When the topic of 2021 security predictions came up at a recent meeting of top cyberindustry executives, several leaders starting laughing.
“Really? After we completely blew it last year?” said one chief strategist.
“Wow! We’re not even out of the woods yet with COVID-19,” said a marketing expert. “How can we talk about the post-pandemic world with credibility?”
“I doubt many cybersecurity companies will fully participate right now Dan. So many moving parts, industry disruptions, budget challenges, political issues, new tech unknowns and more. …”
The many “bah humbug” thoughts and opinions shared about even attempting to look at upcoming online cybertrends reminded me of this 2016 Computerworld editorial on the folly of cybersecurity predictions and my response in CSO Magazine explaining why we continue to have more security predictions and how you can benefit.
But despite some naysayer forecasts assuming a lack of interest in security predictions for the coming year, I can definitively announce another growth in new security industry predictions, forecasts and related trend reports (with new lists) for 2021.
In the past two months I have received a deluge of emails with interest from small, medium and large companies who want to get on board the prediction/forecast train now. Many others are back for more.
Some cybersecurity findings that will impact next year require digging and Google searching. Nevertheless, there are more companies participating, with more interest, more forecasts, and bolder statements about future cybersecurity directions and our coming online life after the pandemic recedes.
Yes, we are seeing some new twists, as we do every year. More companies are renaming these reports away from the traditional “predictions” or “forecast.” White papers and reports are using words like “trends,” “findings,” “cyberissues,” “recommended solutions,” “actions required,” “themes” or other words that still point to their desire to describe what happened, what is coming next and what needs to be done now to prepare for 2021 and beyond.
A few companies, like McAfee, decided to hold off and issue their prediction reports in January, so they are not included. But no matter which words are used, all of these organizations seek to be seen as “thought leaders” and/or trend-setters for new, global cybersolutions and even crisis imperatives.
Who’s right? Who should we listen to after 2020? Where are the “true thought leaders?” You will need to decide, but without a doubt, these lists can help. I urge you to follow the links and dig much deeper into key topics.
Last week, I released my roundup of 2020 cybersecurity trends, which describes how COVID-19 brought a global cyber pandemic. Shortly after that year-end report was released, we learned about the massive scale of the SolarWinds breach, which even impacted the U.S. nuclear weapons agency. Therefore, the cyber pandemic was even broader and deeper than previously revealed — while the headline topic remains the same.
Reviewing 2020 Predictions — Good, Bad and Ugly
Last December, in “The Top 20 Security Predictions for 2020,” we reported this about the new decade: “Common prediction themes across vendors include the 2020 elections in the U.S., more targeted ransomware, more ways to attack the cloud, and an explosion of problems with deepfake technology.
“There’s disagreement on the most important cyberthreats to focus on as we head into 2020, even though everyone agrees that cybersecurity is more important than ever before. Just as in 2019, we have the continuation of arguments for and against AI (i.e., how helpful is AI really and will our enemies use it or not?). Also, the continued disagreement on whether cloud versus mobile threats are more of a challenge. …”
Of course, there is no mention of a global pandemic and the impacts that it would have regarding an explosion of security issues from more staff working from home. I did write this: “Finally, will cyber terrorism reemerge? Very few dire predictions (again) about Cyber 9/11s or Cyber Pearl Harbors or even people dying in hospitals from cyberattacks.”
Little did we know that a cyber pandemic would be the top year-end summary story for 2020, which would include ransomware, data breaches, health-care attacks impacting patients and now the SolarWinds data breach. In June 2020, I published this mid-year set of blog predictions in a special coronavirus edition with select vendors.
2021 Security Industry Prediction Trends
Moving on to predicting 2021, here are some major trends that cut across a large number of cybersecurity industry prediction reports:
- There will be huge security impacts in the coming year from the move to work from home (WFH) fueled by COVID-19. More attacks will occur on home computers and networks, with bad actors even using home offices as criminal hubs by taking advantage of unpatched systems and architecture weaknesses.
- The rush to cloud-everything will cause many security holes, challenges, misconfigurations and outages.
- More growth in the security industry. Our numbers of new products and new year mergers and acquisitions will cause network complexity issues and integration problems and overwhelm cyber teams.
- Privacy will be a mess, with user revolts, new laws, confusion and self-regulation failing.
- Identity and multi-factor authentication (MFA) will take center stage as passwords (finally) start to go away in a tipping-point year.
- Tons of high-profile Internet of Thing (IoT) hacks, some which will make headline news.
- Ransomware will get worse and worse — with new twists, data stealing prior to encryption, malware packaging with other threats and very specific targeting of organizations.
- Lots of 5G vulnerabilities will become headline news as the technology grows.
- Advanced Persistent Threats (APT) attacks will be widely available from criminal networks. The dark web will allow criminals to buy access into more sensitive corporate networks.
- Mobile devices, including smartphones, will be attacked in new ways, including app stores.
- Cryptocurrencies will play new roles, with criminals switching often for hiding advantages.
- As digital transformation projects grow, many plans will implode as security challenges mount.
The Top 21 Security Predictions by Security Industry Companies
Important Note: I urge readers to visit these company portals, read their full prediction reports and see the details on each research item. Our goal is to point you in the right direction for more details and solution specifics.
1) Trend Micro takes the top prize (again) for another outstanding research report — with so much more packed into an easy-to-access document with references as well as great summaries and sub topics.
Turning the Tide: Trend Micro Security Predictions for 2021 starts with the summary: “In 2021, organizations will scramble to deal with the far-reaching effects while striving to stay secure as online dependency grows. We discuss the developments that are not only plausible but ones that should also be anticipated. We look into the drivers of cybersecurity’s near future and how organizations will have to adapt as threats and technologies exert their influence. Our report aims to empower organizations and decision-makers to frame a proper, strategic response that can withstand change and disruption.”
This year, Trend Micro offers details on:
- What At-Home Workers Need to Know (including their mid-year 2020 roundup)
- What Enterprises Need to Know
- What Governments Need to Know
- Future-Looking Cybersecurity Solutions
Specific Trend Micro security prediction highlights:
- Threat actors will turn home offices into their new criminal hubs
- Teleworking setups will force organizations to confront hybrid environments and unsustainable security architectures
- Attackers will quickly normalize newly disclosed vulnerabilities, leaving users with a narrow window for patching
- Exposed APIs will be the next favored attack vector for enterprise breaches
- Enterprise software and cloud applications used for remote work will be hounded by critical-class bugs
2) Watchguard once again issued a great report entitled 2021 Cybersecurity Predictions with videos and much more. “In 2021 and beyond, we predict that cyber criminals will find new and innovative ways to attack individuals, their homes and devices, in order to find a path to your trusted corporate network. The global pandemic has rapidly accelerated the existing shift toward remote work, where employees operate beyond the protection of the corporate firewall. In turn, hackers will exploit vulnerabilities found in the gaps between people, their devices, and the corporate network.”
Watchguard’s top eight predictions include:
- Automation Drives Tidal Wave of Spear Phishing Campaigns
- Cloud-Hosting Providers Finally Crack Down on Cyber Abuse
- Hackers Infest Home Networks With Worms
- Booby-Trapped Smart Chargers Lead to Smart Car Hacks
- Users Revolt Over Smart Device Privacy
- Attackers Swarm VPNs and RDPs as the Remote Workforce Swells
- Attackers Pinpoint Security Gaps in Legacy Endpoints
- Every Service Without MFA Will Suffer a Breach
3) FireEye — FireEye always offers an excellent set of helpful materials in their report. This year the report is called A Global Reset: Cyber Security Predictions 2021. The 12-page FireEye/Mandiant forecast addresses these topics:
- How remote work will evolve and affect organizations operationally
- Insights into how threat actors will take advantage of the pandemic
- The growing need for intelligence-led security validation
- The future state of cloud security
- Nation-state activity and changing TTPs
- How ransomware has pivoted from business risk to a national security risk
Here’s an excerpt:
“Despite the urgency of their work, threat actors will continue to target healthcare providers and vaccine makers. In the near term, the coronavirus will likely continue to have a significant impact on normal business operations, with a focus on supporting remote work, virtual events and new productivity platforms. The pandemic forced almost every organization to become better at operating under significantly changed working conditions and in the wake of a changing environment, IT and IT security challenges will most likely persist throughout 2021 .In the longer term, technology solutions will step in to facilitate the return to work, school and other activities, potentially introducing new risks for privacy, personally identifiable information (PII) and protected health information (PHI). Similarly, the desire to reduce the risk of human exposure may further accelerate the shift to autonomous vehicle and robotic solutions in transportation, manufacturing and other fields.”
4) Splunk has again produced an impressive (21-page) pdf/ebook with some excellent analysis and their Data Security Predictions for 2021. Here are a few:
- Pandemic workforce disruption will drive a greater focus on endpoint security and the zero-trust model
- Supply chain attacks mean that the bad guys won’t just hack your organization — they’ll hack your stuff
- Faster-moving digital transformation will include more artificial intelligence in the SOC
“The sheer amount of security alerts, of potential threats, is too much for humans to handle alone. Already, automation and machine learning help human security analysts separate the most urgent alerts from a sea of data, and take instant remedial action against certain threat profiles. A July article in VentureBeat noted that Chase is using machine learning not only to target customers with more appealing marketing campaigns; the banking giant uses supervised and unsupervised machine learning algorithms to identify known and novel security threats.Ram Sriharsha, Splunk’s head of machine learning, expects AI/ML security tools to grow in their sophistication and capability, both in terms of flagging anomalies and in automating effective countermeasures. …”
- Capitalizing on pandemic disruption, attackers will find more openings in newly adopted technologies and through imperfect M&A
5) Kaspersky Labs — Kaspersky always produces a ton of great material regarding cyberthreats for the coming year, threat reports, detailed analysis of risks, and so much more from all over the world in different sectors. The problem (and reason they are not higher on this list) is that it is hard to find and very segmented and targeted towards many different audiences. While this may be a deliberate marketing tool that works for them around the world (and they are much bigger outside the U.S.), it is tough to find one solid list of all their predictions.
The good news is that I have pulled from different lists and provide links here.
First, start with these Kaspersky Advanced Threat predictions for 2021 (see report for more details under each item):
- APT threat actors will buy initial network access from cybercriminals
- More countries will use legal indictments as part of their cyberstrategy
- More Silicon Valley companies will take action against zero-day brokers
- Increased targeting of network appliances
- The emergence of 5G vulnerabilities
- Demanding money “with menaces”
- More disruptive attacks
- Attackers will continue to exploit the COVID-19 pandemic
Second, there are some great ICS-CERT threat predictions here:
- Random infections — “Infections will tend to be less random or have non-random follow-ups, as cybercriminals have spent the past several years profiling randomly infected computers that are connected to industrial networks or have periodic access to them. Access to such computers will be – and is perhaps already being – resold to more sophisticated groups with specific schemes for monetizing attacks on industrial facilities already in place.”
- Ransomware attacks — “Ransomware is becoming more technically advanced and sophisticated. Cybercriminals will continue to employ hacker and APT techniques, painstakingly exploring and probing the network of the target organization to locate the most valuable/vulnerable systems, hijack administrator accounts, and launch simultaneous blitz attacks using standard admin tools. …” And, “It is highly likely that we will see attacks disguised as ransomware but pursuing completely different goals – a repeat of the ExPetr technique.”
- Cyberespionage — “Cybercriminals will figure out (some already have) that inside the OT perimeter secrets are not guarded as well as in office networks and that OT networks may be even easier to break into, since they have their own perimeter and attack surface.”
- APT — “The number of APT groups will continue to grow – we will see more and more new actors, including ones that attack various industrial sectors.” And, “In addition to data theft and other piecemeal operations, some group is likely to get down to more serious business in 2021, perhaps in the vein of Stuxnet, Black Energy, Industroyer and Triton.”
- COVID-19 consequences — “Against the backdrop of economic decline, lockdowns, slower growth and ruin for small businesses, the ranks of cybercriminals are sure to swell as skilled people seek alternative employment, and groups associated with national governments will strengthen as well. And, “The online presence of municipal services and utilities and the increased digitization of government and public services will make them more vulnerable to attacks of cybercriminals and create more opportunities for cross-agency attacks and assaults on central and local government functions and the systems that support and implement them. For example, a threat actor could use a governmental or municipal web service as an entry point, compromise the victim’s internal infrastructure and use the communication channels and supply chain connecting various governmental, municipal and even private organizations to reach their final target (such as shutting down transportation systems).”
Finally, see this Kaspersky list that reviews 2020 predictions and adds more 2021 predictions on cyberthreats to financial organizations:
- Cracking down hard on the cybercrime world. In 2020, OFAC announced that they would supervise any payment to ransomware groups. Then U.S. Cyber Command took down Trickbot temporarily ahead of the elections. There should be an expansion of the “persistent engagement” strategy against financial crime. There is also a possibility of economic sanctions against institutions, territories or even countries which show a lack of resolve to combat cybercrime that originates within their territories.
- With the special technical capabilities of monitoring, deanonymization and seizing of cryptocurrency accounts now in place, we should expect cybercriminals to switch to transit cryptocurrencies for charging victims. There is a reason to believe they might switch to other privacy-enhanced currencies, such as Monero, to use these first as a transition currency and then convert the funds to any other cryptocurrency of choice, including bitcoin.
- Extortion on the rise. One way or another, cybercriminals targeting financial assets will rely on extortion. If not ransomware, then DDoS or possibly both….
6) Check Point — Check Point again offers a very solid list of predictions in a variety of categories. I must give credit to Check Point for their extensive coverage of cybersecurity during the pandemic, which is highlighted here with best practices under the headline of “Cyber Pandemic.”
Here’s their list with more details in the link:
- Securing the “next normal”: In 2021, COVID-19 will still be impacting our lives, businesses and societies, and those impacts will change as the year progresses. So we need to be ready for a series of “next normals” as we respond to those changes.
- No cure for COVID–related exploits: As COVID-19 will continue to dominate headlines, news of vaccine developments or new national restrictions will continue to be used in phishing campaigns, as they have been through 2020.
- School’s out — targeting remote learning: Attacks will continue to disrupt remote learning activities over the coming year.
Malware, Privacy and Cyberwar
- Double extortion increases the ransomware stakes
- The botnet army will continue to grow
- Nation shall attack nation: Cyberattacks by nation states will continue to grow, whether for espionage or to influence events in other countries
- Weaponizing deepfakes
- Privacy? What privacy?
New 5G and IoT Platforms
- 5G benefits and challenges: The totally connected, high-speed world promised by 5G also gives criminals and hackers opportunities to launch attacks and cause disruption by targeting that connectivity. E-health devices will collect data about users’ wellbeing, connected car services will monitor users’ movements, and smart city applications will collect information about how users live their lives.
- Internet of Threats: As 5G networks roll out, the numbers of connected IoT devices will massively expand, drastically increasing networks’ vulnerability to large-scale, multi-vector cyberattacks.
7) Gartner — Most security and technology pros are aware of the outstanding content and analysis offered by Gartner. However, most of their reports and analyses come with a hefty price tag, which is why they seldom rise to the top of my annual list of security predictions, trends and forecasts. (Reminder: I do review materials that ask for contact information to download, but I do not review materials that cost users money to read.)
For 2021, I was pleasantly surprised by Gartner’s security trends and other materials in report format that are available for free – if you know where to look. Although there are pointers to plenty of subscriber content and the items below are in non-typical formats; nevertheless, the material is excellent and very helpful for security analysis and planning for 2021.
First, we have Gartner’s cybersecurity research for the top 10 security project priorities for 2021. Here are the first seven of those with details in the link:
- Remote Workforce Security
- Risk-Based Vulnerability Management
- Extended Detection and Response (XDR)
- Cloud Security Posture Management
- Seamless Cloud Application Controls
- Domain-Based Message Authentication (DMARC)
- Passwordless Authentication
Second, we have this excellent (and free to download) 2021 Planning Guide for Security and Risk Management. There are numerous pieces to this guide, but I am only focusing on the trends for 2021:
- Major changes in global business and workforce will have immediate and long-lasting impacts on security planning
- Security monitoring and response will continue to depend on automation and analytics delivered through internal skills and managed services
- Emerging cybersecurity platforms will cause organizations to reconsider security and solution architecture
- Containers, DevSecOps and distributed cloud will continue to transform infrastructure security architecture and management
- Expanded data, analytics and application service ecosystems will cement the need for data-centric security architecture and application security
- Endpoints, mobile devices and software as a service will continue to drive expansion of native security capabilities and add-on solutions
8) Forcepoint — Forcepoint offers several intriguing 2021 predictions in a series of blog posts available at their x-labs portal. The last item on insider threats is an eye-opener. Here are their top predictions with a few summaries:
“With the move to mass remote working and accelerated digital transformation in 2020, cybersecurity has moved up the foodchain. Cybersecurity is now a business differentiator, and it needs a category disruptor. The need for a converged, digital, cloud-delivered platform means we’ll see the emergence of the ‘Zoom of Security’ – a high-tech system that ‘just works’ and is easily accessible for the everyday consumer.”
“In the past we’ve thought of ‘insider threats’ as disgruntled employees who walk out of the building with proprietary information hidden in their briefcases. But today, your employees may be scattered around the world, you may hire them after only meeting via Zoom, and they may never step foot inside one of your offices. And today, you can buy almost anything on the dark web, including ‘trusted insiders.’ In 2021, I expect to see organized cells of recruitment infiltrators offering specifically targeted means for bad actors to become trusted employees, with the goal of exfiltrating priceless IP. These ‘bad actors,’ literally, will become deep undercover agents who fly through the interview process and pass all the hurdles your HR and security teams have in place to stop them.”
9) Fortinet — New Cybersecurity Threat Predictions for 2021 and the well-written and unique FortiGuard Labs Cyber Threat Predictions for 2021 offer the following predictions under three main headings (with many more details in the report links):
The Intelligent Edge Is a Target
- Trojans Evolve to Target the Edge
- 5G Can Enable Advanced Swarm-Attacks
- Advancements in Social Engineering Attacks
- New Ways to Leverage Ransomware in Critical Infrastructures
Innovations in Computing Performance Will Also Be Targeted
- Advances in Cryptomining
- Spreading Attacks from Space
- The Quantum Computing Threat
Artificial Intelligence Will Be Key
- AI Technology Needs to Keep Up
- Organizations Can’t Do It Alone
- Enabling Blue Teams
10) Crowdstrike — Crowdstrike was one of several companies that came out with an excellent report that uses new words besides “predictions” or “forecasts,” but essentially offers many of the same concepts with a product focus. Crowdstrike calls their insights “themes,” but they also use words like “findings” and “trends” in the beginning.
Their new 38-page report is entitled Crowdstrike Services Cyber Front Line Report: Incident Response and Proactive Services from 2020 and Insights that Matter for 2021. It offers an excellent forward by company President Shawn Henry (who is a former FBI lead on cyber.)
Some findings and trends:
- The volume and velocity of financially motivated attacks is staggering
- Intrusions are no longer a one-time event
- Shifting to a continuous monitoring and response approach changes the game
- Widespread remote work has broad-reaching effects on cybersecurity
- Cloud infrastructure requires special attention from defenders
- Outside counsel is playing a bigger role in the incident response process
Here are Crowdstrike’s top themes, with more details and recommended responses under each heading available in the report.
- Theme 1 – Security in Sweatpants: How Widespread Remote Work Changes Security
- Theme 2 – Ransomware Actors Evolve Their Operations
- Theme 3 – Adversaries Have Their Heads in the Cloud
- Theme 4 – Watch For Weaknesses in Public Facing Applications and Services
- Theme 5 – State-Sponsored Adversaries Leave Smaller Footprints
- Theme 6 – After the Breach: Making Improvements to Stop the Next Breach
11) Forrester — Similar to Gartner, there is more free Forrester prediction content this year than I have ever seen. I am impressed with the number of predictions and scope of coverage that can be found on their Predictions 2021 website. After you download their free report (contact information required), here is a sample of what you will find related to security in some respect (with many more details in the report):
- CIOs lead the bold disruptors — 30 percent of firms will increase spend on cloud, security and risk, networks, and mobility.
- COVID-19 changes leadership and hiring practices forever — Remote work will rise to 300 percent of pre-COVID levels.
- With more employee data comes opportunity, but also legal risk — Regulatory and legal activity related to employee privacy infringements will double.
- Remote work drives uptick in insider threats — 33 percent of data breaches will be caused by insider incidents, up from 25 percent today.
- Workplace automation and AI are here to stay — 35 percent of companies will double down on workplace AI.
- Cloud takes center stage in pandemic recovery — The global public cloud infrastructure market will grow 35 percent to $120 billion in 2021.
- Edge is the new cloud — New edge vendors will shave five points off of public cloud growth.
Other Forrester security predictions can be found here and here. Here are some excerpts:
- A CISO from a Global 500 firm will be fired for instilling a toxic security culture.
- Funding for non-U.S.-headquartered cybersecurity companies will increase by 20 percent.
- Audit findings and budget pressure will lead to an uptick of risk quantification tech.
- More privacy leaders will report to the CEO
- CCPA 2.0 will lead to the introduction of federal privacy legislation in the U.S.
- VC investment in non-U.S.-based cybersecurity firms will rise
- Retail and manufacturing will have more breaches due to direct-to-consumer shift
12) AT&T Threat Traq Security Predictions – (see their video for highlight details)
- Cybercrime is the new ATP
- Increased Extortion Attacks
- Ransomware Evolving – More Automated
- Pay Attention to 5G Interconnectivity
- Challenges With Multi-Factor Authentication
AT&T Cybersecurity also released an impressive report entitled 5G and the Journey to the Edge, which has some implied predictions for 2021 but is mostly a solutions guide to moving to 5G. It contained the following takeaways (with details in the report):
- Recognize that 5G is not an evolution but more of a revolutionary new technology; however, the transition will not occur overnight
- Implement 5G and edge in a manner unique to the organization
- Observe and be aware of what needs protection
- Establish baselines of normal behavior and activity for the network and users
- Reduce complexity and risk to enhance security
13) LogRhythm Labs six 2021 security predictions with some helpful infographics at the end. Again, see the report for details under each item.
- We’ll see the consequences of employees letting their guards down as work-from-home extends
- Attackers will use the COVID-19 vaccine to conduct the largest phishing effort of the year
- We will see a rise in Internet policing as misinformation reaches new heights following the U.S. elections
- The board meeting of a major company conducted using video conferencing software will be exposed, resulting in a high-profile scandal
- Deepfakes will become a significant threat to business integrity
- There will be a reckoning within the growing API security market as API data breaches rise
14) The Enterprisers Project released these 7 security trends to watch in 2021, which includes items from IBM, Red Hat, Sungard AS, Veracode, SAS, Kenna Security and AttackIQ. I encourage readers to go to the article and read the details, but here are the headlines:
- The new normal for the security architect(ure)
- Automation will help support a security-first approach to architecture
- Phishing and ransomware remain ubiquitous, and the home office will be under siege
- COVID-related threats will continue even when the pandemic has subdued
- Cloud misconfigurations remain a major problem
- Compliance requirements fuel cloud decision-making
- MITRE ATT&CK framework gains steam in the business world
15) Proofpoint offers these Seven 2021 Security Predictions and Trends to Watch with some different twists, but with familiar themes.
- Ransomware will adapt to hit cloud repositories (not just OneDrive and SharePoint, but S3 and Azure, too)
- Malware will continue to rely on user interaction (not technical vulnerabilities) and living off the land
- BEC’s growth will slow, but it will still be the largest source of cybercrime losses
- More techniques will emerge to bypass MFA, which will abuse cloud permissions and trust mechanisms (i.e. OAuth, SAML, etc.)
- Automation will become part of more and more security tools, rather than being bolted on
- Security budgets will bounce back when COVID-19 comes under control in more places, but staffing will continue to be a challenge (even with more remote/flexible work options)
- We will see increased collaboration and interaction between cybercriminal groups, playing to their strengths
16) BAE Systems — According to BAE's 2021 Cyber Security Predictions, from the rise of ransomware to remote working, it is time to shore up your defenses (Note: The U.K. spelling in the report has been changed to U.S. spelling for these excerpts.) In the report, James Muir of BAE Systems Applied Intelligence lays out his 2021 cybersecurity predictions on ransomware, synthetic media, hacking for hire and remote working for organizations and financial services organizations.
- Ransomware continues its march; policy complexities follow
- Synthetic media goes mainstream, and threat actors capitalize
- Hacking-for-hire becomes a boom industry and intrigue abounds into the “hirers”
- The implications of remote working become clearer
- Organizations go back to basics to shore up defenses
17) Symantec/Broadcom — Symantec 2021 Cyber Security Predictions – Looking Toward the Future.
Symantec prediction reports are nothing like they were back in 2017 when they set the prediction standard, but they do offer a glorified blog on key topics this year. Here are their top three:
- Ransomware gangs will continue to develop new tactics to pressurize victims — “If 2019 was the year that targeted ransomware attacks began to proliferate, 2020 was the year that targeted ransomware groups began to develop their tactics and find new ways to pressurize their victims into paying.”
- Attackers will begin to find ways to further exploit working from home — “The COVID-19 pandemic has brought about a radical change in how many people work. Offices across the world have shut and, wherever it has been possible, employees have shifted to working from home.”
- Close co-operation of cybercrime gangs — “The cyber crime eco-system tends to be quite segmented and actors usually specialize in one malicious activity, rather than handle attacks from end-to-end. It’s a world where malware authors, malware distributors, exploit kit creators, money launderers, and many more actors frequently interact. ... However, what is new and potentially worrying news is that some of the biggest actors in cybercrime are coming closer and closer together. In particular, some of the biggest botnet operators and ransomware authors. …”
18) Bitglass — Anurag Kahol, CTO of Bitglass, offered these seven cybersecurity predictions in Security Magazine with helpful backup material and links with more details in the article. No huge surprises here.
- Remote workers will be the focus of cybercriminals throughout 2021
- Legacy security architecture like VPNs will be the weak link for many organizations
- To cope with reduced budgets, CSOs and CISOs will seek convergence across security solutions
- The impact of breaches in the health-care sector may be deadly
- Financial organizations beware, more attacks are coming
- COVID-19 forced organizations to accelerate digital transformation efforts
- The adoption of new technologies and increase in Internet users means most of the world’s population is at great risk of data exposure
19) TechBeacon offers an excellent piece in The future of DevOps: 21 predictions for 2021.
Here are their six cybersecurity items:
- CISOs will embrace DevSecOps methodologies. — Liz Rice, vice president, open-source engineering, Aqua Security
- Application security will no longer be an afterthought. — Jonathan Knudsen, senior security strategist, Synopsys
- More developers will move to application security's front lines. — Derek Weeks, vice president and DevOps advocate at Sonatype, and co-founder of the All Day DevOps conference
- DevOps teams will see the value of threat modeling through security partnerships. —Chris Romeo, CEO, principal consultant, and co-founder of Security Journey
- The acceleration of cloud adoption during the pandemic will shift the software security landscape dramatically. — Jason Schmitt, general manager of the Synopsys Software Integrity Group
- Cybersecurity will move out of the dark ages as intelligent cybersecurity emerges. — Lisa Azevedo, founder and CEO of Containn
20) Thycotic again offers an intriguing and sophisticated list of predictions from my respected friend and global cyberexpert Joseph Carson. I’ve been on numerous panels with Joseph, and his cyberexpertise and stories in many areas are exceptional. The piece is called Cyber Security Trends and Predictions for 2021, and Reflections on 2020.
Here are some of Thycotic’s security prediction highlights:
- Cloud security will become the first-choice security strategy
- Every user will become a privileged user
- Passwords will move into the background
- Ransomware will still be the biggest threat and financial risk
- Data privacy will, and already is, becoming a Digital Rights Management issue
21) Imperva offers another good list of 2021 predictions with details in this video.
Here are their top five security predictions:
- The new digital “normal” puts greater reliance on microservices
- Digital transformation projects implode into data security liabilities
- Serverless computing becomes a playground for cybercriminals
- The maturity of 5G and expansion of IoT fuels botnet armies
- The U.S. catches up with the world on data privacy
Bonus Items: Take a Close Look at These Four More Security Predictions Lists
- Bugcrowd offers an excellent infographic with their security prediction items from Casey Ellis:
- Bugcrowd leads with “Ethical Hackers will play a key role in securing and building confidence in future elections.”
- Netskope: I really like these two prediction lists (five safe bets and five long shots) created by Netskope Chief Strategy Officer Jason Clark.
Here are three of the ten:
- Ten percent of Fortune 1000 CISOs will be asked to take on networking teams because of SASE
- Zero-trust and SASE will converge
- AI/ML threats will arrive a lot faster than you think
- Information Security Buzz has a great list of cyberindustry leaders and other experts with random security predictions worth studying. Here are a few:
- 2021 Will Reveal “The Great InfoSec Divide.” — Gaurav Banga, CEO, Balbix
- If it were measured as a country, then cybercrime — which is predicted to inflict damages totaling $6 trillion globally in 2021 — would be the world’s third-largest economy after the U.S. and China. — Steve Morgan, founder, Cybersecurity Ventures, and editor-in-chief at Cybercrime Magazine
- Security leaders will need to consolidate vendors. — Joe Pettit, director, Bora
- InfoSecurity Magazine offers these 10 security predictions for 2021. Here are their top three:
- More Companies to Adopt Security Champions Programs
- Everyone Will Be Election Security “Experts”
- The Fall of the Managed SOC
- Synopsys — 2021 software security predictions:
- We’ll see a massive shift to cloud-native solutions in 2021
- Computer Weekly — Top IT predictions in APAC in 2021
- AI will become a must-have
- Security7.net — 7 Cybersecurity Predictions for 2021 ...
- The impact of breaches in the health-care sector may be deadly
- Digicert — 2021 Security Predictions. I think they read my unemployment fraud blog, because I not only agree, but this is a huge underreported issue.
- Unemployment fraud: With unemployment fraud at an all-time high, we will see an even larger increase in 2021, as pandemic-focused unemployment programs from governments have lowered the barriers to collecting benefits and security methods have not been able to keep up. Should we see additional stimulus funding from governments to provide relief for the effects of the pandemic, this will only make this a richer channel for fraudsters.
- IronNet — IronNet's top 10 predictions for 2021
- COVID-19 will put job seekers at risk
- Forbes — There are several Forbes lists, and this one was compiled by Jeff MacMillan, Forbes council member.
- Individual security products will morph into comprehensive solutions
- Another Forbes List — By Louis Columbus: Top 20 Predictions Of How AI Is Going To Improve Cybersecurity In 2021
- AI Will Become More Embedded in Authentication Frameworks. By Torsten George, Cybersecurity Evangelist at Centrify
- One More Forbes List — The Best Cybersecurity Predictions For 2021 Roundup
- Fifty-five percent of enterprise executives plan to increase their cybersecurity budgets in 2021 and 51 percent are adding full-time cyber staff in 2021. PwC found that most executives are planning to ramp up their cybersecurity spending in 2021 despite the majority of them, 64 percent, expecting business revenues to decline
- Radware — Public Cloud Down Again? Predictions for 2021
- Organizations will evaluate multi-vendor and multi-cloud options to hedge against outages at their primary cloud providers
Radware also offers this video with their 2021 security predictions:
- Mondaq.com: (Australia predictions) — Our Top 10 Digital Law Predictions For 2021
- Directors' responsibility and liability for cybersecurity and increasing privacy fines
“We expect the increase in the frequency and severity of cybersecurity incidents, particularly ransomware and phishing attacks, to continue unabated in 2020. However, we expect this will lead to increased innovation in legal actions around these issues, especially relating to customers suffering from a cybersecurity incident impacting a vendor or supplier of theirs, where the customer is subject to extreme limitations or exclusions of liability in their contract with that vendor or supplier.”
- SME10x — A Global Reset: Predicting Cybersecurity Trends in 2021
- Security Validation to Keep Defenses and Budgets in Check
- QOMPLX - QOMPLX 2021: Our Cyber Predictions for the New Year
- State, national data privacy laws take center stage
- Checkmarx: 2021 Software Security Predictions: Our Experts Weigh In
- Security will report to development, not the other way around.
- WhiteHat Security — WhiteHat Security Unveils Top Application Security Predictions for 2021
- Security will be a priority on the road to digital transformation
- Experian - 2021 Data Breach Industry Forecast - also at: this business wire website
- As the world races to share the COVID-19 vaccine, cybercriminals may attempt to target the rollout ecosystem.
- Jumio - Enterprises Step Up Identity Verification to Combat Rising Account Takeover, Identity Fraud and Credential Stuffing Attacks in 2021
- AttackIQ — 5 Accelerating Digital Trends That Will Impact Risk Management in 2021
- MITRE ATT&CK will continue to increase in prominence as the backbone framework for cybersecurity planning and threat-informed defense
- Bob Carver (Principal Cybersecurity Threat Intelligence and Analytics at Verizon) - Cybersecurity Predictions and a Wish List for 2021
- BeyondTrust - Top Cybersecurity Trends to Watch for 2021
- Poisoning of Machine Learning Training Data - As machine learning becomes more widespread within enterprises for making automated decisions, attackers have a new vector to consider. After a threat actor steals a copy of the original training data, they will begin to manipulate the models generated by injecting poisoned data into the training pool, creating a system that has learned something it shouldn’t. This manipulation will have a multiplying effect due to the automatic processing by downstream applications, destroying the integrity of any legitimately processed data.
- CyberPion - 2021 Cybersecurity Predictions: Government
- Egress — Tony Pepper, the talented CEO at Egress, offers his insights on future trends in this list.
- Machine learning to mitigate insider risk
“If 2020 has taught us anything, it’s the importance of securing the individuals within our organization’s human layer. Our centralized workplaces closed overnight, amplifying the role of individuals within our security strategies and the risks they each bring. Advanced machine learning technologies that examine the context within which individuals make decisions and alert them to risky behavior have been utilized by early adopters to tackle insider threats – but in 2021, we’re going to see this technology move to the mainstream. With growing data privacy awareness has come greater scrutiny from clients and consumers, who demand their sensitive information be kept safe. Legacy technologies that are built on static rules simply can’t stand up this pressure, and we’re instead going to see even greater adoption of intelligent security technologies that use contextual machine learning to keep data safe.”
Note to vendors not on the 2021 prediction list: We do our best to include and reference all verified cybersecurity prediction reports submitted with a URL link to your wider forecast list online. If you are not mentioned and want to be included up until early January 2021, feel free to send your predictions to our blog contact email address, and please include your online reference link. However, the top 21 reports selected will not change.
- Most Comprehensive Vendor Report Overall – Trend Micro, Turning the Tide: Trend Micro Security Predictions for 2021
- Most creative: Trend Micro: “Threat actors will turn home offices into their new criminal hubs”
- Least Reported But Most Likely Prediction – DigiCert - Unemployment fraud: With unemployment fraud at an all-time high, we will see an even larger increase in 2021, as pandemic-focused unemployment programs from governments have lowered the barriers to collecting benefits and security methods have not been able to keep up. Should we see additional stimulus funding from governments to provide relief for the effects of the pandemic, this will only make this a richer channel for fraudsters.
- Technical (Geeky) Prediction To Watch – Yet Important Trend – Netskope: “Zero Trust and SASE will converge.”
- Scariest (tie) – Mondaq: Directors' responsibility and liability for cybersecurity and increasing privacy fines; and "If it were measured as a country, then cybercrime — which is predicted to inflict damages totaling $6 trillion USD globally in 2021 — would be the world’s third-largest economy after the U.S. and China." — Steve Morgan, founder, Cybersecurity Ventures, and editor-in-chief, Cybercrime Magazine
- Most Common (Tie): More movement to the cloud; and more trouble at home because of COVID-19 and work from home trends
What’s missing? Again, few, if any, “Cyber Pearl Harbor” or “Cyber 9/11” predictions. This follows a year when no one predicted the impact of a global health pandemic leading to a cyber pandemic. Also, last year we saw much more on AI and deepfakes, but there are far fewer deepfake and AI predictions for 2021.
Almost nothing on the impact of the new Biden Administration on cybersecurity nor what that means for global relations on technology. Nor are there Brexit cyber impacts or EU cybersecurity changes that may move the needle in major ways against cybercrime.
Also, the late-breaking news about the SolarWinds data breach and the global impacts means that most of these prediction lists did not factor in the wide-reaching impacts to the public and private sectors of such a huge event. Some are calling it comparable to, or even worse than, the OPM data breach in 2015.
Back in 2016, I made this prediction:
"Bottom line, the more the security and technology industries grow, the more predictions we will have. From the Internet of Things, to new technologies to robots to self-driving cars, do you really think we will be talking about security and privacy less in 2020? I don’t.
"Predictions are not new, and they are not going away. In fact, they are just getting started.
Congratulations security industry, and welcome to center ring in this three-ring circus. Yes, it is a very big circus, but that’s where all the action is."
It turned out that I was spot on with that prediction about security industry prediction growth. Even in the midst of a pandemic, people continue to think about tomorrow — a lot.
Happy New Year to all, and thanks for following "Lohrmann on Cybersecurity & Infrastructure."
Looking for the latest gov tech news as it happens? Subscribe to GT newsletters.