedicated business tablet. Designing the device to work within the corporate infrastructure can help to address some of the IT manager's traditional concerns, namely security and interoperability with existing solutions. I addition to the introduction of the tablet, Cisco provided more information on the introduction of the AppHQ, the Cisco created app store that provides IT managers the ability to control the apps deployed on this tablet.

IDC believes that the initial use cases for this device will be more around unified communications. Most early adopters will be using the tablet to join WebEx meetings, Telepresence sessions, or other communications needs. Further IDC believes that it will be used for organizations that need to deploy a mobile solution, but do not have the time or desire to have to integrate a new platform with existing communications infrastructure. Finally, IDC would recommend that end users that need an enterprise grade solution for their mobile employees, but do not want to embrace the bring your own device model, investigate the Cisco solution as it may provide the needed security and IT control that these users desire while satisfying the business needs.

Another acquisition in the social media/analysis market

Tags:

On July 6th Twitter announced that they would purchase analytics startup BlackType. BlackType is a small San Francisco-based startup that helps organizations measure the impact of their social media activaties. While there are currently limited resources available on the extent of BlackType's organization and the financial terms of the deal have not been announced, IDC finds this interesting as it is the second instance of this type of merger we have seen in a short period. The first of these was the acquisition of Radian6 by Saleforce.com which was announced earlier this year.  

At the beginning of this year, IDC predicted the integration of social media and analytics would become a high priority for IT vendors. With the rapid growth of social media platforms, most enterprises are have embraced this form of communication from an outbound marketing perspective. There are few organizations that do not have a corporate Twitter account. However, using social media for outbound marketing represents only a small portion of the power of social media. Most organizations now realize that they need to monitor the conversations that are not started or controlled by their marketing departments. The problem is that traditional IT systems have not been designed to address these needs.

As a result, several startups have begun to develop technology to monitor and analyze social media. As these organizations begin to mature, they will increasingly be the target of acquisition by larger SW vendors that are looking to incorporate this technology into their CRM or other enterprise applications. IDC expects that in the next few years, this type of social media analysis will move from a standalone application to an integrated part of larger systems.

From an AP enterprise perspective, IDC believes that organizations need to understand the roadmaps of the major SW providers. In general, the amount of legacy SW installed in AP is lower than in other regions. As a result, a greater portion of AP enterprises have more choices when it comes to implementing enterprise applications. Since social media is expected to increase in importance, IDC believes that Asian enterprises will be in a better position to implement solutions that can address the monitoring and analysis of social media. In many cases, IDC believes that this will take the form of deploying cloud-based tools as these tools can be deployed and updated faster than traditional on-premises applications, and this will be particularly valuable in the fast moving space of social media.

Introduction of Microsoft Office 365

Tags:

On June 29th, Microsoft announced the launch of their new Office 365 suite in six markets (Australia, Hong Kong, India, Japan, Korea, Malaysia, and Singapore) in AP. Office 365 provides customers with the ability to purchase Microsoft products through a cloud delivery mode rather than a traditional on-premises arrangement. The offering includes the following Microsoft products: Exchange, SharePoint, Lync, and Office. Currently there are three plans that organizations can choose from:

• Professional and Small Business: This plan is targeted towards small organizations with less than 25 employees that do not have dedicated IT Staff. The plan is offered for a $6 per month per user fee.
• Midsize Business and Enterprises: This plan is targeted at larger organizations that need greater flexibility and customization of the office environment. This plan is available for between $10 and $27 per user per month. Additionally, Microsfot is offering a plan for Kiosk workers that email, calendaring and Office Web apps for between $4 and $10 per user per month.
• Education: This plan is targeted at educational institutions.

The offering will be available to customer either directly from Microsoft or through partners. Notably in the Singapore market, Microsoft has partnered with Starhub as the syndication partner. Starhub will be offering Office 365 to their enterprise customers bundled with their broadband business plans.

IDC believes that this offering is a positive step for Microsoft in the office. Currently Microsoft is the dominant provider of office software and has a strong position in the email and calendaring market. However, as many enterprises continue to show interest in migrating from traditional on-premises IT to cloud services, their position would have been threatened had they not introduces these capabilities.

From an end user perspective, IDC believes that the SMB segment should investigate the use of cloud based services and this offering is no exception. In many cases, the costs associated with deploying a cloud based offering for non-differentiated tasks, such as calendaring, email, and office productivity can be significantly lower than a traditional on-premises model. Further, since Microsoft has designed the Office 365 environment to look and feel very similar to the on-premises offering there will be no need for end users to learn a new SW package. From an operational perspective, IDC believes that this is critical as there is an initial decline in productivity as end users learn new SW.

Quick Overview of SAP SAPPHIRE in Orlando Fl

Tags: business analytics, business applications

Over May 15-18, SAP held their annual SAPPHIRE conference in Orlando, Fl. This event focused on the recent developments for the German software company. IDC believes that there were three key themes that were directly relevant to the Asia/Pacific market.

IT as Business Driver

The overarching theme for the entire event was the use of SAP technology to improve business results. From an SAP perspective, this can be achieved by using IT to improve operational efficiency and gain greater customer centricity.

• Operational Efficiency. SAP stressed the importance of using IT to drive greater enterprise efficiency. Being able to better analyze data can lead organizations to make better use of their resources. For example, this analysis can result in the ability to adjust production schedules more quickly, alter supply chains in response to disruptions or adjust pricing schedules in response to changing customer demand.

• Customer Centricity. Customer centricity comes from better understanding the needs of the enterprise's customers. This understanding comes from an increased use of analytics. Further, analytics need to be integrated into other enterprise applications so that the improved analysis leads to actionable business decisions.

SAP believes that being able to faster analyze the correct data is the key to achieving both of these objectives. To achieve this improved speed requires the investments SAP has made in both mobility and application performance.

Mobility

Mobility was a key focus at SAPPHIRE. Mobility is becoming a critical part of the enterprise software landscape. Mobility has evolved far beyond simply providing employees with smart phones so they can check email. The increasing capabilities and variety of mobile devices is leading to the consumerziation of IT and the need for improved speed and productivity. However, this consumerziation of IT is resulting in a variety of new devices being introduced into a standard work environment. In many cases, employees are purchasing their own devices and using them for work related tasks. However, to realize the improvements in productivity that can be achieved by these devices, employees need access to enterprise applications. To achieve this, SAP has invested considerably into creating mobile applications that can run on a variety of devices. During the day two keynote, SAP demonstrated several examples of solutions involving a variety of mobile devices including, RIM Playbook, Android and the iPad. These demos included Avon demonstrating how a sales associate could use the SAP sw on a mobile device to assist a customer, and a demo of the SAP sales on demand platform.

HANA and in Memory Computing

SAP has invested considerable in developing HANA, an In-Memory appliance that combines SAP software on hardware provided by SAP's technology partners. This technology provides faster analysis of information. The device is targeting enterprises that need to accomplish analytics on big data. SAP believes that information is the life blood of most organizations and that better analysis of available information will result in better business decisions. However, this analysis can be very complicated as big data is generally characterized by three factors:

• Volume: This is probably the best understood of the factors. It represents the quantity of data that organizations can store and analyze. Over the past several years, with the proliferation of sources of data, the volume of data has exploded

• Velocity: With the increase in the volume of data, in many cases, this is resulting in a increase in the velocity of the creating of data. This increase results in challenges associated with processing the data in real time.

• Variety: The final factor is variety. While Traditional structured data is still critical to enterprises, increasingly the largest and, sometimes most interesting sources of data are unstructured data that do not fit into structured database.

By employing the In-Memory Appliance, SAP believes that enterprises can get better control over this data and thus translate data into actionable intelligence faster.

Salesforce.com to acquire Radian6

Tags: cloud computing, social media, customer care

On March 30, Salesforce.com entered into a definite agreement to acquire Radian6. Radian6 provides customers with a platform that monitors social media. Radian6 products include an engagement platform that helps organizations connect with communities and individuals, and an analytics platform that helps organizations track and analyze their social media activities. The total deal is valued at $326 Million USD. According to announcement by Salesforce.com Radian6 will be integrated into CRM unit. The main benefits of the acquisition will be:

• Sales and Service Cloud:  Social media monitoring is becoming a requirement for companies. By combining Radian6's social media monitoring and engagement platform with Sales Cloud and Service Cloud, companies will be able to gain real-time social intelligence on their customers, and improve decision making.
• Salesforce Chatter: Radian6 and salesforce.com will create the bridge between public social networks, like Facebook, Twitter, YouTube, blogs and online communities, and Salesforce Chatter. As a result, Chatter feeds will now be able to contain both internal conversations and external social media conversations.
• Force.com Platform: Developers will be able to build apps that leverage Radian6 social media monitoring capabilities. In addition, the integration of Radian6 with Force.com will benefit midmarket companies by helping them enhance their marketing and sales capabilities through the use of social media. 

IDC believes that the integration of social media into Enterprise applications, specifically CRM will become increasingly important in the coming years. While widespread adoption of enterprise social business software is still immature, and many IT executives are still unsure of the ROI that these initiatives can generate for an organization, IDC believes that social business software is poised to experience rapid growth across Asia enterprises. The dramatic rise in the use of social media is having far reaching effect on how enterprises manage their brands and interact with customers. Over the past several years, as social media has evolved, enterprises have become more interested in using it as not only another marketing channel but also a valuable way to gain customer intelligence.  IDC believes that this trend will continue into the foreseeable future.

From an AP perspective, IDC believes that if Salesfoce.com can successfully integrate the Radina6 social monitoring tools with their cloud based CRM solution they will be in a good position in this region. Currently cloud is one of the more talked about technologies in AP. By combining social media into their CRM platform, Salesforce.com will be able to further differentiate their CRM approach from their competitors.

Finally, IDC believes that enterprises should be looking for ways to integrate social media with their current CRM solutions. If done successfully, organizations will be able to capture customer complaints and compliments, as well as track competitors, customer's sentiments, and market responses. Empowering this information with analytics will bring enormous benefit to Asia enterprises, as well as help them better understand customer needs and predict future buying opportunities.

Daniel-Zoe Jimenez also contributed to this post.

Are Vendors Really Moving Toward Open Standards-Based Offerings to End Users?

Tags: asia/pacific, it priorities

There have been multiple acquisitions recently with vendors acquiring complementary or competing products to consolidate their position and offer an integrated solution to end users. Other vendors with limited offerings rely on ecosystems with multiple alliances to position their products as solutions.

Some alliances achieve desired objectives. However, vendors do face execution challenges across geographies. Alliances also pose high risk. For example, the alliance partner that has been acquired may jeopardize joint investments, support to customers, and exploit intellectual property.

Vendors are becoming more critical in selecting partners and are increasingly focusing on the long-term viability of partners. Also, the alliances are gradually becoming strategic partnerships with focus on joint product development and go-to-market activities.

However, despite vendors’ verbal commitments to adopt more standard based open architectures, their integrated systems approach is limiting the openness with select few options to end users.

The benefits of acquisition or strategic alliances may be faster ROI, cost reduction, ease of deployment, among others. However, there is a trade-off with higher risk of being locked-in.

As information technology is becoming strategic and integrated to businesses, end users’ journey with vendors is becoming very critical. End users need to look at “openness” in vendors’ solutions, scalability, viability of product, ROI, cost, long-term support, and diversify their risk well before engaging with them.