Five security trends shaping the future
- Written by Kylie Watson, Head of security, APJ MEA, at DXC Technology
With Cybersecurity Awareness Month recently ending, now is a great opportunity for public and private organisations to take stock of their cybersecurity goals, measure their progress and prepare for what lies ahead. To that end, below are five emerging trends that are transforming how we drive our security programs to defend against cyber threats:
1. AI is a key player in the fight against cybercrime
AI offers significant benefits due to its ability to process vast amounts of data, identify patterns and detect signs of an attempted attack. It’s a useful tool for detecting malicious activity in a system or network, spotting anomalies or suspicious behaviours, and automating many laborious cybersecurity tasks, freeing up time and resources for cybersecurity teams.
But while the cybersecurity industry is focused on how to use AI to stop bad actors, cybercriminals often use AI to increase the speed, scale and intensity of their attacks.
For example, phishing emails have evolved from simple deceptive emails to more advanced, harder to spot and significantly more dangerous ones. Attackers are also successful at using deepfakes to perpetrate fraud or manipulate an audience into action such as the recent example of Queensland Premier Steven Miles persuading Aussies to invest in cryptocurrency.
AI's adaptive nature is one of its most potent features in social engineering attacks, manipulating people into giving away sensitive information or compromising security.
By using AI in these attacks, cybercriminals can appear more credible and trustworthy which could lead to system compromise.
AI and machine learning can work as a force multiplier for smaller security teams, augment their expertise to lessen their workload, which gives organisations a better chance against the newest strains of malware.
2. Cyber, cyber everywhere
We’re more connected than ever, which can have devastating consequences if proper cyber awareness isn’t applied.
An uptick in cybersecurity incidents has coincided with the shift to remote working, as criminals seek to take advantage of the increased attack surface. Perimeter security deployed at the office is no longer suited to adequately defend employees in this new environment or with modern interconnected capabilities.
For example, a single click on a seemingly harmless link in WhatsApp can open the door to cyber threats and can compromise your personal information and potentially your organisation’s data.
For years we have looked to control Shadow IT devices and systems in the workplace that are connected to networks without permission Now, we’re faced with Shadow AI (the use of AI systems and tools within an organization without formal approval or oversight). A growing problem with consequences around the confidentiality of data. Organisations must implement capabilities to continuously detect and control possible cyberattacks.
Unauthorized access to security controls as part of a zero-trust strategy (a cybersecurity model requiring users to be authorized at every level of network access) could prevent sensitive resource compromise in the workplace.
3. Attacks can target critical infrastructure–and our homes
When the lights go out or the gas is cut, most people are unlikely to think it’s the result of an industrial cybersecurity breach. But operational technology is an emerging battleground for cyberattacks.
Australia has to be ready to respond to these kinds of incidents and recover from it as effectively as possible while minimising loss.
And with ongoing geopolitical tensions, industries must ensure they stay one step ahead by baking in cybersecurity protection across their operations.
4. Global events can increase the threat level
In times of crisis, an upsurge in cyber-attacks is usual. Threat actors are often hard at work taking advantage of vulnerable individuals, systems and government resources for financial, political or other gain.
Such attacks can have profound implications for critical infrastructure and industrial sectors around the world. For example, instead of targeting end-users directly, attackers now compromise the supply chain itself, becoming a primary vector for large-scale data breaches and cyber incidents. Being laser focused on third-party risk management and who you’re doing business with is critical.
5. Skills shortage
As organisations confront the complexities of escalating cyber threats, they need people with the right skills to protect their data and systems.
We hear a lot about how the global cybersecurity skills gap is widening, leaving many organisations vulnerable to increasing cyber threats. Almost overnight, companies have realized that they need a dedicated cybersecurity professional—or an entire team—on staff.
A way around this is to broaden the candidate pool to bring junior candidates into the fold and grow them with on-the-job training. This can include candidates who might not have the specialised skills required, but come with analytical potential, problem-solving skills and technical promise. By providing proper training to existing employees, organizations can empower them with career mobility and to become the first line of defence against potential threats.
The world is in flux with technological and geopolitical changes impacting organisation, both big and small. But by being aware and being prepared, organisations can make sure they're ready for whatever cybersecurity challenges they face.
Kylie Watson