Five Trends to look for in 2022
- There Will Be Growing Government Interest, Influence in Cybersecurity SolarWinds, the Colonial Pipeline attack, spyware and privacy concerns have grabbed the attention of global governments, and experts widely agree the year ahead will be chock full of new regulations and investments. In the months leading up to the 2020 elections, governments were focused on the spread of disinformation to influence election outcomes, but other urgent national security demands emerged in the wake of massive cyberattacks on critical infrastructure. These immediate cyberthreats will continue to dominate government focus throughout 2022, researchers predicted.
- Social Engineering Human beings are bound to make mistakes, and in 2022, they’re still going to make mistakes. Largely, going to do the easiest thing, regardless of its impact on the organization’s security posture. And that’s something cybercriminals will continue to count on to make their social-engineering scams work. Social engineering is one of the most difficult security issues to address because no compliance, governance or risk-management action can address the fact that people are imperfect and susceptible to being duped.”
- Supply Chain Ransomware Attacks “Supply-chain ransomware is a particular concern due to the ability for a single breach to impact hundreds or thousands of end companies,” Desai told Threat-post. “Tech companies experienced a 2,300 percent increase in attacks in 2021, and we don’t foresee any relief in 2022.”
- Ransomware-as-a Service Actors Pivoting to SMB’s. Ransomware-as-a-service (RaaS) has helped make digital extortion a booming business, and 2022 is likely to be another banner year for ransomware threat actors. One clear emerging trend is the rise in cybersecurity inequity between the Fortune 500 companies and SMBs. It’s something Arctic Wolf’s McShane calls the “haves and the have-nots.”
- Cybersecurity Industry Needs to better Coordination in 2022. Over the past year, threat groups have shown they have the resilience to come together to solve problems with greater coordination. Cybersecurity? Not so much.
“As we have seen with the evolution of malware-as-a-service and phishing-as-a- service, threat actors are willing to join forces for mutual success,”
December 29, 2021