The global cyber security market's size is expected to expand at a compound annual growth rate of 12 per cent from 2022 to 2030, from $184.93 billion last year, according to the US company Grand View Research.
The growing number of cyber attacks and the fast proliferation of online shopping platforms, increased adoption of cloud solutions and rapid expansion of smart machines and connected devices are some of the factors driving the market growth.
As the industry evolves at a prolific pace, The National looks at the top 12 cyber security threats and trends of the year ahead.
Digital DNA theft
If you have ever seen the sci-fi movie “The 6th Day”, we are on the same path for having replicas of our digital selves.
In 2023, deep fakes will become so authentic that not only will we see our digital identities being stolen, but also digital versions of our DNAs will be at risk, according to industry experts. Exposing our digital DNA on the internet will enable deep fakes to replicate and create digital humans.
A deep fake is a human impersonation created with advanced technologies, including artificial intelligence and machine learning.
Humans sync their physical lives on social media with constant uploads of photos, videos, audio and personal preferences with enough data points and some enhanced algorithms, said Joseph Carson, chief security scientist at California-based security firm Delinea.
“It is only a matter of time before attackers can create lifelike digital avatars of anyone, and it will be incredibly difficult to identify the difference without sophisticated technology to analyse the source data,” Mr Carson said.
Cyber attacks transferring between smart devices
Smart home and Internet of Thing (IoT) devices are increasingly being targeted by cyber criminals as the most vulnerable entry points to any home or business security network.
The typical cyber attack moves from hacker to device, but 2023 may bring cyber offensives that jump between smart devices, including wearable devices, voice-controlled assistants, smartphones and temperature-control equipment at home, experts said.
Factors such as extensive connectivity, widespread sharing of data among devices and reliance on weak security networks will rapidly orchestrate such attacks.
Strategies to thwart supply chain threats
The scope of threats related to supply chains has never been higher.
Attackers now have more resources and tools at their disposal to disrupt supply chains that are crucial to maintain adequate supply of goods and services, especially during the pandemics such as Covid-19.
The standard diligence and security assessments that chief security officers have performed on third parties are no longer adequate given the escalating frequency and impact of supply chain attacks, experts said.
Regulations, such as the EU Network and Information Security Directive 2.0, are forcing companies to conduct more frequent and dynamic assessments of their supply chain risk and to better control the access third parties have to their networks.
Camera-based malware is here
Don’t let your camera’s viewfinder deceive you.
The camera on the mobile devices is a powerful tool for documenting memories and daily lives. These cameras have been augmented with software algorithms to recognise AI tools to enhance the quality of pictures and videos.
“In 2023, [we] expect to see the first of many exploits that challenge smart cameras and the technology embedded within to leverage vulnerabilities,” said Brian Chappell, chief security strategist at cyber security firm BeyondTrust for Europe, Middle East, Africa and Asia Pacific.
“The technology may itself become exploitable for malware execution. This malicious behaviour … can obfuscate sensitive information, provide misinformation, embed malware or perform some other form of misdirection based on the content.”
QR code threat getting real
A QR code is a machine-readable code used for storing information for reading by a smart device. It is just like a digital business card that usually has various details such as phone number, email and home address.
When you scan a compromised QR code, it could send your location coordinates to a geolocation-enabled application and can also automatically redirect you to a malicious website.
Organisations at risk of becoming cyber insurable
With more organisations aiming to buy cyber insurance as a financial safety net to protect their businesses from serious financial exposure resulting from data breaches and ransomware attacks, the need to get a solid cyber strategy in place will be mandated to get insurance.
“The days of cheap and easy are over,” said Mr Carson.
As of the second quarter of 2022, the US cyber-insurance prices increased 79 per cent over the prior year, according to Marsh global insurance market index.
“The truth is, it is becoming downright difficult to obtain quality cyber insurance at a reasonable rate. In 2023, more businesses will face the stark realisation that they are not cyber insurable,” said Mr Chappell.
Death of personal password
The growth of non-password-based primary authentication could finally spell the end of the personal password in 2023 and in the years to come, experts said.
More applications, not just the operating system itself, will start using advanced non-password technologies, such as biometrics, either to authenticate directly or leverage biometric technology, like Microsoft Hello, Apple FaceID or TouchID, to authorise access.
“Personal accounts are still commonly backed by passwords as the ultimate fallback, but the need to remember, retrieve and type passwords is going to dwindle rapidly as the technology to reliably recognise us improves,” Mr Chappell said.
Jump of ransomware
The use of ransomware has picked up pace and became more dangerous in 2022. It will continue its rapid rise next year and its variations will increase with the frequency of attacks.
A recent report by security firm Cybereason found that 73 per cent of organisations suffered at least one ransomware attack in 2022, compared with just 55 per cent in 2021.
“With ransomware continuing to adapt with different enhancements, we must always be flexible to change,” Mr Carson said.
Taking EVs and autonomous technology off-road
As electric vehicles and autonomous technology aim to become mainstream, they also carry the threat of increased cyber attacks.
Threat actors could disable vehicle’s display screens, entertainment, navigation, climate controls, and even the ability to call for help using the car’s system. This could be more dangerous when autonomous driving truly goes mainstream.
“Expect to see everything from custom displays to malware using car resources for crypto mining. In the next decade, this will be a risk surface and viable commercial market no one should ignore,” said Morey J Haber, chief security officer at BeyondTrust for Europe, Middle East, Africa and Asia-Pacific.
Causing more blackouts
An increase in the number of cyber attacks on energy production and distribution networks will lead to power outages, fuel shortages and heating or cooling resource depletion.
While a fault in any energy source can drive prices higher, the threat of an intentional disruption could leave people out in the cold or completely disrupt electronic transaction processing, said Mr Haber.
“Threat actors recognise this weakness, and we should expect nation-states and opportunistic cyber-organised crime syndicates to refine their methods to target energy sectors.”
Multi-factor authentication invincibility fails
In 2022, threat actors, such as Lapsus$, exposed the shortcomings of multi-factor authentication. The terms MFA bombing, MFA bypass, and MFA fatigue all leapt into the cyber security lexicon.
In 2023, experts expect a new round of attack vectors that target and successfully bypass MFA strategies.
Lapsus$ bypasses MFA framework using techniques such as spamming original account holders. This year, some of its victims included Microsoft, T-Mobile and Nvidia.
Weaponising operational technology environments
Cyber criminals could weaponise operational technology environments to harm or kill humans, the Connecticut-based technology research and consulting company Gartner has said.
The OT is a type of computing and communication system – including both hardware and software – that controls industrial operations, mainly focusing on the physical devices and processes they use. It is used to gather and analyse data in real time, which is further used to monitor a manufacturing unit or to control equipment.
Various industries, such as telecoms and oil and gas, use OTs to ensure different devices work in co-ordination.
"OT that once had a single function and purpose is now becoming smarter, leveraging commercial operating systems and applications to perform expanded missions. As these devices expand in scope, their design is susceptible to vulnerabilities and exploitation," Mr Chappell said.
Company%C2%A0profile
%3Cp%3E%3Cstrong%3ECompany%20name%3A%20%3C%2Fstrong%3EOutsized%0D%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3E2016%0D%3Cbr%3E%3Cstrong%3EFounders%3A%20%3C%2Fstrong%3EAzeem%20Zainulbhai%2C%20Niclas%20Thelander%2C%20Anurag%20Bhalla%20and%20Johann%20van%20Niekerk%20%0D%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EIndia%2C%20South%20Africa%2C%20South-East%20Asia%2C%20Mena%0D%3Cbr%3E%3Cstrong%3ESector%3A%3C%2Fstrong%3E%20Recruitment%0D%3Cbr%3E%3Cstrong%3EInvestment%20raised%3A%3C%2Fstrong%3E%20%241%20million%0D%3Cbr%3E%3Cstrong%3ECurrent%20staff%20count%3A%3C%2Fstrong%3E%2040%0D%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3ESeed%20and%20angel%20investors%0D%3Cbr%3E%3C%2Fp%3E%0A
Vidaamuyarchi
Director: Magizh Thirumeni
Stars: Ajith Kumar, Arjun Sarja, Trisha Krishnan, Regina Cassandra
Rating: 4/5
Mercer, the investment consulting arm of US services company Marsh & McLennan, expects its wealth division to at least double its assets under management (AUM) in the Middle East as wealth in the region continues to grow despite economic headwinds, a company official said.
Mercer Wealth, which globally has $160 billion in AUM, plans to boost its AUM in the region to $2-$3bn in the next 2-3 years from the present $1bn, said Yasir AbuShaban, a Dubai-based principal with Mercer Wealth.
“Within the next two to three years, we are looking at reaching $2 to $3 billion as a conservative estimate and we do see an opportunity to do so,” said Mr AbuShaban.
Mercer does not directly make investments, but allocates clients’ money they have discretion to, to professional asset managers. They also provide advice to clients.
“We have buying power. We can negotiate on their (client’s) behalf with asset managers to provide them lower fees than they otherwise would have to get on their own,” he added.
Mercer Wealth’s clients include sovereign wealth funds, family offices, and insurance companies among others.
From its office in Dubai, Mercer also looks after Africa, India and Turkey, where they also see opportunity for growth.
Wealth creation in Middle East and Africa (MEA) grew 8.5 per cent to $8.1 trillion last year from $7.5tn in 2015, higher than last year’s global average of 6 per cent and the second-highest growth in a region after Asia-Pacific which grew 9.9 per cent, according to consultancy Boston Consulting Group (BCG). In the region, where wealth grew just 1.9 per cent in 2015 compared with 2014, a pickup in oil prices has helped in wealth generation.
BCG is forecasting MEA wealth will rise to $12tn by 2021, growing at an annual average of 8 per cent.
Drivers of wealth generation in the region will be split evenly between new wealth creation and growth of performance of existing assets, according to BCG.
Another general trend in the region is clients’ looking for a comprehensive approach to investing, according to Mr AbuShaban.
“Institutional investors or some of the families are seeing a slowdown in the available capital they have to invest and in that sense they are looking at optimizing the way they manage their portfolios and making sure they are not investing haphazardly and different parts of their investment are working together,” said Mr AbuShaban.
Some clients also have a higher appetite for risk, given the low interest-rate environment that does not provide enough yield for some institutional investors. These clients are keen to invest in illiquid assets, such as private equity and infrastructure.
“What we have seen is a desire for higher returns in what has been a low-return environment specifically in various fixed income or bonds,” he said.
“In this environment, we have seen a de facto increase in the risk that clients are taking in things like illiquid investments, private equity investments, infrastructure and private debt, those kind of investments were higher illiquidity results in incrementally higher returns.”
The Abu Dhabi Investment Authority, one of the largest sovereign wealth funds, said in its 2016 report that has gradually increased its exposure in direct private equity and private credit transactions, mainly in Asian markets and especially in China and India. The authority’s private equity department focused on structured equities owing to “their defensive characteristics.”
Three ways to boost your credit score
Marwan Lutfi says the core fundamentals that drive better payment behaviour and can improve your credit score are:
1. Make sure you make your payments on time;
2. Limit the number of products you borrow on: the more loans and credit cards you have, the more it will affect your credit score;
3. Don't max out all your debts: how much you maximise those credit facilities will have an impact. If you have five credit cards and utilise 90 per cent of that credit, it will negatively affect your score.
F1 The Movie
Starring: Brad Pitt, Damson Idris, Kerry Condon, Javier Bardem
Director: Joseph Kosinski
Rating: 4/5
Specs%20
%3Cp%3E%3Cstrong%3EPower%20train%3A%20%3C%2Fstrong%3E4.0-litre%20twin-turbo%20V8%20and%20synchronous%20electric%20motor%3Cbr%3E%3Cstrong%3EMax%20power%3A%20%3C%2Fstrong%3E800hp%3Cbr%3E%3Cstrong%3EMax%20torque%3A%20%3C%2Fstrong%3E950Nm%3Cbr%3E%3Cstrong%3ETransmission%3A%20%3C%2Fstrong%3EEight-speed%20auto%3Cbr%3E%3Cstrong%3EBattery%3A%20%3C%2Fstrong%3E25.7kWh%20lithium-ion%3Cbr%3E0-100km%2Fh%3A%203.4sec%3Cbr%3E0-200km%2Fh%3A%2011.4sec%3Cbr%3E%3Cstrong%3ETop%20speed%3A%20%3C%2Fstrong%3E312km%2Fh%3Cbr%3E%3Cstrong%3EMax%20electric-only%20range%3A%3C%2Fstrong%3E%2060km%20(claimed)%3Cbr%3E%3Cstrong%3EOn%20sale%3A%3C%2Fstrong%3E%20Q3%3Cbr%3E%3Cstrong%3EPrice%3A%20%3C%2Fstrong%3EFrom%20Dh1.2m%20(estimate)%3Cbr%3E%3Cbr%3E%3C%2Fp%3E%0A
The years Ramadan fell in May
The specs
Engine: 3.0-litre six-cylinder turbo
Power: 398hp from 5,250rpm
Torque: 580Nm at 1,900-4,800rpm
Transmission: Eight-speed auto
Fuel economy, combined: 6.5L/100km
On sale: December
Price: From Dh330,000 (estimate)
SPEC%20SHEET%3A%20SAMSUNG%20GALAXY%20Z%20FOLD5
%3Cp%3E%3Cstrong%3EMain%20display%3A%3C%2Fstrong%3E%207.6%22%20QXGA%2B%20Dynamic%20Amoled%202X%2C%20Infinity%20Flex%2C%202176%20x%201812%2C%2021.6%3A18%2C%20374ppi%2C%20HDR10%2B%2C%20up%20to%20120Hz%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ECover%20display%3A%3C%2Fstrong%3E%206.2%22%20HD%2B%20Dynamic%20Amoled%202X%2C%202316%20x%20904%2C%2023.1%3A9%2C%20402ppi%2C%20up%20to%20120Hz%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EProcessor%3A%3C%2Fstrong%3E%20Qualcomm%20Snapdragon%208%20Gen%202%2C%204nm%2C%20octa-core%3B%20Adreno%20740%20GPU%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EMemory%3A%3C%2Fstrong%3E%2012GB%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ECapacity%3A%3C%2Fstrong%3E%20256%2F512GB%20%2F%201TB%20(online%20exclusive)%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EPlatform%3A%3C%2Fstrong%3E%20Android%2013%2C%20One%20UI%205.1.1%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EMain%20camera%3A%3C%2Fstrong%3E%20Triple%2012MP%20ultra-wide%20(f%2F2.2)%20%2B%2050MP%20wide%20(f%2F1.8)%20%2B%2010MP%20telephoto%20(f%2F2.4)%2C%20dual%20OIS%2C%203x%20optical%20zoom%2C%2030x%20Space%20Zoom%2C%20portrait%2C%20super%20slo-mo%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EVideo%3A%3C%2Fstrong%3E%208K%4024fps%2C%204K%4060fps%2C%20full-HD%4060%2F240fps%2C%20HD%40960fps%3B%20slo-mo%4060%2F240%2F960fps%3B%20HDR10%2B%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ECover%20camera%3A%3C%2Fstrong%3E%2010MP%20(f%2F2.2)%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EInner%20front%20camera%3A%3C%2Fstrong%3E%20Under-display%204MP%20(f%2F1.8)%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EBattery%3A%3C%2Fstrong%3E%204400mAh%2C%2025W%20fast%20charging%2C%2015W%20wireless%2C%204.5W%20reverse%20wireless%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EConnectivity%3A%3C%2Fstrong%3E%205G%3B%20Wi-Fi%2C%20Bluetooth%205.3%2C%20NFC%20(Samsung%20Pay)%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EI%2FO%3A%3C%2Fstrong%3E%20USB-C%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ECards%3A%3C%2Fstrong%3E%20Nano-SIM%20%2B%20eSIM%3B%20dual%20nano-SIMs%20%2B%20eSIM%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EColours%3A%3C%2Fstrong%3E%20Cream%2C%20icy%20blue%2C%20phantom%20black%3B%20online%20exclusives%20%E2%80%93%20blue%2C%20grey%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EIn%20the%20box%3A%3C%2Fstrong%3E%20Fold5%2C%20USB-C-to-USB-C%20cable%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EPrice%3A%3C%2Fstrong%3E%20Dh6%2C799%20%2F%20Dh7%2C249%20%2F%20Dh8%2C149%3C%2Fp%3E%0A
Veil (Object Lessons)
Rafia Zakaria
Bloomsbury Academic
Results
4.30pm Jebel Jais – Maiden (PA) Dh60,000 (Turf) 1,000m; Winner: MM Al Balqaa, Bernardo Pinheiro (jockey), Qaiss Aboud (trainer)
5pm: Jabel Faya – Maiden (PA) Dh60,000 (T) 1,000m; Winner: AF Rasam, Tadhg O’Shea, Ernst Oertel
5.30pm: Al Wathba Stallions Cup – Handicap (PA) Dh70,000 (T) 2,200m; Winner: AF Mukhrej, Tadhg O’Shea, Ernst Oertel
6pm: The President’s Cup Prep – Conditions (PA) Dh100,000 (T) 2,200m; Winner: Mujeeb, Richard Mullen, Salem Al Ketbi
6.30pm: Abu Dhabi Equestrian Club – Prestige (PA) Dh125,000 (T) 1,600m; Winner: Jawal Al Reef, Antonio Fresu, Abubakar Daud
7pm: Al Ruwais – Group 3 (PA) Dh300,000 (T) 1,200m; Winner: Ashton Tourettes, Pat Dobbs, Ibrahim Aseel
7.30pm: Jebel Hafeet – Maiden (TB) Dh80,000 (T) 1,400m; Winner: Nibraas, Richard Mullen, Nicholas Bachalard
What went into the film
25 visual effects (VFX) studios
2,150 VFX shots in a film with 2,500 shots
1,000 VFX artists
3,000 technicians
10 Concept artists, 25 3D designers
New sound technology, named 4D SRL
The five pillars of Islam
1. Fasting
2. Prayer
3. Hajj
4. Shahada
5. Zakat
ANDROID%20VERSION%20NAMES%2C%20IN%20ORDER
%3Cp%3EAndroid%20Alpha%3C%2Fp%3E%0A%3Cp%3EAndroid%20Beta%3C%2Fp%3E%0A%3Cp%3EAndroid%20Cupcake%3C%2Fp%3E%0A%3Cp%3EAndroid%20Donut%3C%2Fp%3E%0A%3Cp%3EAndroid%20Eclair%3C%2Fp%3E%0A%3Cp%3EAndroid%20Froyo%3C%2Fp%3E%0A%3Cp%3EAndroid%20Gingerbread%3C%2Fp%3E%0A%3Cp%3EAndroid%20Honeycomb%3C%2Fp%3E%0A%3Cp%3EAndroid%20Ice%20Cream%20Sandwich%3C%2Fp%3E%0A%3Cp%3EAndroid%20Jelly%20Bean%3C%2Fp%3E%0A%3Cp%3EAndroid%20KitKat%3C%2Fp%3E%0A%3Cp%3EAndroid%20Lollipop%3C%2Fp%3E%0A%3Cp%3EAndroid%20Marshmallow%3C%2Fp%3E%0A%3Cp%3EAndroid%20Nougat%3C%2Fp%3E%0A%3Cp%3EAndroid%20Oreo%3C%2Fp%3E%0A%3Cp%3EAndroid%20Pie%3C%2Fp%3E%0A%3Cp%3EAndroid%2010%20(Quince%20Tart*)%3C%2Fp%3E%0A%3Cp%3EAndroid%2011%20(Red%20Velvet%20Cake*)%3C%2Fp%3E%0A%3Cp%3EAndroid%2012%20(Snow%20Cone*)%3C%2Fp%3E%0A%3Cp%3EAndroid%2013%20(Tiramisu*)%3C%2Fp%3E%0A%3Cp%3EAndroid%2014%20(Upside%20Down%20Cake*)%3C%2Fp%3E%0A%3Cp%3EAndroid%2015%20(Vanilla%20Ice%20Cream*)%3C%2Fp%3E%0A%3Cp%3E%3Cem%3E*%20internal%20codenames%3C%2Fem%3E%3C%2Fp%3E%0A
Our family matters legal consultant
Name: Hassan Mohsen Elhais
Position: legal consultant with Al Rowaad Advocates and Legal Consultants.
Top 10 most polluted cities
- Bhiwadi, India
- Ghaziabad, India
- Hotan, China
- Delhi, India
- Jaunpur, India
- Faisalabad, Pakistan
- Noida, India
- Bahawalpur, Pakistan
- Peshawar, Pakistan
- Bagpat, India
