As we delve into the second part of our exploration of cybersecurity predictions for 2018, we uncover the five remaining trends that are expected to shape the landscape of cybersecurity this year.
IoT Legislation
The Internet of Things (IoT) sector has been significantly impacted by the Meltdown and Spectre bugs, highlighting the need for legislation to hold IoT manufacturers accountable for producing secure products. Gary Hayslip, Chief Information Security Officer of Webroot, emphasizes the importance of legislation in ensuring that IoT devices are free from known vulnerabilities.
Moreover, the commercial adoption of IoT systems is on the rise, making them a lucrative target for cybercriminals. The potential for mass IoT breaches, similar to the Mirai botnet incident, poses a significant threat to both consumers and businesses. Greg Day from Palo Alto Networks warns that attackers are increasingly targeting IoT systems due to their growing value.
Criminals Become More Sophisticated
Cybercriminals are continuously evolving their tactics, with the use of artificial intelligence (AI) leading to more sophisticated cyber-attacks. As AI and machine learning (ML) tools become more prevalent in cybercrime, basic protection methods may become obsolete. The adoption of adversarial machine learning by threat actors poses a challenge for traditional detection methods.
Adam Hunt, Chief Data Scientist at RiskIQ, predicts that cybercriminals will leverage AI-powered hacking kits to evade detection by machine learning models. This requires constant evolution in defense strategies to keep up with the evolving threat landscape.
Social Media Takeovers
In 2018, social media platforms are expected to be exploited for sophisticated social engineering and reconnaissance activities by cyber attackers. Markus Braendle, Head of Airbus CyberSecurity, highlights the vulnerability of non-cybersecurity savvy users on social media platforms, making them easy targets for attackers. Organizations are urged to implement social media security policies and training programs to mitigate the risk of social media attacks.
Zerofox warns that social media account takeovers will be rampant in 2018, with all users, including politicians, being potential victims of such attacks.
Malware – Fileless Attacks
The rise of fileless malware attacks poses a significant challenge for traditional antivirus solutions. Colin Tankard, Managing Director of Digital Pathways, emphasizes the threat posed by fileless attacks that reside in the memory of devices, evading detection until a system reboot. Hackers are increasingly targeting firmware and memory vulnerabilities, making detection and mitigation more challenging.
Greg Day from Palo Alto Networks predicts a surge in malware focused on stealing cryptocurrency account information, as the popularity of cryptocurrencies continues to grow.
More Use of MSSPs
As organizations grapple with the evolving cybersecurity landscape, Managed Security Solutions Providers (MSSPs) are expected to play a crucial role in enhancing security posture. Resolve predicts a greater interest in MSSPs from organizations that lack the in-house expertise and resources to establish a robust Security Operations Center (SOC).
MSSPs that demonstrate the ability to meet enterprise requirements and effectively respond to security breaches will attract more clients. Clients are likely to demand evidence of attack responses and metrics on incident response times, putting pressure on MSSPs to prove their capabilities.
These five trends represent the key areas of focus in cybersecurity for 2018. While predictions offer valuable insights, the dynamic nature of cybersecurity means that unforeseen events, such as the Meltdown and Spectre vulnerabilities, can have a significant impact on the industry. Stay vigilant and proactive in safeguarding your digital assets in the ever-evolving cybersecurity landscape.