Top Threats for 2022
The security problem isn’t going to go away. As long as there’s
money at the end of it, whether it is someone stealing IP or money, they
will always find a way to get it.
Ransomware will continue to be the largest security issue in 2022.
APT actors are the next major threat and that is because they
are not as financially motivated. These types of attacks are more
multifaceted than ransomware, as it’s not just about financial protection,
but also about IP and data protection. Supply chain attacks are the third
major concern given the advanced techniques that are now being deployed to easily deliver these types of attacks. They no longer rely on phishing.
Attackers can infiltrate the entire supply chain without having to go
through the front door.
Insider threat via 3rd Parties.
Insider threats will continue to be a growing concern
when it comes to the software supply chain, as it’s difficult to control the
security of third-party organizations you are doing business with. This is
less of an issue with an organization’s own technology but more of an issue
with the technology of the third party partner. While most companies have
good intentions to work together to better serve customers, not all
organizations have the level of security maturity or resources to do so in
the safest way possible.
Balancing the need for performance vs. security.
Businesses will continue to be challenged by the need to
maintain performance as well as security best practices. It will be
increasingly important for customers to have multifaceted security programs that include the ability to monitor their extended infrastructure.
Healthcare sector to be increasingly targeted by threat
actors.
In the healthcare industry, we can expect to see more
attacks on medical IoT and the IoT medical supply chain. Any medical
machine that runs legacy technology will be easier to penetrate and
ransomware will continue to be an issue. Some of the threat vectors in the
healthcare sector are unmanaged devices and legacy apps, so healthcare
organizations will need to implement stronger security policies on those
devices and apps.
Working from home will always be a security challenge.
Enterprise remote infrastructure security has definitely improved over the last few years during the pandemic. However, when you have devices outside of a controlled environment, even the physical security of things becomes more problematic. Once you leave the four walls of a physical building, it is more challenging to manage and secure things like passwords, biometrics.