Topics In Demand
Notification
New

No notification found.

Cybersecurity Trends in 2022
Cybersecurity Trends in 2022

September 12, 2022

1158

0

Cyber threats have exponentially grown as a major concern as the world becomes increasingly digital and data reliant, and this is no less true in India. According to India’s Computer Emergency Response Team (CERT-In), India faced 11.5 million cyber attack incidents in 2021. This threatens critical infrastructure in the country like railways, airlines, power, communications and banking systems. Corporate attacks are also extremely common as many companies have sensitive and proprietary data that can be vulnerable to breaches. Cybersecurity has never been more important and keeping up to date on the latest trends can ensure that business operations and sensitive information are kept secure.

Trends in 2021 that will continue to be relevant

  1. Increased Ransomware Attacks

According to official estimates, ransomware attacks in India increased by 120% in 2021. Surveys indicate that 79% of companies with a digital presence have experienced at least one ransomware attack, while 49% of companies reported multiple attacks. This trend is likely to continue in the near future despite heavy investment. Third-party vendors are an ideal point of entry for malicious code, so there is a need to house them in a robust security infrastructure. But the greater threat comes from insider activity - 25% of ransomware attacks in 2022 are likely to come from insiders, a marked increase from 2% in 2021. There are many reasons for this, from the fact that ransomware attacks do not require technical expertise to the increased vulnerabilities that result from remote working.

  1. Security for Remote Working

Remote Working is here to stay, especially in the near future as COVID-19 continues to be a major public health threat. The recent Omicron variant and its resistance to vaccinations are enough of a concern that many organisations will require their employees to work remotely or utilise some form of hybrid working. This is likely to continue even after the worst of the pandemic is over as many employees will not want to return to offices and companies can save on real estate seat costs and overheads. This creates a larger attack surface for multiple vulnerabilities and it is essential that companies invest heavily in cybersecurity to protect their data and business.

  1. Nation-state Actors

2021 saw multiple nation-states posturing and taking offensive positions. Many countries have, or are in the process of building out, offensive “hack back” cyber operations. It is likely that they will want to deploy these tools to test and demonstrate the effectiveness of their investments.

Trends that will become relevant in 2022

  1. Endpoint Security

With the increased shift to working from home, it makes sense to adopt a cybersecurity approach that focuses on endpoint devices like laptops, mobile devices, POS systems and any other devices that connect to the network. Extended Detection and Response (XDR) capabilities will become increasingly prevalent and robust while traditional cybersecurity solutions like Security Information and Event Management (SIEM) systems will increasingly use AI for security automation and orchestration.

  1. Zero Trust Security Models

With cybersecurity becoming an increasing concern, many organisations will switch to a zero-trust network architecture (ZTNA). ZTNA is a security framework that always looks to verify each user, even if they are logged on to a corporate network or LAN. It is ideally suited to remote working as it can secure communications between users, devices and applications. There are multiple standards for what constitutes ‘zero trust’ but the best one may be NIST 800-207, especially after the Biden administration mandated it for US Federal Agencies after multiple high-profile security breaches.

  1. Maturing of Indian Cybersecurity

Cybersecurity in India has seen significant progress but there is still much to be done. The government will likely pass a data protection law and implement measures to improve cyber governance capabilities. Passing data protection and cybersecurity legislation will go a long way in protecting the country from cyber attacks from within and abroad. The government will also invest in infrastructure and raise awareness to protect critical systems.

 

India is on a path to digitisation in a big way. Whether it is Aadhaar or the government’s health card ID project, increasing amounts of information of individuals and companies are exposed to cyber threats. It is essential that this information is housed and processed within a robust security infrastructure that protects it from malicious actors, both external and internal. This will need to be accompanied by awareness efforts to protect against social engineering attacks. Investing in capabilities to respond to the trends mentioned will help secure sensitive information and critical systems, and will improve India’s rank on the Global Cybersecurity Index. 


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


Securonix is a leading company in next-gen Security Information and Event Management (SIEM). Securonix provides threat detection and response solutions powered by the most advanced analytics and built on a scalable, flexible cloud-native architecture. Securonix Next-Gen SIEM and XDR enable fast, precise incident response, providing high fidelity alerts with analytics that pioneered the UEBA category. For more information visit www.securonix.com.

© Copyright nasscom. All Rights Reserved.