By now we know there’s no crystal ball to predict the challenges cybersecurity will face in 2021. That includes technology in the making that will need protection from those who look to exploit it. There’s clearly a lot at stake, but one thing for sure is there will be considerably more technology to protect this year. Unforeseen events like the coronavirus have demanded rapid changes to the way we work, shop, and live, creating security weak spots that still linger. Cybersecurity efforts that struggled to keep up in 2020 have an even more daunting task in 2021.
Below are five areas of technology and cyberthreats heading our way this year:
CLOUD JACKING
There’s no denying dependence on the cloud is growing, and the need for security measures to match and surpass that growth is necessary. Cloud jacking is an emerging threat that happens when a hacker steals the information of a cloud account holder to gain access to data systems for identity theft and other crimes. Security experts have no doubt that cloud dependence is sure to continue growing, and that will make cloud jacking an increasing threat vector. Experts warn cloud jacking threats need to be anticipated and managed correctly and not be disregarded.
OT/ICS ATTACKS
Industrial control systems (ICS) have been and continue to be targets loaded with sensitive data that cybercriminals use to their own advantage including selling it to the highest bidder. Ransomware attacks, espionage, business email compromise (BEC) schemes, and much more is capable through growing ICS attacks. Oil, gas, and manufacturing companies will see renewed attacks on their OT (operational technology), the computing systems used to manage and control industrial operations. In fact, there was recently an attack on a Florida water system. The perpetrators managed to infiltrate the water filtration system and raise the sodium hydroxide amount in the water supply to a poisonous level. While this was generally deemed an unsuccessful attempt due to an alert operator who immediately adjusted it back, these types of attacks should be kept at the front of the mind. The expectation is that 2021 will no doubt bring new and unconventional attacks to OT/ICS that cybercriminals will find a way to monetize. Not only can these criminals affect the details of how industries work, but they can also sell stolen sensitive data to the highest bidder, including to U.S. adversaries.
INTERNET of THINGS (IOT)
The Internet of Things (IoT) is technology we depend on daily to help us navigate our cyber-intertwined lives. The IoT is the network of objects that allow us to connect and exchange data with other devices and systems over the internet. From smartphones to smart homes to TV’s, doorbells, and cameras, much of what we use is connected to the IoT. As such, the security challenges are many since these “things” create huge attack surfaces along with increased security vulnerabilities of our devices. It’s projected that by 2023, the number of IoT devices will increase to 43 billion. This growing number, including that of 2021, will increase the likelihood of attacks by bad actors in the U.S. and also by nation-state actors and international hacking groups.
5G
The highly hyped 5G technology is now within reach for enterprise and everyday users. The lightning speed connections are highly anticipated and mobile device network providers have been marketing their products for 5G services. Cybersecurity experts note that 5G is supposed to be more secure than its predecessor, but they warn that “more secure” does not mean totally secure. With that in mind, as businesses work to accommodate this new technology, they open themselves to attacks taking advantage of 5G speed. As information travels more quickly, so will the speed of cyberattacks in 2021.
REMOTE WORK
The coronavirus threw the working world into a situation it wasn’t prepared for. The chaos to connect remotely was encountered by staff, employers, and worst of all, cybercriminals. Since remote working is expected to surge in 2021 and beyond, the opportunities for bad actors to take advantage of poor remote security have increased the likelihood of attacks. Companies that rushed to enable remote working and cloud use may have bypassed their own basic security practices to do so. 2021 will see more data breaches, cloud jacking, and other attacks happen due to hastily set security for remote employees and their employers.