Focus on cloud attacks and a changing security industry
Vectra AI, provider of cybersecurity based on machine learning and AI, looks at the current trends in the field of IT security.
Andreas Riepen, Head of Central & Eastern Europe (CEE) at Vectra AI identifies five key trends:
Andreas Riepen from Vectra AI
Ransomware (actually RansomOps) will shift to exfiltrating and encrypting cloud data. So far, this has sometimes been done through attacks on third-party processors of data (see the recent example of the extortion of data from Labour Party members in the UK). 2022 will be the year in which the data located on the customer side of the “shared responsibility” model will be exposed to a direct attack by one or more ransomware gangs.
It is becoming more and more common for ransomware gangs to be stopped. There will be increased formal oversight of information security. The reasons for this are the frequency of ransomware attacks and the deplorable lack of preparation of many public institutions for this threat. Similarly, a relative decrease in ransomware consequences can be expected compared to the consequences of data loss/exfiltration, as human-operated ransomware is detected and stopped before it spreads.
Lack of security experts and growing demand for MDR (Managed Detection and Response) and automation services
While the scope of managed security services will continue to increase, a not insignificant subset of companies will meet the shortage of skilled workers with automation, orchestration and analytical AI. These companies will realize that outsourcing the business context can be extraordinarily difficult. Instead, the realization will prevail that some well-positioned and supported internal resources can be more effective than an army of external resources.
2022 will be a big year for mergers and acquisitions in the cybersecurity market. The disruption caused by the rapid transition to the cloud – both in the SaaS use of applications and public clouds – has led to a huge opportunity to change security budgets. Big established companies have a lot to lose and will try to make themselves relevant again. Successful start-ups with valuations of more than ten billion dollars will rush to adjacent markets in order to claim more market share for themselves. This is a bit like a gold rush in combination with the trip to Jerusalem.
MFA (Multi-factor authentication)
MFA is enforced by some of the big tech giants like Microsoft and Google. This is largely due to the fact that attackers are still successfully stealing access data and bypassing basic authentication. Although MFA is an indispensable measure, criminals prove again and again that this is not enough to keep them away. In some cases, criminals are even using bots to bypass MFA, and this will continue to be a difficult struggle for companies. Therefore, more and more companies will turn to AI-driven security tools to stop attacks that pass by the MFA.