Global cyber crime costs are expected to increase by nearly 15 per cent on a yearly basis over the next four years to reach $10.5 trillion annually by 2025, from $3tn in 2015, California research company Cybersecurity Ventures has said.
Cyber criminals have taken note of successful tactics from this year, including those making headlines tied to ransomware, nation states, social media and the shifting reliance on a remote workforce.
Industry experts expect them to pivot those into next year's campaigns and grow in sophistication, wielding the potential to wreak more havoc across industries.
“Over this past year, we have seen cyber criminals get smarter and quicker at retooling their tactics to follow new bad actor schemes – from ransomware to nation states – and we don’t anticipate that changing in 2022,” Raj Samani, fellow and chief scientist of the combined company formed after the merger of McAfee Enterprise and FireEye, said.
“With the evolving threat landscape and continued impact of the global pandemic, it is crucial that enterprises stay aware of the cyber security trends so that they can be proactive and actionable in protecting their information,” Mr Samani said.
The National looks at the top 10 cyber security trends of the year ahead:
Weaponising operational technology environments
Cyber criminals could weaponise operational technology environments to harm or kill humans in the next four years, the Connecticut-based technology research and consulting company Gartner has said.
The OT is a type of computing and communication system – including both hardware and software – that controls industrial operations, mainly focusing on the physical devices and processes they use. It is used to gather and analyse data in real time, which is further used to monitor a manufacturing unit or to control equipment.
Various industries, such as telecoms and oil and gas, use OTs to ensure different devices work in co-ordination.
Attacks on OT environments have evolved from “immediate process disruption” such as shutting down a plant – for example in the recent Colonial Pipeline ransomware attack that took down the largest fuel pipeline in the US – to compromising the “integrity of industrial environments” with intent to cause physical or reputational harm, Gartner said.
Remote working brings new challenges
Remote working spurred by the Covid-19 pandemic could compound cyber threats in 2022.
Home devices that employees use to access office networks are usually not subject to the same security restrictions as corporate devices. This complicates efforts to control and monitor employees’ digital behaviour, applications and data outside traditional firewalls, industry analysts said.
Geopolitical cyber concerns pose growing risks
Some state actors will launch cyber attacks because they are “cheap, reliable, portable, easily hidden and hard to detect”, Moody’s Investors Service said in a report earlier this year.
The state-sponsored attacks threaten reputational damage, cause disruption of work flow and loss of intellectual property.
“Entities that find themselves the targets of these attacks could experience substantial credit damage,” the rating agency had said at the time.
Use of social media for attacks
While using social media to target victims is not a new strategy, it is relatively uncommon. It demands a level of research to engage the vulnerable target into interactions and establish fake profiles.
“The targeting of individuals has proven a very successful channel and we predict the use of this vector could grow not only through espionage groups, but [also] other threat actors looking to infiltrate organisations for their own criminal gain,” McAfee Enterprise and FireEye said in its cyber threats predictions for 2022.
Cryptocurrency exchanges to experience an increase in attacks
Cryptocurrency exchanges experienced a 10-fold increase in attacks in the first half of the year compared with the prior year period, said a report by cyber threat intelligence company PhishLabs, although it did not disclose the exact number of attacks.
The majority of the cryptocurrency attacks were orchestrated through social media.
“We anticipate cryptocurrency businesses will continue to be aggressively targeted by threat actors through social media in future … [it is] due to a majority of their activity and communication taking place through social platforms,” the report said.
Hackers pulled off the biggest cryptocurrency heist yet on August 10, stealing $613 million in digital coins from token-swapping platform Poly Network, only to return $260m worth of tokens less than 24 hours later.
Phishing attacks
Phishing typically comes in the form of fraudulent emails or pop-up messages that aim to obtain personal information from victims, such as credit card details and sensitive data, including personal identification numbers, usernames and passwords.
Phishing emails may also secretly install malicious software or malware in victims' computers. Such nefarious installations may be a virus or spyware designed to collect more information, which could lead to further fraud.
API becoming a lucrative target
Internet of Things and 5G traffic between API (application programming interface) services and apps will make them increasingly lucrative targets, causing unwanted exposure of information.
The connected nature of APIs potentially also introduces additional risks to businesses as they become an entry vector for wider supply chain attacks, McAfee Enterprise and FireEye said.
“In most cases, attacks targeting APIs go undetected as they are generally considered as trusted paths and lack the same level of governance and security controls.”
Cyber security talent crunch
The coming year will prove to be the most challenging one yet with regards to the continuing cyber security talent crunch, said the US cyber security firm BeyondTrust.
“Some drivers of this supply-demand imbalance include the accelerated adoption of hybrid cloud and digital transformation initiatives, post-pandemic projects ramping up and budgets becoming available for spend,” it added.
Rise of ransomware
The use of ransomware has picked up pace and became more dangerous in 2021. It will continue its rapid rise next year and its variations will increase with the frequency of attacks.
“Organisations must stop trying to prevent adversaries’ missions and instead prevent them from being worthwhile,” said Marty Edwards, vice president of operational technology at Columbia-headquartered cyber security company Tenable.
“In other words, organisations must make sure these missions cost too much to conduct. If the reward doesn’t cover the cost of the investment, threat actors won’t pursue it,” he added.
Cloud migration poses threat
Nearly half of the organisations moved business-critical functions to the cloud as a direct result of the pandemic, said Tenable.
However, cloud migration requires specific considerations that will likely be overlooked in 2022. For instance, detecting and preventing malicious activity in the cloud is a lot different, said Bob Huber, chief security officer at Tenable.
“And this can be further complicated by the nuances of working with cloud providers, as well as other company stakeholders looking to rapidly adopt new services in the cloud.
“Unless organisations educate their entire teams, not just security teams, about securing the cloud, they will inevitably pay the price as their migration accelerates,” said Mr Huber.
T20 World Cup Qualifier
Final: Netherlands beat PNG by seven wickets
Qualified teams
1. Netherlands
2. PNG
3. Ireland
4. Namibia
5. Scotland
6. Oman
T20 World Cup 2020, Australia
Group A: Sri Lanka, PNG, Ireland, Oman
Group B: Bangladesh, Netherlands, Namibia, Scotland
Living in...
This article is part of a guide on where to live in the UAE. Our reporters will profile some of the country’s most desirable districts, provide an estimate of rental prices and introduce you to some of the residents who call each area home.
Why it pays to compare
A comparison of sending Dh20,000 from the UAE using two different routes at the same time - the first direct from a UAE bank to a bank in Germany, and the second from the same UAE bank via an online platform to Germany - found key differences in cost and speed. The transfers were both initiated on January 30.
Route 1: bank transfer
The UAE bank charged Dh152.25 for the Dh20,000 transfer. On top of that, their exchange rate margin added a difference of around Dh415, compared with the mid-market rate.
Total cost: Dh567.25 - around 2.9 per cent of the total amount
Total received: €4,670.30
Route 2: online platform
The UAE bank’s charge for sending Dh20,000 to a UK dirham-denominated account was Dh2.10. The exchange rate margin cost was Dh60, plus a Dh12 fee.
Total cost: Dh74.10, around 0.4 per cent of the transaction
Total received: €4,756
The UAE bank transfer was far quicker – around two to three working days, while the online platform took around four to five days, but was considerably cheaper. In the online platform transfer, the funds were also exposed to currency risk during the period it took for them to arrive.
GAC GS8 Specs
Engine: 2.0-litre 4cyl turbo
Power: 248hp at 5,200rpm
Torque: 400Nm at 1,750-4,000rpm
Transmission: 8-speed auto
Fuel consumption: 9.1L/100km
On sale: Now
Price: From Dh149,900
Founders: Abdulmajeed Alsukhan, Turki Bin Zarah and Abdulmohsen Albabtain.
Based: Riyadh
Offices: UAE, Vietnam and Germany
Founded: September, 2020
Number of employees: 70
Sector: FinTech, online payment solutions
Funding to date: $116m in two funding rounds
Investors: Checkout.com, Impact46, Vision Ventures, Wealth Well, Seedra, Khwarizmi, Hala Ventures, Nama Ventures and family offices
How to watch Ireland v Pakistan in UAE
When: The one-off Test starts on Friday, May 11
What time: Each day’s play is scheduled to start at 2pm UAE time.
TV: The match will be broadcast on OSN Sports Cricket HD. Subscribers to the channel can also stream the action live on OSN Play.
GIANT REVIEW
Starring: Amir El-Masry, Pierce Brosnan
Director: Athale
Rating: 4/5
MATCH INFO
Fixture: Thailand v UAE, Tuesday, 4pm (UAE)
TV: Abu Dhabi Sports
THE BIO:
Sabri Razouk, 74
Athlete and fitness trainer
Married, father of six
Favourite exercise: Bench press
Must-eat weekly meal: Steak with beans, carrots, broccoli, crust and corn
Power drink: A glass of yoghurt
Role model: Any good man
COMPANY%20PROFILE
%3Cp%3E%3Cstrong%3EName%3A%20%3C%2Fstrong%3ETelr%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EDubai%2C%20UAE%3Cbr%3E%3Cstrong%3ELaunch%20year%3A%3C%2Fstrong%3E%202014%3Cbr%3E%3Cstrong%3ENumber%20of%20employees%3A%20%3C%2Fstrong%3E65%3Cbr%3E%3Cstrong%3ESector%3A%20%3C%2Fstrong%3EFinTech%20and%20payments%3Cbr%3E%3Cstrong%3EFunding%3A%20%3C%2Fstrong%3Enearly%20%2430%20million%20so%20far%3C%2Fp%3E%0A
Groom and Two Brides
Director: Elie Semaan
Starring: Abdullah Boushehri, Laila Abdallah, Lulwa Almulla
Rating: 3/5
Our legal columnist
Name: Yousef Al Bahar
Advocate at Al Bahar & Associate Advocates and Legal Consultants, established in 1994
Education: Mr Al Bahar was born in 1979 and graduated in 2008 from the Judicial Institute. He took after his father, who was one of the first Emirati lawyers
Global state-owned investor ranking by size
|
1.
|
United States
|
|
2.
|
China
|
|
3.
|
UAE
|
|
4.
|
Japan
|
|
5
|
Norway
|
|
6.
|
Canada
|
|
7.
|
Singapore
|
|
8.
|
Australia
|
|
9.
|
Saudi Arabia
|
|
10.
|
South Korea
|
Who has lived at The Bishops Avenue?
- George Sainsbury of the supermarket dynasty, sugar magnate William Park Lyle and actress Dame Gracie Fields were residents in the 1930s when the street was only known as ‘Millionaires’ Row’.
- Then came the international super rich, including the last king of Greece, Constantine II, the Sultan of Brunei and Indian steel magnate Lakshmi Mittal who was at one point ranked the third richest person in the world.
- Turkish tycoon Halis Torprak sold his mansion for £50m in 2008 after spending just two days there. The House of Saud sold 10 properties on the road in 2013 for almost £80m.
- Other residents have included Iraqi businessman Nemir Kirdar, singer Ariana Grande, holiday camp impresario Sir Billy Butlin, businessman Asil Nadir, Paul McCartney’s former wife Heather Mills.
Hunting park to luxury living
- Land was originally the Bishop of London's hunting park, hence the name
- The road was laid out in the mid 19th Century, meandering through woodland and farmland
- Its earliest houses at the turn of the 20th Century were substantial detached properties with extensive grounds
Shipping%20and%20banking%20
%3Cp%3EThe%20sixth%20sanctions%20package%20will%20also%20see%20European%20insurers%20banned%20from%20covering%20Russian%20shipping%2C%20more%20individuals%20added%20to%20the%20EU's%20sanctions%20list%20and%20Russia's%20Sberbank%20cut%20off%20from%20international%20payments%20system%20Swift.%3C%2Fp%3E%0A
WOMAN AND CHILD
Director: Saeed Roustaee
Starring: Parinaz Izadyar, Payman Maadi
Rating: 4/5
Europe’s rearming plan
- Suspend strict budget rules to allow member countries to step up defence spending
- Create new "instrument" providing €150 billion of loans to member countries for defence investment
- Use the existing EU budget to direct more funds towards defence-related investment
- Engage the bloc's European Investment Bank to drop limits on lending to defence firms
- Create a savings and investments union to help companies access capital
The specs: Audi e-tron
Price, base: From Dh325,000 (estimate)
Engine: Twin electric motors and 95kWh battery pack
Transmission: Single-speed auto
Power: 408hp
Torque: 664Nm
Range: 400 kilometres
Cryopreservation: A timeline
- Keyhole surgery under general anaesthetic
- Ovarian tissue surgically removed
- Tissue processed in a high-tech facility
- Tissue re-implanted at a time of the patient’s choosing
- Full hormone production regained within 4-6 months
%E2%80%98FSO%20Safer%E2%80%99%20-%20a%20ticking%20bomb
%3Cp%3EThe%20%3Cem%3ESafer%3C%2Fem%3E%20has%20been%20moored%20off%20the%20Yemeni%20coast%20of%20Ras%20Issa%20since%201988.%3Cbr%3EThe%20Houthis%20have%20been%20blockading%20UN%20efforts%20to%20inspect%20and%20maintain%20the%20vessel%20since%202015%2C%20when%20the%20war%20between%20the%20group%20and%20the%20Yemen%20government%2C%20backed%20by%20the%20Saudi-led%20coalition%20began.%3Cbr%3ESince%20then%2C%20a%20handful%20of%20people%20acting%20as%20a%20%3Ca%20href%3D%22https%3A%2F%2Fwww.google.ae%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3D%26esrc%3Ds%26source%3Dweb%26cd%3D%26ved%3D2ahUKEwiw2OfUuKr4AhVBuKQKHTTzB7cQFnoECB4QAQ%26url%3Dhttps%253A%252F%252Fwww.thenationalnews.com%252Fworld%252Fmena%252Fyemen-s-floating-bomb-tanker-millions-kept-safe-by-skeleton-crew-1.1104713%26usg%3DAOvVaw0t9FPiRsx7zK7aEYgc65Ad%22%20target%3D%22_self%22%3Eskeleton%20crew%3C%2Fa%3E%2C%20have%20performed%20rudimentary%20maintenance%20work%20to%20keep%20the%20%3Cem%3ESafer%3C%2Fem%3E%20intact.%3Cbr%3EThe%20%3Cem%3ESafer%3C%2Fem%3E%20is%20connected%20to%20a%20pipeline%20from%20the%20oil-rich%20city%20of%20Marib%2C%20and%20was%20once%20a%20hub%20for%20the%20storage%20and%20export%20of%20crude%20oil.%26nbsp%3B%3C%2Fp%3E%0A%3Cp%3EThe%20%3Cem%3ESafer%3C%2Fem%3E%E2%80%99s%20environmental%20and%20humanitarian%20impact%20may%20extend%20well%20beyond%20Yemen%2C%20experts%20believe%2C%20into%20the%20surrounding%20waters%20of%20Saudi%20Arabia%2C%20Djibouti%20and%20Eritrea%2C%20impacting%20marine-life%20and%20vital%20infrastructure%20like%20desalination%20plans%20and%20fishing%20ports.%C2%A0%3C%2Fp%3E%0A
Zayed Sustainability Prize
