Trend Micro predicts that remote and cloud-based systems will be ruthlessly targeted in 2021. Training, cloud security and XDR are critical to cybersecurity in 2021.
Trend Micro expects home networks, home office software and cloud systems to be at the center of a new wave of cyberattacks in 2021. In its security forecasts for the coming year, the Japanese IT security provider predicts that cyber criminals will primarily view home networks as an entry point for compromising corporate IT and IoT networks.
Security Predictions for 2021
Turning the Tide: Trend Micro Security Predictions for 2021 report warns that end-users who regularly access sensitive data, such as HR managers and executives, are most at risk. Attackers are likely to primarily exploit known vulnerabilities in online collaboration and productivity software soon after they are disclosed. These will play a bigger role in attacks than zero days.
“It is slowly becoming clear what the world will look like after the pandemic. We assume that the trend towards remote working will continue in many companies and expect more aggressive attacks on company data and networks, ”says Richard Werner, Business Consultant at Trend Micro. “IT security officers should therefore invest more in user training, advanced detection and response (XDR) and adaptive access controls. Last year it was all about survival. Now is the time for companies to flourish again, with comprehensive security as the foundation. "
Cybercriminals Access-as-a-Service business models
In addition, cybercriminal Access-as-a-Service business models will grow, with a particular focus on the home networks of high-ranking employees as well as corporate IT and IoT networks. IT security teams should revise their remote work policies and safeguards to address the complexities of hybrid environments, where business and personal information is increasingly coming together on the same device. Zero trust approaches will also play an increasing role here.
As third-party integration continues, Trend Micro is also warning that exposed interfaces (APIs) will be a new preferred vector of attack for cyber criminals. These give them access to sensitive customer data, source codes and back-end services.
Cloud-based systems are another area where threats will persist into 2021 - from unsuspecting users and misconfigurations to attackers trying to take over cloud servers to deploy malicious container images.
Trend Micro recommends the following steps to contain threats in 2021
- Encourage the education and training of users to extend corporate best practices to the home - including a recommendation against the use of personal devices
- Maintain tight access controls for both corporate networks and home offices, including zero trust
- Increased investment in cloud-based security and patch management programs
- Add security expertise to threat detection to protect cloud workloads, email, endpoints, networks and servers around the clock
Cyber criminals continue to move where the money can be found in order to get the maximum financial return from their attacks. Companies and IT security officers have to be quick and vigilant in order to always be one step ahead of criminals.
More about analysis at TrendMicro.com
About Trend Micro As one of the world's leading providers of IT security, Trend Micro helps create a secure world for digital data exchange. With over 30 years of security expertise, global threat research, and constant innovation, Trend Micro offers protection for businesses, government agencies, and consumers. Thanks to our XGen™ security strategy, our solutions benefit from a cross-generational combination of defense techniques optimized for leading-edge environments. Networked threat information enables better and faster protection. Optimized for cloud workloads, endpoints, email, the IIoT and networks, our connected solutions provide centralized visibility across the entire enterprise for faster threat detection and response.