CyberWarfare / ExoWarfare

Cybersecurity CEO Robert Herjavec: We Need To Secure A Massively Expanding Cyber-Attack Surface

Cybersecurity CEO Robert Herjavec. PHOTO: Cybercrime Magazine.


The rapid digital transformation and IoT will increase the risk. Great quote: “What people don’t get about the threat landscape is, it’s less about the techniques and more about the attack surface, and the number of openings that have been created.”Trols Oerting


The Internet, People, Places, and Things are outpacing our ability to protect them

Robert HerjavecLos Angeles, Calif. – Dec. 18, 2018

There’s no other way to put it, the cyber-attack surface is massively expanding. In order to protect it, we must first seek to understand it. Cybercrime is, after all, a natural outgrowth of the people, places, and things connected to the Internet.

We speak to this at length in the much anticipated 2019 Official Annual Cybercrime Report, published last week by Cybersecurity Ventures and sponsored by Herjavec Group. You can also check out the full transcript of an interview I filmed with Cybersecurity Ventures – covering the most important cybersecurity topics of interest to CEOs and C-Suite executives globally.

It’s crazy to think back to the first edition of the Cybercrime Report that we supported. Back in August of 2016, it was predicted that cybercrime damages would cost the world $6 trillion annually by 2021, up from $3 trillion in 2015. Over the past two plus years, that estimate has been corroborated by hundreds of major media outlets, academia, senior government officials, associations, industry experts, the largest technology and cybersecurity companies, and cybercrime fighters globally.

Reading through the report, what really jumps out at me is a cyber-attack surface that will be an order of magnitude greater by 2021. The numbers are beyond comprehension!! I don’t mean that to come across as an insult. It’s simply that we all take for granted that our cyber fighting teams and IT workers are on top of things. But how can they really be on top of this many new “things”??



There were nearly 4 billion Internet users in 2018 (nearly half of the world’s population of 7.7 billion), up from 2 billion in 2015.

Cybersecurity Ventures predicts that there will be 6 billion Internet users by 2022 (75 percent of the projected world population of 8 billion) — and more than 7.5 billion Internet users by 2030 (90 percent of the projected world population of 8.5 billion, 6 years of age and older).

But we don’t only have to worry about the users. Each person is multiplying the amount of IP addresses they’re adding to the Internet. The IPV Committee says by 2020 there will be hundreds of billions if not trillions of IP addresses. A good friend of mine, Art Coviello, made an excellent point when speaking to Dark Reading earlier this year. He said:

“What people don’t get about the threat landscape is, it’s less about the techniques and more about the attack surface, and the number of openings that have been created.”

Beyond people, devices, and IP addresses, there are other cyber-attack surface statistics that the latest annual cybercrime report calls out in order to help us get some perspective on what needs to be secured – including the cloud, code, data and more.

The latest Cyber-Attack Surface stats:

  • Microsoft helps frame digital growth with its estimate that data volumes online will be 50 times greater in 2020 than they were in 2016.
  • Cisco confirmed that cloud data center traffic will represent 95 percent of total data center traffic by 2021. Or to put it another way – cloud computing will wipe out data centers altogether over the next 3-4 years.
  • Cybersecurity Ventures predicts that the total amount of data stored in the cloud will be 100X greater in 2021 than it is today.
  • ‘The Big Data Bang’ is an IoT world that will explode from 2 billion objects (smart devices which communicate wirelessly) in 2006 to a projected 200 billion by 2020, according to Intel.
  • Gartner forecasts that more than half a billion wearable devices will be sold worldwide in 2021, up from roughly 310 million in 2017.
  • A 2017 report found that the world will need to cyber protect 300 billion passwords globally by 2020.
  • There are more than 111 billion lines of new software code being produced each year — which introduces a massive number of vulnerabilities that can be exploited.
  • The world’s digital content is expected to grow from 4 billion terabytes (4 zettabytes) in 2016 to 96 zettabytes by 2020 (this is how big a zettabyte is).
  • Some estimates put the size of the Deep Web (which is not indexed or accessible by search engines) at as much as 5,000 times larger than the surface web, and growing at a rate that defies quantification, according to one report.
  • ABI has forecasted that more than 20 million connected cars will ship with built-in software-based security technology by 2020 — and Spanish telecom provider Telefonica states by 2020, 90 percent of cars will be online, compared with just 2 percent in 2012.

I’m not one for fear mongering but these figures barely scratch the cyber-attack surface. To help fully comprehend the size and scale of what the world needs to secure, read the complete 2019 Official Annual Cybercrime Report and be sure to check out the full transcript of my interview with Cybersecurity Ventures.

Plus, stay tuned for the Herjavec Group’s next report, Cybersecurity Conversations for the C-Suite in 2019, due out in January. In our 2018 edition, we emphasized the importance of getting back to basics. We encouraged executives to double down on compliance, cyber hygiene, and the elements of a proactive defense strategy in order to combat advanced cyber threats. I’ll give you a hint, with the attack surface continuously expanding, this year’s theme will have to do with MORE – in a big way!

Robert Herjavec, founder and CEO at Herjavec Group, and a Shark on ABC’s Shark Tank, provides insights to C-Suite Executives in his Official Blog at Cybercrime Magazine. Herjavec Group is a Managed Security Services Provider with offices and SOCs (Security Operations Centers) globally.