In the cyber security space, 2021 has been a wild year. From supply chain attacks to the NSO Group’s spyware scandal to the Colonial Pipeline ransomware attack, organizations are facing daily attacks.
The Identify Theft Resource Center revealed that the total number of data breaches through September 2021 exceeded the numbers by 17%. Various trends emerged and continued to gain strength in 2021 beyond specific attacks.
Here are four trends and their expected evolvement in 2022. Also, it is worth noting that each of these trends depends on and affects the other, and often at their intersection points, the most considerable risk and threats exist.
-
Critical Infrastructure Protection
There is a Debate across the industry about how to classify critical infrastructure. While few in digital assurance technologies and practices some philosophies ground themselves in secure perimeter tactics.
Also Read: Securing the Software Supply Chain in the Modern Era
There are some methods for updating internal medical devices and orbiting spacecraft, but these will need to be improved and expanded. Companies are committing to protecting products post-release and even into second life or recycling.
-
The effect of AI
Rapidly AI is expanding its use cases, leading to good and bad outcomes. Enterprises use AI as a force multiplier on traditional vulnerability scanning to discover potential new vulnerabilities, exploitations, and threats. This plays a critical role in automating particular hardware and software security tools to continue to amplify the process. AI and machine learning to be used to spot strange system behaviors.
As Artificial Intelligence in radiology, patterns can also be identified before the human eye to detect any issue. By building and training Artificial Intelligence models on typical performance behaviors of a system, organizations will use this to spot problems far earlier and enable faster response to mute threats. The art of security vulnerability discovery is performing actions on a device expressly in ways that aren’t expected or allowed. AI and machine learning further enable attackers to vary tactics and observe behaviors far faster than would be possible through human interaction.
-
security and privacy alignment
Security and privacy use similar technologies but are sometimes opposed. Areas including data protection, safety, and confidentiality are mostly aligned. Privacy laws and regulations are not harmonized across the globe.
Regulatory requirements will continue to drive advances in privacy technology, which will rely heavily on the adaptation of techniques developed for various security aspects in 2022. Process requirements for privacy and security will continue to be enshrined in regulations and standards. However, these technologies and regulations will cover only superficial and niche issues, with some brighter points, such as privacy preservation in web browsers.
Also Read: As Cyber Threats Rise, Cloud Security Must be a Team Effort
-
Human threats policed and machine trust
Multifactor authentication has closed one significant gap. This also prompted researchers to document increasingly complex breach tactics, such as physical proximity to systems and supply chain compromises. These should be considered carefully and addressed minutely.
Common tactics are unwitting insiders, phishing, or offering disgruntled platforms or dollars. Even the most robust human attestation and anomalous behavior detection solve only half the problem. This is growing in the interest the more employees work from outside a traditional secure perimeter of the company office or lab.
For more such updates follow us on Google News ITsecuritywire News