DigiCert 2022 security predictions

As our year winds to a close, many of the uncertainties that shaped 2021 remain. The cybersecurity challenges that accompanied the pandemic have persisted, as hybrid remote workspaces have become a way of life. And through it all, the threat landscape continues to evolve, as innovations in cloud computing and other arenas open new threats — some in unexpected areas. 

To take stock of where we’re at and what lies on the horizon, DigiCert’s team of cybersecurity experts, including Jeremy Rowley, Avesta Hojjati, Mike Nelson, Jason Sabin, Dean Coclin, Stephen Davidson, Tim Hollebeek and Brian Trzupek, take a closer look at what they expect to see next year:

Prediction: Supply chain, ransomware and cyberterrorism attacks will continue to escalate 

  • Supply chain complexity and vulnerabilities grow. The good news is best practices like code signing can help companies bake security into each stage of the development process. Awareness of the dangers of key sharing and inspecting code along each step of the development cycle, as well as preventing tampering after signing, will go a long way to secure code.  Setting up a software bill of materials (SWBOM) can also provide visibility into code sourcing, tracking all the components that make up a software app.
  • Cyberterrorism will embolden bad actors. New opportunities are emerging all the time, limited only by attackers’ imaginations, and high-profile technology environments such as private space launches and elections could prove inviting targets. Public and private organisations that are vulnerable to spectacular cyberattacks will need to redouble their focus on a zero-trust approach to security.
  • Ransomware will continue to expand its reach. Like cyberterrorist events, ransomware attacks often attract heavy press coverage, which can further encourage bad actors to seek publicity. We predict that ransomware attacks will continue to escalate, especially as the use of cryptocurrency expands — and makes ransom payments harder to trace outside the banking system. 

Prediction: Trust and identity step up in business processes 

  • Stakes are growing for digital signatures.We predict that more workflows will be associated with digital signatures, in industries like financial services, real estate, healthcare and education. Digital signatures are also helpful for organisations with hybrid work, to onboard or support remote employees.
  • Identity and trust power the IoT and more. Devices like healthcare monitors, industrial control devices, home security systems and vehicle sensors all depend on the integrity of their real-time data to support processes and decisions. As the adoption of 5G technology accelerates, we’ll see an increasing convergence in IoT and 5G applications, which could invite more attacks. PKI remains a robust, proven method to assure trust in IoT environments.   

Prediction: The post-COVID threats will persist and evolve

Last year’s predictions included a variety of security threats that were directly tied to the COVID-19 pandemic. As the pandemic slowly recedes, we predict that those threats will continue to remain. We are seeing increasing use of contactless technologies in airports, retail environments, restaurants, and other public spaces — all of which are vulnerable to cyberattacks. Digital ID schemes such as drivers’ licenses and healthcare records are becoming more widely used — and remain possible points that can be hacked.

Prediction: Post-quantum computing will challenge the security status quo 

DigiCert survey found that 71 per cent of IT decision-makers believe quantum computers will be able to break existing cryptographic algorithms by 2025. That means security organisations will need to rethink security for a post-quantum world. Post-quantum cryptography (PQC) can strengthen cryptography, decreasing the possibility of security breaches. But many companies lack a clear understanding of the crypto they deploy, so they will want to take proactive steps to locate all the exposed servers and devices and rapidly update them when a fresh vulnerability comes to light. 

Prediction: Automation will power cybersecurity improvements

2022 will bring an emphasis on technologies that allow organisations to do more with less, and automation will play a significant role in terms of security innovation in the New Year. A recent DigiCert survey showed that 91 per cent of enterprises are at least discussing automating the management of PKI certificates. AI and ML technologies will continue to play an essential role in powering this automation. 

Prediction: Cloud sovereignty will create new security demands

We predict that cybersecurity challenges will become even more demanding as cloud services become more granular. Organisations are deploying cloud solutions that are increasingly subject to local jurisdiction and regulations. Cloud sovereignty controls are focused on protecting sensitive, private data, and ensuring that data stays under owners’ control. 

Prediction: VMC trust and identity will change the face of email marketing

According to a study by Wpromote, 31 per cent of B2B marketers were making brand awareness their top priority for 2020. We predict that organisations will increasingly adopt Verified Mark Certificates (VMCs) to build their brand equity and strengthen trust. 

As part of a cooperative initiative with the Brand Indicator Message Identification (BIMI) initiative, VMCs certify the authenticity to display a logo to email recipients right in their inboxes before a message is opened. They are enforced by Domain-Based Message Authentication Reporting (DMARC) security.

Prediction: Organisations prioritising strategy/culture of security

We anticipate organisations working harder to strengthen a culture of cybersecurity, led from the top. We’re hearing more about employee education using phishing tests, mandatory online training and cyber simulation exercises taking place at the board level, to help C-level participants test their communication strategies and decision-making in the event of a major cybersecurity crisis. It’s clear that cyber attackers will continue to innovate and create more complex insidious threats. Mitigating tomorrow’s threats will require a commitment from leadership and good communication across every organisation.

More News
21 hours ago
Pandemic increased popularity of subscription and as-a-service model
Last year saw growth in the subscription economy, particularly in the technology space with some big names in IT – including Cisco, Dell, and IBM – announcing that they were moving to ‘everything-as-a-service' models. Analysts expect hundreds more large vendors to commit to this model moving forward.
2 days ago
Optimising customer experience as crucial as correct omnichannel capabilities
While many businesses over the last few years have recognised the need for consumer choice and adopted new channels as a result, TelcoSwitch believes that ensuring these channels are properly integrated and synchronised with one another is just as crucial so that a positive customer experience can be maintained.
3 days ago
TelcoSwitch enhances omnichannel offering
Software provider, TelcoSwitch has announced that its omnichannel customer experience platform for contact centres, 3Sixty, now offers integration with EKM.
3 days ago
Avocor appoints new Business Development Manager
Provider of interactive video conferencing solutions, Avocor, has expanded its strategic sales team in the EMEA region with the appointment of Carley Everton as Business Development Manager.
3 days ago
Neomounts by Newstar signs up with SYNAXON UK
SYNAXON UK has signed a new supplier partnership with Neomounts by Newstar, a provider of audiovisual and IT display mounts and protective screens.
4 days ago
Alcatel-Lucent Enterprise introduces new desk phones
Alcatel-Lucent Enterprise, a provider of communications, cloud, and networking solutions has launched a new range of desk phones.  
4 days ago
Safety First Aid Group partners with FusionPlus Data
UK manufacturer and supplier of workplace first aid and safety products, Safety First Aid has announced a new partnership with FusionPlus Data.
4 days ago
Agilico acquires INVU
Agilico has announced the acquisition of document management software provider, INVU. This investment represents a step in Agilico’s mission to build a comprehensive and compelling set of workplace technologies. INVU adds 300 valued customers to the group and further deepens our expertise in delivering and developing software solutions.
5 days ago
IT@Spectrum rebrands as Spectrum
Office technology business IT@Spectrum has rebranded as Spectrum to support its mission to help companies thrive in the digital-first economy.
5 days ago
OT Group supplier on CCS’ Tail Spend Solution framework
OT Group has been named as one of only two suppliers on Crown Commercial Service’s (CCS) Tail Spend Solution framework.

Login / Sign up