“There will be increased scrutiny under your hood when it comes to security posture and technology vendors,” said Jess Burn, an analyst at the advisory firm Forrester. “Product security is becoming a focal point for insurance carriers, prompting them to inquire not just about whether you have it, but also about who provides the product.”
Human error will remain the primary factor, particularly in breaching third parties, such as vendors or partner organizations. These individuals continue to enable attackers to exploit the companies they are hired to help and protect.
While most third parties have their security strategies and infrastructure, many may not match up to those of their customers, creating additional vulnerabilities for attackers.
Here are nine trends to consider:
- Increase of zero-day vulnerabilities in extortion attacks
- Generative AI impacts email security
- Widespread adoption of passwordless
- CSOs, CISOs and CEOs work more closely together
- Identity verification to see wider adoption
- Increased adoption of proactive security tools and technology
- More regulations for connected and embedded devices
- Third-party security struggles continue
- Vendors could affect cyber insurance policies
Read more of Kyle Johnson’s article in TechTarget Security.”