2024 Cybersecurity Predictions
The new year brings new and more sophisticated threats to prepare for. Advancements in technology and changes in the economic climate have provided ample opportunities for cybercriminals to fill their pockets. Keep reading to learn about our predictions for cybersecurity trends you’ll see this year.
An increase in cyber-attacks in response to current world events
Following the 2008 recession, reported cyber crimes increased by 22%. As we know, far too many attacks go unreported, so the actual figure is likely much larger. As the world enters a new year of inflationary stress and social upheaval, we predict we’ll see another uptick in cyber-attacks. Cybercriminals love to leverage feelings of fear, greed, surprise and anger in their socially engineered attacks.
What this means for you: Be extra cautious with email requests that trigger your emotions. Pause to think if you were expecting this email or if it is a cleverly disguised phish preying on your emotional state. When in doubt, don’t open attachments, click on a link or provide any unnecessary personal information.
It’s now even easier for anyone to become a cybercriminal
Due to the increased access of information and tools like malicious software-as-a-service and Artificial Intelligence (AI), the previous technical barrier to becoming a cybercriminal has been slashed. Now anyone can purchase malicious software-as-a-service or utilize free AI tools to draft compelling phishes. This lowered barrier of entry will add to our predicted trend of an up-tick in cyber-attacks this year.
What this means for you: Continue to practice cyber safety. Turn on multi-factor authentication for your accounts (if available), visit a site directly rather than clicking on a link provided in an email and continue being cautious about opportunities that seem too good to be true.
Password Recycling will continue to be a major headache for organizations
Take a moment to think; in the past year, have you re-used a password? Have you used the same password and added a different number or symbol at the end to make it “new?” You’re not alone in your password practices. Password Recycling will continue to be an issue for organizations (and an easy entry way for cybercriminals to use credential stuffing to guess passwords and get access to data).
What this means for you: Use a password manager in your personal life and request that your organization supply access to a password manager for all employees. Password managers are the easiest tool to create unique, strong passwords that you don’t have to memorize. A password manager will generate long, unique and complex passwords for you and store them so you don’t have to remember every password. You’ll only be expected to remember one password to log in to your password manager!
The growing challenge of doing more with less
Economic pressures have caused organizations to tighten budgets, decrease spending and slow down on hiring. This has left teams smaller, with less resources but the same expectations as the year before. We predict this trend of limited resources to continue through 2024, with organizations continuing to monitor budgets and limit spending on additional team members, software and training.
What this means for you: Your organization’s cybersecurity team is most likely firing on all cylinders with less resources than they had the year before. It’s more important than ever to recognize that security is a team effort, and everyone plays a role in protecting the organization. You can help in protecting your organization by completing assigned training on time, reporting phishy emails in your inbox and reaching out to verify before clicking on unexpected links and attachments.
2024 phishes will be targeting your jobs
Last year we witnessed organizations downsizing due to economic pressures. This year we predict that attacks will be preying on emotions tied to job security and job hunting. Cybercriminals will be phishing with job offers that seem too good to be true or collecting your personal information through fake interview processes.
What this means for you: Be extra weary this year: if you found a job post on a third-party website that seems too good to be true, you should double check the company’s social media page to ensure they’re hiring or reach out to a hiring manager or recruiter for the company. Be cautious of companies that are hiring who have no digital footprint (this is a sure sign of a fake company created by a cybercriminal). An organization should never ask for your financial information during an interview process or ask you to pay for your equipment up front with the promise that you’ll be reimbursed later.