As one year closes out and another begins, it is time to reflect on the lessons we’ve learned. The COVID-19 pandemic forced organizations to implement remote work capabilities to continue normal business operations. With nearly 50% of Americans working from home, security teams have been tasked with keeping their organization secure in ways they didn’t anticipate. Let’s look at some cybersecurity trends to keep an eye on in 2021.
The Evolution of Ransomware Attacks
Year after year, ransomware remains one of the top cybersecurity threats. It is a proven tactic no matter how much cybersecurity professionals warn against it. Organizations cannot afford to have their systems off-line, especially during the pandemic. While some security teams scrambled to implement remote capabilities, networks were left vulnerable to attacks. Crowdstrike interviewed IT decision-makers and IT security professionals and discovered that almost 60% of them experienced a successful ransomware attack on their organization. Cybercriminals have moved from just encrypting data to stealing it and threatening to expose the data if they are not paid. Ransomware has also been targeting hospitals at an increasing rate, endangering lives. Expect cybercriminals to continue to extort organizations and target the most vulnerable.
Attacks on the Supply Chain
The recent cyberattack on SolarWinds’s Orion platform shows how organizations can be infiltrated by an attack on a supplier. Once cybercriminals gain access to the supplier’s network, they look to escalate their privileges and move laterally. In the SolarWinds attack, hackers were able to use their privileges to access and steal information from large private companies as well as some US Government agencies.
More Cloud Attacks
As the workforce shifted to working from home during the pandemic, organizations began to look towards cloud services. Many organizations have struggled with properly configuring cloud solutions, leaving them vulnerable to attack. Since organizations are storing more information in the cloud, it makes these platforms a gold mine for cybercriminals.
Expanding the CISO Role
The importance of cybersecurity has now caught the attention of CEOs, CFOs, and the board of directors. As a result, CISOs have to be able to connect with all levels of their organization. They need to successfully communicate technical knowledge and requirements to business partners. The emergence of different privacy laws has made it important for CISOs to understand the legal requirements of security. From GDPR to the California Consumer Privacy Act (CCPA), CISOs have to build security controls around them.
Let’s discuss how to keep your business secure while improving business performance https://visualtorch.com/contact
References:
https://www.infosecurity-magazine.com/blogs/five-cyber-threats-2021/
https://www.securitymagazine.com/articles/93887-seven-cybersecurity-predictions-for-2021
https://www.csoonline.com/article/3600126/top-4-security-trends-to-watch-for-2021.html
https://www.crowdstrike.com/resources/reports/global-attitude-survey-2020/
