2020 was not just a tempestuous year from the IT security point of view. Security officials will keep on being caught up with getting existing distant work environments in 2021. Michael Scheffler from Varonis Frameworks clarifies the IT security drifts that will shape this year.

While many individuals working in the work space anticipate an hour more rest since they presently don’t need to drive to work, gotten gadgets in uncertain home organizations will in general reason the security groups restless evenings – also the unmanaged private gadgets. The protected execution of the “New Typical” won’t be the main test to the IT security patterns in 2021.

IT Security Trends: Malware Is Increasingly Being Made To Measure

Netwalker took the Ransomware-as-a-Administration model to another level in 2020, and this plan of action will absolutely keep on acquiring in significance in the new year. By the by, we expect further improvement in the malware-as-a-administration market with customized takes advantage of in the following year. The security specialists of the Varonis Occurrence Reaction group have as of now had the option to recognize customized malware being used against organizations – with a variation that was just assembled for the “client” one day before the assault.

It works like the exemplary men’s supplier: Similarly as with a regular suit, all client demands are considered, and little changes are made to fulfill the customer. Be that as it may, with destroying ramifications for the organizations influenced. Due to the gigantic “odds of coming out on top”, we expect assaults dependent on this model to increment in 2021.

The Arms Race For The Best AI Engine And Dark Clouds

Artificial intelligence is no longer a hype topic but is increasingly forming the basis of advanced security solutions. But cybercriminals are also increasingly relying on artificial intelligence to automate attacks and orchestrate responses to the protective mechanisms they encounter in their victims. This arms race between offensive and defensive AI has been observed and will intensify further in 2021.

The cloud is not only being used more and more by companies but also by cybercriminals. Security officers have to face these new attack vectors and the associated challenges and take immediate action. It’s time to move away from isolated approaches, build collaboration between security and compliance teams, and put data at the heart of your security strategy. Only if they can control data access, recognize precisely who is accessing which data, and when can they protect them effectively and sustainably, regardless of the way the attackers use their target – the valuable company data – want to achieve.

IT Security Trends: There Are More And More Gateways

And these paths are becoming more numerous. In addition to the cloud and the “classic” attack vectors such as phishing emails, malicious websites and apps or the exploitation of vulnerabilities, attackers are increasingly using IoT devices to gain access to company networks. With the increasing 5G network expansion, the attack surface is also increasing enormously. But even if we are dealing with new approaches and technologies, the targets of the attackers are still the same: Cybercriminals usually target data.

In this respect, it is also true that the data must be protected, especially since the perimeter is disappearing more and more and the control of the endpoints and network access points is becoming more and more difficult or even impossible due to the sheer volume.

How to Prepare for 2022

In sum, many of the cybersecurity challenges in 2022 will already be familiar to experienced IT and cybersecurity professionals. The difference is going to be that these cyber threats will be more intense and challenging, perpetrated by more sophisticated threat actors leveraging new and devious techniques, with greater and more damaging consequences for the unprepared.

• Make a plan – you’ll start with the implementation of trusted guidelines just like the CIS Controls and CIS Benchmarks
• Scan against a target system’s configuration settings and report the system’s compliance
• Utilize tools and resources that measure your security framework’s success over time
• Collaborate with team members and industry professionals for support and ideas