The new era of cyber threats

Features
By
published

With AI-powered attacks and state-backed groups, security teams face face a new wave of sophisticated threats

The words "The new era of cyber threats" set against a red, glowing curved grid on a black background. The words "of cyber threats" are yellow, while the others are white. The ITPro Podcast logo is in the bottom right-hand corner.
(Image credit: Future)

The cybersecurity landscape gets more complicated every year, with emerging technologies such as AI and geopolitical tension bringing extra chaos to any CISO’s desk.

Though automated defense systems are a welcome feather in cap for any company, it’s not just the good guys who have access to the latest tools. Off-the-shelf frameworks to launch attacks are becoming more common and businesses can’t rely on any single service to be a silver bullet.

What are the individual forces at play here? And how can security teams keep up?

In this episode, Rory speaks with Kevin Mandia, founder and former CEO at Mandiant and current board member at cybersecurity firm Expel, and Dave ‘Merk’ Merkel, co-founder and CEO at Expel, to learn more about the current global cybersecurity landscape and what the future holds for security teams.

Highlights

“There was a time where zero days were in the purview of modern nations. That's kind of who used them. And that's totally changed, now it's probably 50/50. You make so much money now on the financial side that you can afford to pay people to find the exploits. With the growing complexity of software, and software that depends on software that depends on software that depends on software and the shift change with AI coming, the vuln discovery capabilities that may be present in some AI components, the criminal element is operating at a nation state level, almost.”

RELATED WHITEPAPER

A whitepaper from ServiceNow on steps to a stronger security posture through automation, with image of businessman

(Image credit: ServiceNow)

Build a stronger security posture

“Look, I'll always be a proponent for adopting effective multi factor. And if you can adopt, not quite multi factor, but things like passkeys, it is better than passwords, that'd be great. I am still really skeptical face that there's any panacea there, I think you have to kind of keep up with the time so you completely lose ground.”

“Don't expect miracles, because just as you figure those things out, if you get them really humming and scaling, you're now defending in a certain way, the attacker is going to watch you, and then they're going to adapt their their approach to try to figure out how to take away some of your advantage. And so you have that kind of two steps forward, one one step back problem, because the attacker is not static.”

Footnotes

Subscribe

Rory Bathgate
Rory Bathgate
Features and Multimedia Editor

Rory Bathgate is Features and Multimedia Editor at ITPro, overseeing all in-depth content and case studies. He can also be found co-hosting the ITPro Podcast with Jane McCallion, swapping a keyboard for a microphone to discuss the latest learnings with thought leaders from across the tech sector.

In his free time, Rory enjoys photography, video editing, and good science fiction. After graduating from the University of Kent with a BA in English and American Literature, Rory undertook an MA in Eighteenth-Century Studies at King’s College London. He joined ITPro in 2022 as a graduate, following four years in student journalism. You can contact Rory at rory.bathgate@futurenet.com or on LinkedIn.

More about cyber attacks
Aerial view of the Hammersmith Bridge in the Hammersmith and Fulham Council borough of London.

London council claims it faces 20,000 cyber attacks per day
NHS logo displayed on a smartphone screen in white lettering on a blue background.

Cyber attack delayed cancer treatment at NHS hospital
LastPass logo on huawei phone sitting on laptop keyboard

LastPass targets revenue opportunities with partner program refresh
See more latest