Larry David doesn’t want you to say “Happy New Year” after January 3, but he didn’t say anything about us not posting a new year list of cybersecurity trends on January 20.
A lot is up in the air with 2023, but one thing’s for sure—cybersecurity will continue to be a high impact sector in our day to day life. Nearly every company has some need for tech, and hacks of all kinds are increasing.
Here’s what we’re seeing as the three biggest trends in cybersecurity in 2023.
2023's big three cybersecurity trends
Zero-trust security
2023—like recent years—looks like it will be defined by an increase in digitization across the business and social worlds. Nearly every company is now, to some extent or another, a tech company, and with the continuing move toward tech integration comes a rise in cyberattacks. A zero-trust security approach to solving those problems is becoming the norm.
By Eoin Higgins
January 20, 2023
Amelia Kinsinger
Zero-trust, no password, AI—find out what might be big this year in cybersecurity.
Zero-trust is an approach to cybersecurity that assumes nothing is safe. Nothing is left to chance or assumed to be secure, and the system is always being tested for vulnerabilities. Continuous certification and permissions are given to apps rather than a single, one and done permission.
As Dan Lohrmann, field CISO at the IT services provider Presidio, told IT Brew last summer, the tactic essentially repeatedly asks: “Who are you? What can you access? What are you authorized to access? What are you accessing? And then monitoring all around that.”
It’s a stringent—and necessary—approach to cybersecurity hygiene in a world of increased threats. We can expect to see it continue to be a matter of course in cybersecurity efforts in 2023.
Passwordless authentication
True passwordless authentication bypasses inputting a text password at all. Instead, logging in requires using an MFA-style mobile code, USBs, biometrics, or other outside-the-box approaches.
Look at it as part of the same tactic as zero-trust: layers upon layers of protection against highly sophisticated attackers.
Of course, mainstreaming the technique is important. “Websites have to adopt the standard for it to work,” Lance Spitzner, director of security awareness at the SANS Institute, told IT Brew in an interview last fall. “So, there is something on the horizon, but it’s gonna take a while.”
2023’s big three cybersecurity trends
Zero-trust, no password, AI—find out what might be big this year in cybersecurity.
Zero-trust security
Looking to stop hackers from accessing systems? Password security has always been a major factor in making sure your information is locked down. It’s also traditionally been one of the weaker points for internal security.
That’s why we’re likely going to see an industry wide shift to passwordless authentication processes going forward. Think of multi-factor authentication, using your phone as a second layer of protection to ensure your password is protected, as a first step here.
Finally, the best way to get rid of chance in cybersecurity might be to simply remove the human element altogether. Why take the risk of someone making a mistake?
AI-based security
AI-based security aims to get rid of that level of chance and introduce consistency. In practice, this is seen by AI taking a strong role in threat detection, automated responses, and protection protocols. Using autonomous systems for these aspects of cybersecurity management makes sense and saves time.
The analytical tools provided by AI are also critical for supplementing existing security measures, as Pillsbury Law cybersecurity expert Brian Finch told CNBC last year. “Most interestingly, we see behavioral analysis tools increasingly using AI,” Finch said. “By that, I mean tools analyzing data to determine behavior of hackers to see if there is a pattern to their attacks—timing, method of attack, and how the hackers move when inside systems.”
Sign up for the IT Brew newsletter to stay up to date on the latest industry news and insights.
Look at it as part of the same tactic as zero-trust: layers upon layers of protection against highly sophisticated attackers.
Of course, mainstreaming the technique is important. “Websites have to adopt the standard for it to work,” Lance Spitzner, director of security awareness at the SANS Institute, told IT Brew in an interview last fall. “So, there is something on the horizon, but it’s gonna take a while.”
True passwordless authentication bypasses inputting a text password at all. Instead, logging in requires using an MFA-style mobile code, USBs, biometrics, or other outside-the-box approaches.
Passwordless authentication
As Dan Lohrmann, field CISO at the IT services provider Presidio, told IT Brew last summer, the tactic essentially repeatedly asks: “Who are you? What can you access? What are you authorized to access? What are you accessing? And then monitoring all around that.”
It’s a stringent—and necessary—approach to cybersecurity hygiene in a world of increased threats. We can expect to see it continue to be a matter of course in cybersecurity efforts in 2023.
Zero-trust is an approach to cybersecurity that assumes nothing is safe. Nothing is left to chance or assumed to be secure, and the system is always being tested for vulnerabilities. Continuous certification and permissions are given to apps rather than a single, one and done permission.
Zero-trust security
Larry David doesn’t want you to say “Happy New Year” after January 3, but he didn’t say anything about us not posting a new year list of cybersecurity trends on January 18.
A lot is up in the air with 2023, but one thing’s for sure—cybersecurity will continue to be a high impact sector in our day to day life. Nearly every company has some form of tech need and hacks of all kinds are increasing.
Here’s what we’re seeing as the three biggest trends in cybersecurity in 2023.