Risk Assessments/Management

BeyondTrust’s 2024 Forecast: AI Threat Grows

Governance for AI

BeyondTrust's annual forecast of cybersecurity trends for the New Year and beyond provides insights into various aspects of the evolving cybersecurity landscape.

Here's a summary of the key predictions and trends the identity and access security provider has identified:

Prediction #1: Evolution of the AI Threat (in three stages):

  • Part I. Weak AI will assist threat actors in discovering vulnerabilities and evading detection.
  • Part II. AI will enhance existing attack vectors and create new ones, including the generation of fake content.
  • Part III. The proliferation of AI assistants may lead to more security vulnerabilities in software development due to AI-generated code.

Prediction #2: Generative AI may make dedicated applications obsolete as it replaces them with voice commands and focuses on results-driven and function-specific applications.

Prediction #3: UCS will phase out traditional POTS and dedicated VOIP, but vulnerabilities and hacks may compromise this communication medium's security.

Prediction #4: Electronic payments and subscription models for products and services will continue to grow, but subscription gaps may pose data security risks.

Prediction #5: The widespread adoption of USB-C connectors may simplify the job for threat actors, increasing the risks of attacks through this standardized connection type.

Prediction #6: Ransomware attacks will shift from data extortion to selling exploitable data about organizations, such as vulnerabilities, exploits, identities, privileges, and hygiene.

Prediction #7: Cyber insurance is expected to become more standardized across providers, enhancing risk reduction and liability management for businesses.

Longer Terms Trends

BeyondTrust also envisions longer-term cybersecurity trends over the next five years...

Prediction #8: Malware is expected to decline as identity compromise and native tools replace software exploits. The focus will shift to identifying compromised identities and detecting unusual behaviors.

Prediction #9: Nation-states may exploit AI supply chains to introduce vulnerabilities, potentially compromising AI infrastructure and creating new attack vectors.

Prediction #10: Vintage electronics with modern connectivity may open new vulnerabilities and attack vectors.

Prediction #11: Identity verification services will emerge as a response to identity-based threats, providing high-confidence identity verification in the electronic world.

Prediction #12: AI governance and compliance fields will evolve, focusing on responsible AI regulation, ethical standards, and privacy. Regulations may vary by region.

Prediction #13: Physical remote controls are being phased out in favor of phone applications and voice commands, reducing e-waste but potentially introducing new network security challenges.

A Word of Caution for MSSPs, MSPs

Beyond Trust cautioned that the increasing role of AI in technology development, changes in communication technology, and new threats and attack vectors must be managed as risk factors, said Morey Haber, BeyondTrust chief security officer.

Haber emphasized that organizations need to stay vigilant and adapt their security strategies to address these emerging challenges.

“Looking ahead helps us anticipate where cyber threat actors will undoubtedly head, and preparing for what’s ahead makes all the difference in risk management effectiveness,” he said.

D. Howard Kass

D. Howard Kass is a contributing editor to MSSP Alert. He brings a career in journalism and market research to the role. He has served as CRN News Editor, Dataquest Channel Analyst, and West Coast Senior Contributing Editor at Channelnomics. As the CEO of The Viewpoint Group, he led groundbreaking market research.