Cyber Security predictions 2022

Another year has come and gone and as we enter a new year, we have again asked our vendors to look into their crystal balls and give us their predictions for what 2022 will have in store. Below is what they had to say.

2022 predictions

We’ll see increased use of DNS-over-HTTPS (DoH) by malware

The reason for this is because DoH provides an encrypted channel to the DoH server. DoH adoption is increasing and malware developers are more aware of it as a means to bypass security controls.

We’ll see ISPs and enterprises deploy DoH defensively on their own DNS infrastructure (to prevent fallback to third-party DoH servers). Why now? “DoH is a newer technology, relatively speaking. Being able to run your own DNS servers that support DoH is even newer.”

Cricket Liu, Infoblox EVP and Chief Evangelist

Demand for detection and response technologies will increase

Last year, a series of high-profile attacks repeatedly demonstrated the extent to which ransomware has gone from opportunistic criminal activity to advanced extortionate threat. With stronger cyber regulation and scrutiny coming in from the like of the US government, organisations will be forced to rethink their approach. With this, demand for technologies that can provide detection and response, as well as forensic level insight, will increase in 2022.

Raja Mukerji, co-founder and CCO at ExtraHop

More organisations will adopt a hybrid workforce, which will need securing

The use of physical and digital identities is likely to increase in 2022, as more organisations begin to adopt a hybrid workplace and more organisations will adopt zero-trust approaches to verify identities of remote workers and protect company data.

Entrust

2022 will be the year that the UK’s data sovereignty begins to diverge from GDPR

With an increasing number of state governments around the world trying to take control of how data is used and stored, 2022 with be the year that the UK’s data sovereignty diverges from GDPR. However, any new regulation would need to allow for free and easy transfer of information across international borders, while also keeping the data secure.

Thales Enterprise

‘Organisations will try to achieve SecDevOps in 2022 and ZTNA will help’

2022 will see more organisations look towards ZTNA as a solution to provide both efficient security and scalability. By implementing a ‘zero trust’ approach to security, and ensuring all teams are applying security to their processes, while keeping high level policy enforcements, organisations can achieve SecDevOps by aligning their business needs with their security needs. By employing a single unified process, organisations can ensure that their network security still meets business demands in a similar agile and even more secure way.

Kurt Glazemakers, CTO at Appgate

Increase in RDoS attacks throughout 2022

Over recent years, cyber attackers have become increasingly interested in extorting money from organisations by threatening to launch DDoS attacks at critically important online business systems. Unfortunately, when even one high-profile victim decides to engage with the cybercriminals, by paying a ransom, we tend to see a further increase in these types of attacks. We expect to see ransom DDoS continue to increase through 2022.

Sean Newman, VP Product Management at Corero Network Security

‘The rise of automation’

2022 is the year that C suite recognise that they are getting further and further behind on their security projects. They’ll start to turn to RPA (Robotic Process Automation) and enterprise automation to help their teams become more productive in the battle against the cybercriminals. If they cannot hire talent, automation allows them to augment this deficiency. This effort takes SOAR (security orchestration automation and response) to a new level.”

Tom Huntington, Executive Vice President of Technical Solutions at HelpSystems

Supply chain attacks and zero-day markets will rise

Among the lessons learned in 2021, supply chain attacks targeting Managed Service Providers (MSPs) were the hardest to mitigate. In contrast to other threats, supply chain attacks are more silent, more difficult to stop and propagate at a faster pace. Professional cyber-crime groups will focus more on breaching MSPs to deliver ransomware to larger pools of potential victims.

Bitdefender Enterprise

Overemployment could become an issue

Cryoserver will be assisting employers in dealing with another consequence of working from home: “overemployment”, that is, people taking on second, secret jobs.  Our solution can help HR to spot an unusual decline or increase in emails being sent from or received by a particular user.  HR can use these facts to deter employees from moonlighting and identify someone who’s working at a second job in their first employer’s time.

Robin Bingeman, Director at Cryoserver

Conclusion

So, there you have it, the Kite vendors’ 2022 predictions. Will these predictions come to pass? We will find out throughout the year. We hope you have enjoyed this blog and we hope it has provided you with some insight into how the industry could look this year.

If you would like to find out more information on our vendors, then feel free to check out our website or our vendor portfolio below.

Kite Vendor Portfolio