Written by Jon Fielding, managing director EMEA, Apricorn
1. Organisations will be challenged by resource constraints brought on by economic challenges, staff shortages, and tech layoffs. This scarcity of resources may put additional strain on IT teams leading to increased cybersecurity risks. I predict that an increase in cybersecurity breaches and data loss events may occur as a result of IT teams being stretched too thin.
In order to avoid data loss and cyber attacks, organisations should focus on employee education. Employees are the front line when it comes to preventing cyber attacks – yet according to Apricorn’s 2022 Global IT Security Survey, 72% of IT leaders say employees do not consider themselves to be a target that attackers would exploit to access company data, driven by perceptions that they are either too small a target and/or adequately protected.
By investing in employee education, organisations can fortify their data security with foundational prevention measures such as regular data backup with encryption, using strong passwords, and enabling multi-factor authentication. Combined, these efforts can help ensure data resiliency even for organisations with limited resources.
2. It’s likely there will be an increase in ransomware attacks driven by instability in the global cryptocurrency market. Ransomware attackers have often demanded payments in bitcoin and other cryptocurrencies for their data ransom schemes and the weakening of the crypto market may push fraudsters to try and make up their losses with additional attacks.
When it comes to ransomware and cyber attacks, organisations need to have a formal and well-practiced plan to back up and recover their data. The 3-2-1 method is an industry best practice that comprises making at least three copies of data, stored on at least two different media, with a least one copy encrypted and held off-site and offline.
Effective data backup protocols are essential in the event of a ransomware attack which may compromise more than one data source – and there is a proven need for increased data resiliency. In Apricorn’s survey, only one in five professionals reported following best practices such as backing up in real-time or using the 3-2-1 method which can streamline data restoration in the event of a ransomware attack.
3. The necessity for data restoration is a likely scenario in the coming year. With a variety of threats and risks – both internal and external – that could lead to data loss, IT professionals need to focus on making sure that they not only back up their data, but that the data backup is usable.
Data backups are only effective for restoration when the data is recent, accurate, and accessible. And with a reliance on cloud storage, increased risk of cyber attacks, and potential employee errors, IT professionals need to put their data backups to the test. Backup and recovery strategies need to be intentional, practiced, and effective as corrupted, compromised or out-of-date data will only hinder recovery efforts. Apricorn’s survey results highlighted that although 99% of respondents had a back-up strategy, 26% of those who had cause to recover information from a backup were unable to fully restore all their data.
4. Companies will face an increased risk of losing valuable intellectual property (IP) or having R&D efforts thwarted by data leaks. This will be driven by nation-state threats, market competition and internal threats.
There needs to be a push for data encryption across all levels of business.
According to Apricorn’s 2022 survey, 32% of IT leaders have introduced a policy to encrypt all corporate information as standard in the last year. In total, almost half (47%) of organisations now require the encryption of all data. Encryption can protect data when it’s both at rest and in transit. The stakes for not encrypting data are only getting higher: 16% of the IT leaders surveyed admitted that a lack of encryption had been the main cause of a data breach within their company, up from 12% in 2021.
5. Automobile hacking to access driver data will increase. Our cars do more than ever before and keep track of more data than probably any of us have thought about. And while we have seen simulations of vehicles being overtaken by hackers intent on crashing them or causing terror, the real issue is how to protect the data they collect.
This coming year, automobile manufacturers should consider how they can protect driver data ranging from dashcam footage to credit card information stored on phones connected to the vehicle via Bluetooth technology. Let’s not forget driver GPS location, which presents a serious security issue if accessed by the wrong person. The adoption of a 3-2-1 storage strategy and encryption of all data should be an industry best practice, with automotive manufacturers stepping up as innovators that recognise the need to protect this data.