Getty Images/Nitat Termmee
The shift to remote work and cloud computing services has made it harder to secure businesses from attack, especially in the face of ongoing shortages of skilled security staff, according to Gartner. But that’s just part of the change the tech analyst firm foresees in the security landscape.
“Organizations worldwide are facing sophisticated ransomware, attacks on the digital supply chain and deeply embedded vulnerabilities,” said Peter Firstbrook, research vice president at Gartner. The analyst firm said that new challenges can be divided into three main groups: new responses to sophisticated threats; the evolution of security practices; and rethinking technology.
Attack Surface Expansion
In particular, Gartner warned that enterprise attack surfaces — the sum of the systems and access points that organisations need to defend — are expanding. It points to risks associated with the Internet of Things, open-source code, cloud applications and complex software supply chains, and warns these have “brought organizations’ exposed surfaces outside of a set of controllable assets”. Organizations must look beyond traditional approaches to security monitoring, detection and response to manage a wider set of security exposures, said Gartner.
Digital Supply Chain Risk
Attacks on the software supply chain are hard