EDITOR ’ S QUESTION
LIOR DIV , CO-FOUNDER AND CEO AT CYBEREASON
For our 2022 predictions , we wanted to go beyond the usual hot topics and buzzwords lists that normally pass for insights . While it ’ s important for our customers to prepare for more of the same when it comes to things like skills gaps and the use of cloud and AI in cybersecurity , we believe they don ’ t need domain experts to inform them of the obvious . We prefer to focus on the future shape of the threat landscape and what current threat research tells us about risks that may be just over the horizon .
RansomOps replaces ransomware
Ransomware has swept the region anew since the pandemic created more complexity in infrastructure and a disconnect between remote-working employees and the IT function . the successful strategies of the state actors seen in DeadRinger and GhostShell . This will likely lead to a reassessment of risk profiles by companies that are suppliers of digital services , as well as similar reassessments by their customers of how to establish trust in their supplier .
The Microsoft risk
Microsoft ’ s dominant role in the OS , cloud and applications market means much of the cybersecurity threat domain is focused on the company ’ s offerings . As more and more organisations migrate to Microsoft environments , understanding the risks will be essential .
Lines blurring between cybersecurity and national security
Relatively simple repurposed malware strains have been replaced by RansomOps . Cartels like REvil , Conti and DarkSide are conducting comprehensive campaigns in which the payload is just the final link in an attack chain .
Against this backdrop , 2022 will demand a refocusing of anti-ransomware tactics away from the encrypting malware itself and onto the Indicators of Behavior ( IOBs ) associated with RansomOps , allowing the defending organisation to circumvent encryption entirely .
Supply chain attacks will reach further
Cybereason research into espionage campaigns such as DeadRinger and GhostShell reveals different approaches to the well-known SolarWinds incident , with similar outcomes . By gaining access to telecommunications providers , state actors were able to monitor communications for customers of those operators . In 2022 , criminal gangs will adopt
In 2022 , criminal and state actors will likely collaborate and align objectives for optimal impact . In response , regional governments are likely to escalate their preparedness strategies through entities .
Standardisation of XDR
Hybrid work models , 5G rollouts and the increased experimentation with IoT will lead to a connected world that will be difficult to protect . However , the productivity and convenience benefits of the technologies it provides will ensure its prevalence and therefore demand measures such as Extended Detection and Response ( XDR ).
While the cybersecurity industry is in broad agreement on its importance , there is not a uniform definition on what XDR does or should do . In 2022 , when clear leaders in the XDR field have been established , the role AI should play in cybersecurity will become more defined .
www . intelligentcio . com INTELLIGENTCIO EUROPE 35