With 2017 Poised to be the Year of Ransomware, More Cyber Spending is on the Way

With 2017 Poised to be the Year of Ransomware, More Cyber Spending is on the Way

With headlines swirling following the WannaCry attack that hit more than 230,000 computers across more than 150 countries in just 48 hours, on this episode of Cocktail investing we spoke with Yong-Gon Chon, CEO of cyber security company Focal Point to get his insights on that attack, and why ransomware will be the cyber threat in 2017. Before we get into that Safety & Security conversation, Tematica’s investing mixologists, Chris Versace and Lenore Hawkins broke down last week’s economic and market data as well as the latest relevant political events. With all the controversy in D.C., there was a lot to discuss concerning the likelihood that the Trump Bump, which was based on assumptions around tax reform, regulatory roll-back, and infrastructure spending is evolving into the Trump Slump as investors realize the anticipated timeline for such was decidedly too aggressive. With mid-term elections looming, we expect the Trump opposition will be emboldened by the controversy surrounding the administration and will put in best efforts to appeal to their constituents. For the market, it’s another reason to see the Trump agenda likely slipping into late 2017-early 2018, and that realization is likely to weigh on robust GDP and earnings expectations for the balance of 2017.

The markets on May 17th suffered their biggest losses in 2017, with the Nasdaq taking the biggest one-day hit since Brexit, as the turmoil in Washington dampens investors’ appetite for risk while raising questions over GDP and earnings growth. While some Fed banks are calling for 2Q 2017 GDP as high as 4.1 percent (quite a jump from 1Q 2017’s 0.7 percent!), the data we’re seeing suggests something far slower. We continue to think there is more downside risk to be had in GDP expectations for the balance of 2017, and the latest Trump snafu is only likely to push out team Trump’s reforms and other stimulative efforts into 2018. If 2Q growth is driven in large part by inventory build, which is what the data is telling us, expect the second half to be significantly weaker than the mainstream financial media would lead you to believe.

While the global financial impact of the WannaCry ransomware attack may have been lower than some other high profile attacks such as ILOVEYOU and MyDoom, the speed at which it moved was profound. We spoke with Yong-Gon Chon, CEO of Focal Point Data Risk about the incident to get some of the perspective and insight the company shares with its c-suite and Board level customers. While many are focusing on WannaCry, Yong-Gon shares that as evidenced by recent content hijackings of Disney (DIS) and Netflix (NFLX), ransomware is poised to be the cyber threat of 2017. Those most likely to be targeted are those organizations that prioritize uptime and whose businesses tend to operate around the clock, making backups and software updates extremely challenging.

While in the past IP addresses may have been scanned once every four to five hours, in today’s increasingly Connected Society, IP addresses are scanned one to ten times every second. As consumers and businesses in the developed and emerging economies increasingly adopt the cloud and other aspects of Connected Society investing theme, we are seeing an explosion in the amount of data as more and more of our lives are evolving into data-generating activities. From wearables to appliances to autos, our homes, offices, clothing and accessories are becoming sources of data that goes into the cloud. With the Rise of the New Middle Class in emerging markets, we are seeing the number of households participating in this datafication grow dramatically, exposing new vulnerabilities along the way. That increasingly global pain point is fodder particularly for cyber security companies, such as Fortinet (FTNT), Splunk (SPLK) and Cisco Systems (CSCO) that are a part of our Safety & Security investing theme.

During our conversation with Yong Gon we learned that companies need to understand that breaches must be viewed as inevitable in today’s Connected Society, network boundaries are essentially a thing of the past. Security can no longer about preventing nefarious actors from gaining entrance, but rather is now about managing what happens once a company’s network has been invaded. From a sector perspective, with all the regulation and reporting requirements in financial services, many of these firms are leading the way in how to best deal with such breached.Uber

For investors who want to understand the potential impact of cybercrime, Yong-Gon Chon suggests looking at how much data a company is generating and how the company is managing the growth of that data, with companies such as Facebook (NASDAQ:FB), Alphabet (NASDAQ:GOOGL) and Uber examples of heavy generators. Investors need to look at a company’s cyber risk as a function of the magnitude of its data generation and the company’s level of maturity in addressing that risk. By comparison, companies not affected by attacks such as WannaCry need to be asking themselves why didn’t they get hit? Was it luck or did we do something right? If so, what did we do right and what is the scope of protection we have given what we’ve learned about the latest attack strategies?

We also learned about the new efforts underway globally to develop attribution of cyber threats so as to differentiate between those threats from professional cyber criminals versus the capricious tech savant engaging in ill-advised boundary exploration. Along with this shift is also a change in the boardroom, where cybersecurity is viewed in the context of its potential impact on the business, rather than as a function of a company’s IT department.

One thing we can be assured of is that hackers are watching each other and the good ones are learning what makes attacks fail and where organizations are weakest. As the Connected Society permeates more and more of our lives, these risks become more pernicious and their prevention more relevant to our everyday lives. The bottom line is we are likely to see greater cyber security spending in preventative measures as well cyber consulting as those responsibilities become a growing focus of both the c-suite and board room.

Companies mentioned on the Podcast

  • Amazon.com (AMZN)
  • Apple (AAPL)
  • CVS Health (CVS)
  • Disney (DIS)
  • Facebook (FB)
  • Focal Point
  • JC Penny Co (JCP)
  • Kohl’s (KSS)
  • Macy’s (M)
  • Microsoft (MSFT)
  • Netflix (NFLX)
  • Nordstrom (JWN)
  • TJX Companies (TJX)
  • Twitter (TWTR)
  • Uber
  • United Parcel Service (UPS)
  • Walgreens Boots Alliance (WBA)

Resources for this podcast:

Cocktail Investing Ep 5: M&A activity among Consumer Staples, fast food thematic signals, Fed-Speak, and what exactly is the Border Adjustment Tax (BAT)?

Cocktail Investing Ep 5: M&A activity among Consumer Staples, fast food thematic signals, Fed-Speak, and what exactly is the Border Adjustment Tax (BAT)?

In this week’s program, Tematica’s cocktail mixologists, Chris Versace and Lenore Hawkins sit down to discuss some of the week’s economic data, relevant political events and share where they have spotted a few of the latest Thematic Signals, such as:

  • What McDonald’s (MCD) soft drink promotional price cuts mean to our Cash Strapped Consumer
  • How the Connected Society is pushing UPS to up its game as online shoppers increasingly expect two-day shipping.
  • Major League Baseball looks to remain relevant in our Content is King world by potentially partnering with Facebook (FB), which in turn is placing its app on Apple TV (AAPL), as the way we consume content and connect with each other continues to evolve.

This week saw some telling moves in the M&A arena with Kraft (KHC) calling off its prematurely disclosed bid for Unilever (UL) as consumer staples companies such as JM Smucker (SJM) and General Mills (GIS) struggle — not exactly a robust sign for the economy despite what we see in the headlines. Others like Restaurant Brands (QSR) that are looking to buy growth get an agreement done with Popeye’s Louisiana Kitchen (PLKI), and we talk about the whys behind that strategic rationale.

Of course, this week we received the clear-as-mud minutes from the latest Federal Reserve’s Open Market Committee meeting, which we dig into as well as dish out the 411 on what this Border Adjustment Tax is all about and how it could affect you and the companies in which you invest.

The teflon market continues to push up as valuations get further into the stratosphere and forward EPS estimates get revised downward. We’ve now gone an unprecedented 8 years without a 20 percent correction and the VIX 65-day moving average has dropped down into territory that normally precedes a pullback. While we are optimistic when it comes to the economy, we have to acknowledge our Aging of the Population theme means the first baby boomers are turning 70 this year with 1.5 million doing so each year over the next 15 years, which will have a dramatic impact on spending as well as health care costs. That’s especially the case when only 50% of them have saved enough for retirement.

But with CEO’s of major U.S. manufacturers making the headlines that Trump is the most pro-business president since the founding fathers, stocks are holding up just fine… for now. More on that on the podcast. Listen now.

Companies mentioned on the Podcast

  • Amazon.com (AMZN)
  • Apple (APPL)
  • Campbell Soup (CPB)
  • Facebook (FB)
  • General Mills (GIS)
  • Houlihan Lokey (HLI)
  • JM Smucker (SJM)
  • Kraft Heinz (KHC)
  • Macy’s (M)
  • Major League Baseball
  • McDonald’s (MCD)
  • Nordstrom (JWN)
  • Popeyes Louisiana Kitchen (PLKI)
  • Restaurant Brands Intl (QSR)
  • Twitter (TWTR)
  • Unilever (UL)
  • United Parcel Service (UPS)
  • Whole Foods Market (WFM)

 

Lenore Hawkins Tematica Research Chief Macro Strategist
Chris Versace Tematica Research Founder and Chief Investment Officer