2023-12-18 08:50:41
The acceleration of business data at the heart of the cybersecurity challenges of 2024
Rubrik presents its cybersecurity predictions for the year 2024. According to Rubrik, the accelerated explosion of data that punctuated the year 2023 is expected to continue into next year and should force organizations to rethink their cybersecurity strategy by concentrating five axes:
The surge in corporate data will force a rethink of security strategy
In 2024, companies will face a new challenge: securing more and more data, over an expanding and rapidly changing surface area. Many organizations will shift their focus to cybersecurity from protecting individual castles to protecting an interconnected caravan. “The latest Zero Labs report reveals that the volume of data that an organization will need to protect will increase by 42% in 2024 and be multiplied by seven in the next five years, comments Steve Stone, director of Rubrik Zero Labs. According to this report, data generated by SaaS systems increased by 145% last year and cloud data by 73% over the same period. On-premises data centers saw an increase of 20%.
AI will be the topic of cybersecurity conversation across the board
Both hackers and attacked organizations will use AI more, to attack or defend themselves. The first by developing malware, the second by including AI in their cybersecurity strategies. In the political world, the creation of “deepfakes” and AI-generated voices will become more popular, whether for the next US presidential election or other global political events.
Virtualized infrastructure increasingly under attack
As organizations become more sophisticated in protecting traditional targets (computers and mobile devices), some bad actors have already pivoted to try to penetrate other components of the infrastructure (SaaS and Linux applications, APIs and raw hypervisors). VMWare also warned in early 2023 that attackers had exploited vulnerabilities in its ESXi hypervisor and its components to deploy ransomware. These technologies represent new opportunities for attackers and this type of incident in 2024 will be more present.
Edge devices become targets of lone hackers
In September, U.S. and Japanese government agencies announced that hackers linked to the People’s Republic of China had used stolen or weak administrative credentials. The goal: compromise Cisco routers by installing hard-to-detect backdoors to maintain access. Often difficult to detect and doing a lot of damage, government intrusion groups see this trend as a way to differentiate themselves from ordinary ransomware gangs.
Edge devices will almost certainly be a major cybersecurity problem in 2024. To further this prediction, government programs might even defend edge access once morest other cybercriminal groups and repel them in order to maintain their stealthy access.
Spotlight on information systems security managers (CISOs)
The SolarWinds Corporation and Uber cases, involving the two companies’ CISOs, caused a lot of noise this year. The former was accused of defrauding investors by overstating SolarWinds’ cybersecurity practices and understating or failing to disclose known risks. The second was found guilty of covering up a ransomware attack while Uber was under investigation by the Federal Trade Commission for previous data protection lapses. In 2024, the role of the CISO will take on a more important dimension in terms of regulatory compliance with the arrival of regulations such as DORA for financial entities, EHDS, for health data or the NIS2 directive to strengthen the standards of European companies in terms of cybersecurity.
1702889828
#acceleration #business #data #heart #cybersecurity #challenges