![\"\"](\"https:\/\/dev.abes.com.br\/wp-content\/uploads\/2022\/08\/Ricardo-Rodrigues.jpg\")
*By Ricardo Rodrigues<\/i><\/p>\n*By Ricardo Rodrigues<\/i><\/p>\n
Every year, the\u00a0hackers grow in number, accuracy and sophistication<\/strong>\ud83c\udde7\ud83c\uddf7 Cybercriminals evolve by creating new types of attacks, targeting different areas of the IT infrastructure. It's mid-2022 and experts are recording a huge range of cybersecurity issues.<\/p>\n \u201cOrganizations around the world face\u00a0increasingly sophisticated data breaches<\/strong>\u201c, said Peter Firstbrook, vice president of research at Gartner. \u201cThe pandemic has accelerated hybrid work and the migration to the cloud, which presents a challenge for Chief Information Security Officers (CISOs), who must ensure a distributed defense on all fronts, in a context of\u00a0lack of skilled labor,<\/strong>\u00a0complemented.<\/p>\n Below are six points to watch out for this year, according to security experts:<\/p>\n 1.Internet of things, the forgotten concern<\/strong><\/p>\n IoT (Internet of Things) continues to be a challenge in terms of security, as there are\u00a0many devices that few take into account when enforcing data security.<\/strong>\u00a0It is estimated that by 2025\u00a0there will be 27 billion IoT devices<\/strong>, according to the\u00a0IoT Analytics<\/a>\ud83c\udde7\ud83c\uddf7 Each of them is an opportunity for a cybercriminal.<\/p>\n 2. There is more and more data hijacking<\/strong><\/p>\n data hijacking<\/strong>\u00a0are nothing new, but what is new is that they are becoming more\u00a0massive, misleading and dangerous<\/strong>\ud83c\udde7\ud83c\uddf7 According to Experian, all forms of artificial intelligence will lead to more sophisticated and difficult-to-fight data hijackings.<\/p>\n The consequences are worrying. Cybernews.com, in its\u00a0report<\/a>\u00a0of 2022 security threats, argues that paying to recover data\u00a0it's not always a good idea<\/strong>\ud83c\udde7\ud83c\uddf7 \u201cThere has been a lot of debate about the effectiveness of paying a 'ransom' among experts. While many insurers choose to pay, experts suggest that such a decision not only fuels cybercrime, but\u00a0also does not guarantee the return of data<\/strong>\u201d, warned the website.<\/p>\n The first step is to avoid hijacking and have ways to protect data<\/strong>\u00a0so that even though this information is encrypted, there are backups that are not corrupted. \u201cIt's like a thief walking through a neighborhood: there's less chance of him breaking into a house with bars on the windows,\u201d said Jack O'Meara of Guidehouse.<\/p>\n 3.The automation of attacks and fraud for everyone<\/strong><\/p>\n With so many attacks happening simultaneously, it seems hackers don't sleep. More and more attacks are automated and some are available for download:\u00a0criminals monetize their scams by turning them into a cloud service that cybercriminals simply subscribe to.<\/strong><\/p>\n These sophisticated attacks can include artificial intelligence features such as\u00a0voice bots that pretend to be companies and combine social engineering with robotics<\/strong>\ud83c\udde7\ud83c\uddf7 With automated attacks and hacking services available,\u00a0criminals hardly need skills to wreak havoc.<\/strong><\/p>\n THE\u00a0expert<\/a>\u00a0also warns that \u201ca large part of fraudulent transactions will be fueled by\u00a0consumers<\/strong>, what\u00a0are induced to voluntarily send data from their own devices<\/strong>, believing that they will be used for legitimate transactions\u201d.<\/p>\n 4.The exposed surface grows<\/strong><\/p>\n As the network expands and the number of applications and devices increases, so does the surface exposed to attacks. \ud83c\udde7\ud83c\uddf7Business weaknesses are expanding<\/strong>\ud83c\udde7\ud83c\uddf7 The risks associated with the use of cyber and IoT systems, open source software, cloud applications, complex digital supply chains, social networks, among others, have pushed organizations\u2019 exposed surfaces outside of a set of controllable assets.\u201d\u00a0argued Gartner<\/a>.<\/p>\n 5.More and more people get involved in security issues<\/strong><\/p>\n Business units have more control over their IT decisions, often buying solutions or resolving issues internally. So not only is the attack surface growing, but\u00a0there are very specific areas that IT doesn't necessarily see.<\/strong><\/p>\n This has led to radical decentralization and security-oriented decision-making, Gartner argues. \ud83c\udde7\ud83c\uddf7Enterprise cybersecurity needs and expectations are maturing and executives demand more agile security<\/strong>\ud83c\udde7\ud83c\uddf7 From there, \u201cthe scope, scale and complexity of digital business make it necessary to distribute decisions, responsibilities and accountability for cybersecurity among the units of the organization and away from a centralized function\u201d, he highlights.<\/p>\n This caused the CISO's role to shift to a higher level and more strategic position. \ud83c\udde7\ud83c\uddf7He went from being an expert on the technical subject to becoming an executive risk manager\u201d<\/strong>, said Peter Firstbrook. \u201cBy 2025,\u00a0a single centralized cybersecurity function will not be agile enough to meet the needs of digital organizations<\/strong>\ud83c\udde7\ud83c\uddf7 CISOs must\u00a0reconceptualize its matrix of responsibilities to empower boards, CEOs and other business leaders to make their own risk decisions<\/strong>\u00a0\ud83c\udde7\ud83c\uddf7<\/p>\n 6.Hybrid work: opportunity for hackers<\/strong><\/p>\n The pandemic has created a sea change from remote and hybrid work, creating unique challenges for security professionals. Many of the devices are not managed by the security team and, of course, connect from outside the network. This not only expands the attack surface, but many of these\u00a0devices and the networks they use to connect to have little or no protection<\/strong>.<\/p>\n