SAN JOSE, Calif., December 07, 2022–(BUSINESS WIRE)–Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today released its annual threat predictions report for 2023. Forecasts from the Trellix Advanced Research Center anticipate spikes in geopolitically motivated attacks across Asia and Europe, hacktivism fueled by tensions from opposing political parties, and vulnerabilities in core software supply chains.
"Analyzing current trends is necessary but being predictive in cybersecurity is vital. While organizations focus on near-term threats, we advise all to look beyond the horizon to ensure a proactive posture," said John Fokker, Head of Threat Intelligence, Trellix. "Global political events and the adoption of new technology will breed novel threats from more innovative threat actors."
The Trellix Advanced Research Center brings together hundreds of the world’s most skilled security analysts and researchers to serve the global threat intelligence community and organizations with the latest threat indicators and insights collected from Trellix’s extensive sensor network.
Trellix Advanced Research Center forecasts the following threats in 2023:
Geopolitics and grey-zone conflict. Geopolitical factors will continue to be a high motivation for misinformation campaigns and cyberattacks timed with kinetic military activity.
Hacktivism takes center stage. As groups of loosely organized individuals fueled by propaganda align for a common cause, they will ramp up their use of cyber tools to voice their anger and cause disruption across the globe.
Skeletons in the software closet will multiply. Both threat actors and security researchers will heighten their study of underlying software frameworks and libraries resulting in an increase in breaches related to software supply chain issues.
Increasing activity by teen cybercriminals. Teens and young adults will engage at increasing levels in cybercrime – everything from large-scale attacks on enterprises and governments to low-level crimes that target family, friends, peers, and strangers.
Declining accuracy of code-based attribution. The outsourcing of malware creation and operation, diversification of malware development, and use of leaked source code will make attribution of cyberthreats to specific threat actors increasingly challenging.
Imminent global cyberthreat to critical infrastructure as cyberwarfare evolves. A significant rise in advanced cyberactors causing disruptions to critical infrastructure in vulnerable targets will be observed.
With more collaboration comes more phishing. Weaponized phishing attacks will increase across commonly used business communication services and apps, like Microsoft Teams, Slack, and others.
"Alexa, start mining bitcoins." The advanced capabilities of consumer and enterprise IoT devices will be leveraged by hackers to mine cryptocurrencies.
Space hacking: only go up from here. The compromise of satellites and other space assets will increase and become more public in 2023.
Here's my number, so call me, maybe. There will be a huge jump in reverse-vishing – or voice phishing – attacks, with less tech-aware users being the primary target.
Attacks against Windows domain will scale. More domain privilege escalation vulnerabilities will be discovered as well as more real-world attacks against Microsoft Windows with the explicit goal of complete network takeover.
Additional Resources
Report: Trellix Advanced Research Center 2023 Threat Predictions
Webinar: Top 3 Insights from the Trellix Advanced Research Center 2023 Threat Predictions
Trellix Advanced Research Center
Source: Trellix
About the Trellix Advanced Research Center
The Trellix Advanced Research Center brings together an elite team of security professionals and researchers to produce insightful and actionable real-time intelligence to propel customer outcomes and the industry at large. Driven by the industry’s most comprehensive charter, our skilled researchers detect trends ahead of the market to empower our customers and partners to solve for emerging threats. More at https://www.trellix.com/en-us/advanced-research-center.html.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221206005984/en/
Contacts
Sarah Erman
media@trellix.com
The volunteers for aldermanic candidate Marija Tomic spoke exclusively to CBS 2 Political Investigator Dana Kozlov.
Zahkee Austin is still awaiting a court appearance on an attempted homicide. Matt Petrillo reports.
The four companies will each participate in the Joint Warfighting Cloud Capability contract, which runs through June 2028.
Former Twitter CEO Jack Dorsey has called on new boss Elon Musk to release the full "Twitter files" without filter in the name of transparency.
Adobe Inc (NASDAQ: ADBE) slashed close to 100 jobs, concentrated on sales, taking a leaf out of its peers in using staff cuts to reduce expenses. Some of the employees who lost their jobs got the opportunity to find other positions at the software company, Bloomberg reports. Adobe’s downsizing is far smaller than Amazon.com Inc (NASDAQ: AMZN) and Meta Platforms Inc (NASDAQ: META). Also Read: Some Meta Employees Embroiled In Dispute Over Severance Package Promised By Mark Zuckerberg Adobe employe
Microsoft poses the biggest threat to incumbents in the cybersecurity sector as it sells multiple products to companies in discounted deals.
Russia's No. 2 bank VTB was hit by the largest cyber attack in its history, it said on Tuesday, warning of temporary difficulties in accessing its mobile app and website, but assuring customers that their data remained safe. State-owned VTB said it was repelling the distributed denial of service (DDoS) attack, in which hackers attempt to flood a network with unusually high volumes of data traffic in order to paralyse it. "The bank's technological infrastructure is under an unprecedented cyber attack from abroad," VTB said in a statement.
CGI (NYSE: GIB) (TSX: GIB.A) is opening a new Space and Geospatial Center of Excellence in Finland to partner with organizations across industries to use space and geospatial data technologies. The aim of these partnerships is to help organizations enhance their operations and customer or citizen experience; pursue new business opportunities made possible by advancements in space; and address pressing societal challenges, such as climate change and security threats.
Solana devs look to rebuild as they unwind DeFi on the network from Sam Bankman-Fried’s Serum, replace it with OpenBook, and plot a course for the future.
EU privacy officials ruled Facebook's parent company should not require users to agree to personalized ads based on their online activity, according to a report in the Wall Street Journal.
A French watchdog has ordered U.S. e-commerce giant Amazon.com to pay 3.3 million euros ($3.5 million) in penalties for failing to modify contractual provisions related to third-party sellers by the deadline it set, the watchdog said on Wednesday. France's DGCCRF consumer fraud watchdog said in a statement Amazon had been ordered to make the changes, aimed at correcting imbalances in contractual terms between Amazon's online marketplace and third-party sellers, by March 22. Amazon had complied with DGCCRF's orders a month later, on April 28, the watchdog said, which led to penalties equivalent to 90,000 euros per day of delay.
Unfortunately for execs, at the same time recruiting is posing a major challenge, IT infrastructure is becoming more costly to maintain. Aiming to overcome some of the blockers to success in IT, Lucas Roh co-founded MetalSoft, a startup that provides "bare metal" automation software for managing on-premises data centers and multi-vendor equipment. MetalSoft allows companies to automate the orchestration of hardware, including switches, servers and storage, making them available to users that can be consumed on-demand.
European Union privacy regulators say Facebook and Instagram shouldn’t use their terms of service to require users to accept ads based on their digital activity.
CISCO LIVE — Cybersecurity resilience is a top priority for companies as they look to defend against a rapidly evolving threat landscape, according to the latest edition of Cisco's annual Security Outcomes Report launched today.
Meta says it will provide a more in depth response to the oversight board's research of its cross-check system for review within 90 days.
The Federal Trade Commission's newly announced campaign against misleading crypto ads comes almost a year after the U.K. and Singapore launched tough crackdowns.
This "Merge" will mark the second time in blockchain history that a chain swaps out its old model for proof-of-stake
Alphabet's Inc. Google, Oracle Corp., Amazon.com Inc., and Microsoft will share a $9 billion hybrid contract to provide secure cloud services for the Pentagon worldwide, the Department of Defense said Wednesday.
AutoZone Inc. reported better-than-expected revenue and earnings Tuesday, driven by growth in both commercial and retail sales. The seller of automotive replacement parts recorded fiscal first-quarter net income of $539.3 million, or $27.45 a share, compared with net income of $555.2 million, or $25.69 a share, in the year-earlier period. The FactSet consensus was for $25.18 a share in earnings. AutoZone's revenue rose to $3.99 billion from $3.67 billion a year before, while analysts tracked by
The former wonder boy could be behind bars for the rest of his life, according to U.S. federal sentencing guidelines.
source
—
Note that any programming tips and code writing requires some knowledge of computer programming. Please, be careful if you do not know what you are doing…