The cybersecurity landscape has undergone significant changes throughout 2020 and has identified four critical trends that will need to be closely watched throughout 2021.
In 2021, the ransomware will become even more aggressive, modifying or adding some of its features to fool some protection systems.
Mark Loman, director of engineering for next-generation tech at Sophos, explains: “We should expect automatic, active ransomware attacks that will exploit user distraction with automated tools to cause as much damage as possible.”
By encrypting only a relatively small portion of each file or booting the operating system in diagnostic mode, where anti-ransomware protection is often unavailable, attackers will be able to dodge most defences. Ransomware will continue to be a significant player in the threat landscape, and that won’t change until victims are easily identified.
Sophos believes minor missteps will lead to serious cloud breaches. Flexibility is the keyword for cloud computing, but when the time comes to tackle the issue of securing, all flexibility and simplicity can turn out to be double-edged weapons.
In 2021, minor oversights could lead to dangerous exposures to cyberattacks for large companies. The most significant vulnerability to the cloud is the incorrect configuration: as cloud systems become more complex and flexible, the margin for error increases dramatically. This, coupled with a general lack of visibility, makes cloud environments the ideal target for cybercriminals. For this reason, protecting data stored in the cloud requires the use of specific tools, also in consideration of the fact that the attack model is very different from the one that affects servers or PCs.
Machine learning is now an essential element of companies’ cybersecurity strategy, and cybercriminals are fully aware of how it is used to thwart their attacks. In response to this strategy, the attacker will try to defuse these machine learning-based security systems. In the coming years, it is easy to predict the growth in the rate of adoption of techniques drawn from the scientific machine learning community by the cybersecurity market. This will lead the protection systems to make semi or total autonomy decisions to protect information and users.
Companies must be ready to implement a multi layered security approach. To do so, the solution can be straightforward. By combining human resources specialized in the fight against cyberattacks with deep learning technologies, companies will detect and fight the most complex attacks much more quickly.
5G is unquestionably the essential technological change to impact the cybersecurity landscape. While it promises to connect almost all aspects of daily life over the network with unmatched speed and very low latency, it also implies new security challenges. Unprecedented access points are born that will expose companies to new types of attacks.
5G is the bearer of an enormous promise: by intervening on virtual networks, with the entry of radio frequencies that until now were not accessible and minimizing the resulting visibility, it will open a Pandora’s box. This will require companies to make an even more significant commitment to secure connections, devices and applications. “It has never been so essential that security solutions work together, as a single system.