{"id":8501,"date":"2022-06-06T10:53:04","date_gmt":"2022-06-06T08:53:04","guid":{"rendered":"https:\/\/immune.institute\/?p=8501"},"modified":"2022-06-06T10:53:04","modified_gmt":"2022-06-06T08:53:04","slug":"cinco-grandes-desafios-ciberseguridad-2022","status":"publish","type":"post","link":"https:\/\/immune.institute\/en\/blog\/cinco-grandes-desafios-ciberseguridad-2022\/","title":{"rendered":"The 5 major challenges for cybersecurity in 2022"},"content":{"rendered":"

We are stating nothing new when we say that we are increasingly connected, and that there are more and more threats to which we are exposed. Being trained and protected in the field of cybersecurity <\/strong>it has become something essential both personally and at a business level.<\/p>\n\n\n\n

We have wanted to speak with Enrique Serrano<\/strong>, CEO and Founder of Hackrocks<\/a> Director Advanced Cybersecurity Master's<\/strong> IMMUNE, to tell us what the 5 biggest cybersecurity challenges facing users and businesses in 2022 are. <\/p>\n\n\n\n

1. Ransomware<\/h2>\n\n\n\n

tipo de software malicioso que cifra los archivos de la v\u00edctima y luego exige un rescate para descifrarlos. Type of malware<\/strong> it's asking us for a ransom to be able to access our information. We actually have this information, we can see it, and it's there, but we've lost access to it. <\/p>\n\n\n\n

How does this type of malware usually get in? Usually via email. Let's remember that, even if a large company, and even small ones, have cybersecurity investments<\/strong>, whether with a firewall, email protection, etc., if a user, or an employee, decides to open a malicious file, the entire company would be compromised. <\/p>\n\n\n\n

2. Phishing<\/h2>\n\n\n\n

Phishing is an old acquaintance to us all, but it's still here and remains a threat. What's happening? It's very simple. We are sent an email, or a message, with a link that makes us hesitate, and we enter our username and password. This way, we compromise our assets or those of our company because we must remember that when someone steals an employee's username and password, they can access shared files and cause problems we can't even imagine. <\/p>\n\n\n\n

The phishing attacks <\/strong>They are no longer simply attacks where they ask for your username and password and nothing else. They are more targeted. They often have our full names, and some interesting detail such as an old password, something that makes you think it's not a phishing attack but something more believable. Therefore, we need to be very aware, protected, and confident that when a phishing attack occurs, a company's users will know that this can happen, that it is a threat and, of course, not click where we shouldn't.<\/p>\n\n\n\n

3. Espionage<\/h2>\n\n\n\n

When we talk about espionage, we might be referring to industrial espionage, espionage against a head of government, or \u2013 why not? \u2013 against end users such as any one of us. Sometimes we think: \u201cWho\u2019s going to spy on or hack me? I\u2019m not famous.\u201d This is a mistake. Of course we can be spied on and, without realising it, become accomplices in a cyber-attack<\/strong>. They may not be trying to get hold of a specific image of you, but they might be able to spy on a third party via your device. That\u2019s why we could be hacked at any moment, or fall victim to the next cyberattack. Espionage is rife.<\/p>\n\n\n\n

We have seen that governments have been discussing espionage recently, and we have also seen how, at a corporate level, one company can spy on another through industrial espionage. Information is power, and whoever accesses it will have more information, likely privileged, and will be able to make better decisions, which will translate into economic benefits. or in other aspects.<\/p>\n\n\n\n

Therefore, it must be taken into account that we may be being spied upon, what data we store, how we store it, who accesses it, how we are protecting it, what access management we have, identity management, etc. There are many factors that we have to take into account in the area of cybersecurity<\/strong> to avoid being spied on.<\/p>\n\n\n\n

4. Incident Response<\/h2>\n\n\n\n

It is fundamental to have lived the experience and what it feels like when you have a security incident before it happens. And how do you do this? By training and educating. Just as we practice how to respond, for example, to a fire, why don't we Cybersecurity drills<\/strong>?<\/p>\n\n\n\n

Having experienced that, and feeling tension, pressure, and that you've been hacked, is an indescribable situation. If you've been through it before, you'll take it more calmly and be able to respond appropriately. <\/p>\n\n\n\n

It's very important to have trained and had this experience beforehand because that will make you better prepared when that incident occurs, because it will occur, and you will know how to respond correctly. <\/p>\n\n\n\n

5. Training<\/h2>\n\n\n\n

Finally, the fifth challenge, which could encompass others, is training. Training in two senses.<\/p>\n\n\n\n

On the one hand, that companies should give their employees training to be prepared. Workers should to train in cybersecurity<\/a><\/strong>. You have to be prepared; knowing what risks exist in the market is a differentiating factor in preventing a cyber-attack. <\/p>\n\n\n\n

On the other hand, one must train to seek the jobs of the future and protect future companies. Nearly two million positions will be needed. I work in cybersecurity. <\/strong>In 2022. It's already accepted that there won't be people, that there isn't talent yet. Therefore, it's in our hands to train ourselves and be the next ones who will protect these future jobs, which, perhaps, probably, don't even exist today.<\/p>\n\n\n\n

Are you looking for technology training? Fill in the form for more information<\/strong><\/h3>\n\n\n\n