A Trend Micro report predicts global organizations will emerge more alert and better prepared in 2022 thanks to a comprehensive, proactive, cloud-first approach to mitigating cyber risk.
Research, foresight, and automation are critical for organizations to manage risk and secure their workforce. 40.9 billion email threats, malicious files and malicious URLs were blocked for customers in the first half of 2021 alone – a 47% year-over-year increase.
Researchers predict that threat actors in 2022 will focus ransomware attacks on cloud and datacenter workloads and exposed services to take advantage of the large number of employees continuing to work from home. Vulnerabilities will be weaponized in record time and chained with privilege escalation bugs to drive successful campaigns, according to the report.
“It’s been a tough couple of years for cybersecurity teams, disrupted by work-from-home mandates and challenged as corporate attack surfaces have exploded in size,” said Jon Clay, VP of threat intelligence for Trend Micro.
“However, as hybrid work emerges and more certainty returns day-to-day, security leaders will be able to plot a robust strategy to plug gaps and make the bad guys work much harder.”
Many organizations prepared for the 2022 cyber risk challenge
IoT systems, global supply chains, cloud environments, and DevOps functions will be in the crosshairs. More sophisticated commodity malware strains will be aimed at SMBs.
However, many organizations are predicted to be ready for the challenge as they build out and implement a strategy to proactively mitigate these emerging risks via:
- Stringent server hardening and application control policies to tackle ransomware
- Risk-based patching and a high-alert focus on spotting security gaps
- Enhanced baseline protection among cloud-centric SMBs
- Network monitoring for greater visibility into IoT environments
- Zero trust principles to secure international supply chains
- Cloud security focused on DevOps risk and industry best practices
- Extended detection and response (XDR) to identify attacks across entire networks