In this Help Net Security interview, Pedro Cameirão, Head of Cyber Defense Center at Nokia, discusses rising cybersecurity tendencies in 2024 and advises companies on their preparedness methods.
Mr. Kamiran shall be talking at GISEC Global 2024 in Dubai. GISEC Global 2024 is a convention and exhibition that brings collectively the brightest minds in cybersecurity.
What new cybersecurity tendencies ought to companies pay attention to in 2024 and the way ought to they put together for these new threats?
We are observing menace actors more and more leveraging new methods and applied sciences to avoid safety measures and exploit vulnerabilities at an unprecedented fee. The menace panorama is additional sophisticated by the rise of superior persistent threats (APTs), phishing-as-a-service, ransomware-as-a-service fashions, and state-sponsored cyberattacks. Emerging applied sciences similar to synthetic intelligence and machine studying at the moment are being employed to carry out extra exact, automated, and complex assaults.
For instance, relying solely on multi-factor authentication (MFA) might not be enough to forestall identification theft for community entry. MFA have to be complemented with extra conditional entry insurance policies.
New phishing techniques (similar to quiche) are additionally getting used to avoid elevated consumer consciousness and bypass e-mail system filters.
It is essential that enterprises adapt rapidly, implement menace intelligence applications that facilitate vulnerability remediation, and put in place applicable safety controls because the dynamic menace surroundings evolves.
How will the rise of AI and machine studying applied sciences influence the cybersecurity panorama, and what new dangers and alternatives will they convey to companies?
In 2023, synthetic intelligence (AI) and machine studying (ML) have moved from mere buzzwords to broadly accessible applied sciences. Cybercriminals at the moment are broadly utilizing AI to achieve insights right into a sufferer’s IT techniques and the existence of vulnerabilities, evade detection strategies, and launch automated assaults with unprecedented velocity, scale, and accuracy. is beginning.
Traditional approaches to safety and incident response are not enough. Defenders should additionally leverage AI and ML to foretell threats, strengthen safety posture, and automate detection and incident response capabilities.
Supply chain assaults are on the rise. What steps ought to corporations take to guard their provide chains and scale back the chance of such assaults?
The SolarWinds cybersecurity incident that got here to mild in 2020 revealed the numerous influence that offer chain assaults can have. The results of this assault are nonetheless ongoing, and it’s not possible to imagine that mitigation measures shall be absolutely applied. This incident served as a wake-up name for a lot of organizations concerning the potential influence of provide chain assaults.
Cybersecurity applications should take into account provide chain assaults as a key supply of threat. This contains not solely the dangers inherited from suppliers, but additionally the potential downstream influence on prospects from vulnerabilities launched within the services and products offered.
To scale back the chance from provide chain assaults, corporations ought to implement provider and third-party evaluation applications to judge compliance with cybersecurity finest practices, laws, and business requirements. Vendors with unknown or poorly managed dangers ought to be rejected if dangers are recognized as unmitigated.
Additionally, the usage of open supply and third-party software program poses important dangers from provide chain assaults. Good administration ought to confirm the authenticity of third-party software program and be certain that they obtain common updates and patches. Security evaluation have to be built-in into all phases of the software program improvement lifecycle (SDLC) and his CI/CD pipeline for functions and merchandise.
All of the above have to be complemented by an efficient IT safety program. This contains common threat assessments, sturdy entry controls, system hardening, common patching and vulnerability remediation, and worker coaching. Continuous safety monitoring, incident detection, response, and remediation supported by menace intelligence are additionally key parts of an efficient safety program.
As knowledge privateness laws evolve, how ought to corporations adapt their cybersecurity methods to make sure compliance whereas defending towards breaches?
Over the previous few years, a number of new cybersecurity laws have been launched world wide to handle rising threats and improve knowledge safety. As cyber threats evolve, we will anticipate laws to change into extra stringent, with heavier fines and potential legal prices for executives who fail to fulfill their regulatory obligations.
As cyber threats evolve, complying with IT safety laws is paramount to sustaining belief, integrity, and legality in digital operations.
Insider threats stay a significant concern for companies. What steps can organizations take to successfully detect and forestall insider threats?
Not all corporations are the identical, and insider menace dangers range. The first step to successfully managing insider threats is to conduct a complete evaluation to find out the potential for worker fraud to disrupt regular enterprise operations or compromise IT techniques. Identify all potential areas the place there may be potential.
Appropriate IT safety and human sources administration have to be designed to mitigate the recognized dangers. Security insurance policies ought to embrace safety measures which might be custom-made to an organization’s distinctive insider menace threat urge for food. This contains thorough vetting processes for workers in delicate roles, systematic implementation of least privilege entry, implementation of privilege administration techniques, community isolation, knowledge loss prevention (DLP), safety monitoring, and extra. It shall be.
Third-party threat administration is equally necessary. Subcontractors and distributors with privileged system entry are a major supply of threat. Regular third-party evaluations are important and will be certain that third-party suppliers comply together with your firm’s safety insurance policies.