Cybersecurity predictions are essential as they provide organizations with valuable insights into emerging threats and vulnerabilities, helping them proactively prepare and strengthen their defenses. These forecasts allow businesses to allocate resources more effectively, prioritize security initiatives, and stay ahead of evolving cyberattack tactics. Ultimately, cybersecurity predictions empower organizations to mitigate risks and protect their digital assets, ensuring the continuity of operations and safeguarding sensitive data.
We heard from some of the top experts in cyber on what the industry should expect in 2024:
Dan Shiebler, Head of Machine Learning, Abnormal Security
2024 will see greater adoption of open-source AI as an alternative to proprietary models, leading to more significant AI innovation.
We’ve seen tremendous improvements in large language model capabilities over the last 18 months. OpenAI’s GPT family reigns supreme, but the open-source model ecosystem has developed at a blistering pace. In the year ahead, we may see the playing field begin to level. As organizations become more strategic in how they build with generative AI, many will increasingly turn toward open-source models, which are more accessible and affordable, offer better abilities to scale, and with performance that is getting closer to that of proprietary models. This will boost competition, leading to increased innovation in the kinds of applications that can be developed.
Ryan Lloyd, Chief Product Officer, Guardsquare
In a shared cybersecurity model, mitigating cybersecurity threats for applications involves a collective effort. End users should be educated about the risks of mobile app fraud and phishing. Mobile app developers should take precautions to protect their applications from potential cybersecurity threats. Finally, at the operating system level, actions need to be taken to enhance the OS and APIs to reduce the risk of abuse. We’ve seen Google progressively make enhancements such as releasing APIs: 9, 29, and 31. Each of these provides varying levels of security around overlays. Google will continue to be confronted with the need to take back control of the Android ecosystem to deliver the required trust and security.
Mike Walters, President & Co-Founder, Action1
The spotlight on CISOs will intensify in 2024 as they navigate the delicate balance between technical expertise and business acumen, primarily driven by increased attention to supply chain attacks, which have catalyzed a paradigm shift, emphasizing the critical need for effective communication between CISOs and executive boards. CISOs are now in a pivotal position to advocate for enhanced cybersecurity measures and garner support for crucial initiatives across all organizational tiers. The cybersecurity landscape will face heightened regulatory scrutiny, particularly concerning the usage of software components. Supply chain attacks signal a growing risk involving compromises of widely used software repositories, underlining the vulnerabilities inherent in community-maintained repositories. This trend is expected to gain momentum in 2024, necessitating stricter controls over software components used in development processes, aligning with the White House's emphasis on the Security by Design principles and underscoring the need for improved oversight preventive strategies in software development deployment.
Ani Chaudhuri, co-founder and CEO, Dasera
As we approach 2024, the cybersecurity landscape is expected to evolve significantly, with a marked increase in targeted phishing attacks leveraging human vulnerabilities. The sophistication of these attacks is anticipated to rise, exploiting a range of industries and technologies. Artificial Intelligence (AI) will play a dual role in cybersecurity. On the one hand, AI-driven attacks will become more advanced and adaptable, surpassing traditional threats, including highly personalized phishing campaigns, automated exploitation of IT system vulnerabilities, and adaptive malware capable of evading detection. On the other hand, AI will also be instrumental in developing more robust cybersecurity measures. Overall, 2024 is poised to be a year where cybersecurity challenges become more diverse and complex, necessitating innovative solutions and heightened vigilance across all sectors.
James Campbell, CEO and Co-founder of Cado Security
Geopolitical Conflicts: The geopolitical landscape, particularly in regions like Ukraine and Israel, remains a hotspot for cyber espionage and state-sponsored cyberattacks. These conflicts present dual challenges: the immediate threat of cyberattacks and the long-term implications of cyber warfare strategies becoming integrated into traditional warfare.
Ransomware and Insurance: The persistent ransomware threat will continue challenging businesses worldwide. In tandem, the cyber insurance market will likely undergo significant transformations, adapting its coverage criteria and introducing more rigorous prerequisites for policyholders.
Cybercrime-as-a-Service: The democratization of cyber tools means that even novices can launch potent attacks. This easy access complicates attribution, as more copycat attackers use political narratives to justify their actions. The blurred lines between state-sponsored actors, hacktivists, and cybercriminals will challenge threat intelligence and response strategies.