Get help with JNDI vulnerability CVE-2021-42392! Get CSW's Detection Script

Back to all predictions

Predictions for 2022
on
#Cyber Attacks

Check out predictions from Cybersecurity experts

2022 Predictions

Prediction #1

comma

Organizations transitioning to Windows 11/Server 2022 are goldmines for zero-day attacks. Especially, Windows 11's Android subsystem can act as the initial attack vector for threat actors. This, combined with the work-from-home situation, is a recipe for disaster. by Karthikeyan Ravishankar

Share via: fb icon twitter icon insta icon

Prediction #2

comma

Nation-states will engage in more espionage and information collection activity. They will increasingly use cut-outs and proxies, providing plausible deniability and providing them with another attack capability. These will be used to surveil political oppositionists, internal dissidents, and human rights groups. by Emilio Iasiello

Share via: fb icon twitter icon insta icon

Prediction #3

comma

I foresee in 2022 that China will increase the severity and frequency of cyber attacks against the US. I expect the delisting of Chinese companies in 2022 on NYSE/NASDAQ that will add to the global drama. International relations between the superpowers have already deteriorated to a new low and will continue to fracture. by George Do

Share via: fb icon twitter icon insta icon

Prediction #4

comma

Cyber threats related to Metaverse can increase as it gives cybercriminals a new environment to use their old scams. by Ghouse Syed

Share via: fb icon twitter icon insta icon

Prediction #5

comma

State-sponsored threat actors and crypto-savvy threat actors would be a new danger. The governmental and private sector organizations must adopt higher security standards to avoid this new dynamic. by Sanjay Rameshkumar

Share via: fb icon twitter icon insta icon

2021 Predictions

Prediction #1

comma

Cyber-attacks on businesses will be more sophisticated using a combination approach of social media (LinkedIn), email, and cloud services combined, say an attack starts in LinkedIn with an innocent message to connect, then messages exchanged, then finally information is sent in an attachment (all via LinkedIn), which carries a link to a cloud platform such as AWS. Google, Azure, etc., which in turn is where the malicious payload is. by Steve Stobo

Share via: fb icon twitter icon insta icon

Prediction #2

comma

As our office environment shifts from a work-from-home to a work-from-anywhere environment, malicious actors may turn their attention to an easier target; the home systems. This 2021, it is even more crucial for businesses to invest and commit to building a strong security culture. Empowering every individual to be a strong first line of defence in their own homes should be a priority. by Shamane Tan

Share via: fb icon twitter icon insta icon

Prediction #3

comma

“In the period of 2021, more successful security attacks and compromise will be encountered, with many high profile organisations, in multiple sectors falling on their own sword of insecurity, and will thus pay the price of the reactive style of a supposed security posture. Sadly, 2021 will not be the year we see real steps taken toward Cyber Resilience – but it will be the year in which we finally see a more serious mindset toward addressing cyber insecurity with a proactive security posture.” by Prof John Walker

Share via: fb icon twitter icon insta icon

Prediction #4

comma

Spear phishing, password spraying, and exploiting internet-facing assets, are the most popular infection vector when it comes to nation-states actors' activity and will continue to dominate in 2021. by Arjun Basnet

Share via: fb icon twitter icon insta icon

Prediction #5

comma

Definition of IT assets will be redefined to include social media profiles, Internet Archives which will be actively targeted by cybercriminals. by Vengatesh

Share via: fb icon twitter icon insta icon

Prediction #6

comma

More companies will suffer CEO fraud, Account takeover, malware, ransomware, phishing etc and AI and machine learning will be a marketeers’ dream come true and offer the golden ticket for security companies to promote even more heavily in 2021. by Steve Stobo

Share via: fb icon twitter icon insta icon

Prediction #7

comma

Attacks against 3rd party suppliers will increase as hackers look for smaller, softer targets that are either connected to or share Personal Identifiable Information (PII) with larger corporates, but do not necessarily have the highest levels of security protection. Without knowing the security and compliance risks that your 3rd party suppliers have you will be blind to the risks that they pose to you. by Steve Stobo

Share via: fb icon twitter icon insta icon

Prediction #8

comma

With remote work, employees are no longer within the safety and confines of their corporate network. In a home environment, they would not be protected from malicious websites, drive-by downloads, malvertisements, as they would be in their corporate network behind security policies and protection layers. Chances are much higher that endpoints could inadvertently download a malicious malware or be infected with ransomware. by Wai Kit Cheah

Share via: fb icon twitter icon insta icon

Prediction #9

comma

Corporate networks or devices which can be connected by employees from outside the company's intranet or security infrastructure from coffee shops, restaurants, railway stations, hotels and other public wifi access which will be more open and prone to cyber attacks by Satish

Share via: fb icon twitter icon insta icon

Prediction #10

comma

Many companies treat IT departments as a cost center. I’ve seen companies with more janitors and receptionists than IT personnel. Unfortunately, this translates to many unpatched systems and networks. As the IT teams scrambled to setup VPN for employees to work remotely, they often fail to validate if these VPN gateways are patched or have any critical vulnerabilities. Sometimes, these IT teams are inexperienced and are not aware of best practices. Many of these companies will have revenue and profit impact and in cutting costs, they will reduce spend. Some will do less in security, e.g. So, I predict that there will continue to be many more compromised networks and many more incidents of data breaches for most of 2021. by Wai Kit Cheah

Share via: fb icon twitter icon insta icon

Do you have a cybersecurity prediction for 2022?

csw

Secure your environment from cyber-attacks!

Know How

incognito