From improvements in productivity to greater attack prowess, technology will be a sharper double-edged sword next year, according to this expert.
As the year draws to a close, it is a moment to offer informed insights into what the technology and cybersecurity landscape may hold in 2024.
In particular, innovations in AI have become a pivotal force in the technology landscape. ChatGPT, in particular, has disrupted norms and seeped into many facets of daily life. Its proliferation is also streamlining many business operations, from coding to accounting, and promises to improve productivity.
However, the adoption of AI is also leading to a significant transformation of the cyber threat landscape.
With this in mind, my predictions for 2024 are:
-
AI will spur a rapid evolution of cyber threats
In 2024, AI will change the threat landscape in fundamental ways. Firstly, the convergence of human ingenuity with AI capabilities will serve as a ‘force multiplier’ for cyber threat actors. This amalgamation will broaden both their reach and technical prowess.Security teams have already observed AI’s use in generating ransomware and malware; however in 2024 that use will quickly increase in other ways. The technology will enable cybercriminals to exploit specific areas, quickly detect vulnerabilities, and evade detection.
Also, the evolution of AI holds the promise of ushering in autonomous, computer-based threat actors capable of executing end-to-end cyberattacks. This advancement could empower a single threat actor to perform in the same way as a large group, replacing human technical skills and gaining a competitive edge over security tools and teams.
- AI’s role in enhancing existing attack vectors such as phishing will continue: however the technology will also be used to craft new attack vectors thanks to the increasing quality of output produced by generative AI tools.
- AI even has the potential to reshape human understanding of reality by fabricating deceptive content across various mediums including articles, legal cases, correspondence, videos, advertisements, and historical data.
- Additionally, the widening adoption of AI assistants by programmers may paradoxically lead to an increase in errors in software development, breeding security vulnerabilities within source code. Some studies suggest that developers who rely on AI assistants are more prone to injecting vulnerabilities into their outputs. Cloud services and AI-generated errors may therefore pave the way for unintentional software security flaws.
-
Dedicated applications will face obsolescence
In the wake of generative AI’s transformative influence the era of dedicated applications and icons will begin to fade during 2024. The foundations will be put in place for a future where tasks that were once app-bound are seamlessly navigated through AI interfaces. This will make things such as mobile applications for banking, travel, and information retrieval redundant. -
UCS will become the future of communication
During the coming year, cloud-driven Unified Communication Services (UCS) will increasingly replace plain-old telephone services and dedicated voice-over-IP systems. However, this revolution in communication will also bring with it vulnerabilities and exploits that challenge a once-secure communication landscape. -
Subscription overload will increase
The shift towards subscription-based access to myriad products and services will herald a new era in ownership during the coming year. While offering convenience, this evolution will also cause concerns around data loss and security breaches when gaps in subscription licensing occur. -
USB-C standardization will continue
The standardization of USB-C will usher-in better compatibility and ease of use, but will also introduce a new avenue for threat actors to exploit physical connections. This will lead to an upsurge in so-called ‘’ and related attack vectors. -
A shift in ransomware trends
Ransomware actors will shift from extorting data to selling exploit and vulnerability information. They will increasingly seek to sell information that can compromise an organization rather than directly engage in ransomware attacks. -
Cyber insurance will be more standardized
The maturation of cyber insurance will evolve towards a more standardized approach. This will involve the consideration of core controls and frameworks that can help to mitigate risk and liability across providers.
Security teams and their Chief Information Security Officers who understand the above trends will be well-placed to reap the rewards while navigating potential challenges effectively.