Proudly serving Virginia, Maryland and DC // Call us today! 703.396.6120
V2 SystemsV2 Systems

by Erik Briceno

As we ease into 2022, many of the uncertainties that shaped 2021 remain. The cybersecurity challenges that accompanied the pandemic have persisted, as hybrid remote workspaces have become a way of life. And through it all, the threat landscape continues to evolve, as innovations in cloud computing and other arenas open up new threats.

The fallout from attacks like the SolarWinds supply chain incident and the Colonial Pipeline breach was all over the headlines in 2021. These served to demonstrate just how successful attacks of this nature can be, and as such, we can expect much more to come. In part 1 of our 3-part series, we make a few predictions.

Supply chain complexity and vulnerabilities grow.

The SolarWinds breach was based on malware in a software update that had gone undetected. However, securing software isn’t easy in fast-paced DevOps-driven organizations. That’s because most workflows are all about pushing deliverables out fast, rather than security by design. As development processes and supply chain for devices become more complex, the attack surface will only grow.

The good news is best practices like code signing can help companies bake security into each stage of the development process. They can take control of development and confirm the integrity of code before it moves further along in the development cycle and out to production environments and customers. Awareness of the dangers of key sharing and inspecting code along each step of the development cycle, as well as preventing tampering after signing, will go a long way to secure code. Setting up a software bill of materials (SBOM) can also provide visibility into code sourcing, tracking all the components that make up a software app.

Cyberterrorism will embolden bad actors.

Cyberterrorists demonstrated their potential to paralyze infrastructure in events like the attacks on the Colonial Pipeline and the Oldsmar water treatment facility in Florida. The Florida incident could have had serious consequences, as the attacker was attempting to poison the city’s water supply.

New opportunities are emerging all the time, limited only by attackers’ imaginations. High-profile technology environments such as private space launches and elections could prove inviting targets. Public and private organizations that are vulnerable to cyberattacks will need to redouble their focus on a zero-trust approach to security.

Ransomware will continue to expand its reach.

V2Systems 2022 Predictions Pt. 1 December2021 Blog1 Pic2 1024x683 - 2022 Predictions, Part 1: Supply Chains, Ransomware and CyberterrorismRansomware attacks impacted a diverse array of industries in 2021, including health care organizations, technology companies and automotive manufacturers. Like cyberterrorist events, ransomware attacks often attract heavy press coverage, which can further encourage bad actors seeking publicity. Ransomware attacks will continue to escalate, especially as the use of cryptocurrency expands — and makes ransom payments harder to trace outside the banking system.

What else does 2022 have in store? Stay tuned.

 

Since 1995, Manassas Park, VA-based V2 Systems has employed local systems administrators, network engineers, security consultants, help desk technicians and partnering companies to meet a wide range of clients’ IT needs, from research, to implementation, to maintenance. Concentrate on your VISION…We’ll handle the TECHNOLOGY!

ebriceno
About ebriceno
Erik Briceño is the owner of V2 Systems, Inc., one of Northern Virginia’s leading Information Technology Managed Service Providers. He is an inspiring leader for its employees and instrumental business partner for its customers. He is passionate about V2’s purpose, dedicated to exceeding expectations and a consummate professional not afraid of jumping in and getting his hands dirty. Prior to joining V2 Systems in 2002, Erik was a co-founder and COO of Ampcast.com, a leading provider of online resources servicing over 5,000 independent musical artists. At Ampcast.com, Erik spearheaded all aspects of corporate development, funding, strategic vision, and business development for the firm. From 1997 to 1999 Erik held the position of Acoustic Systems Engineer for Electric Boat Corporation, a leading defense contractor. In this role, Erik was responsible for the acoustic fidelity of two noise critical systems and components in the US Navy’s nuclear submarine systems. Erik holds a B.S. in Mechanical Engineering from Vanderbilt University and a Masters of Business Administration from George Mason University. When not working, you will find Erik a dedicated family man, raising two young children with his lovely wife Karen. Together, they enjoy building legos, playing baseball, skiing, riding horses, swimming, traveling, and fixing up old Mopars.
2022 Predictions, Part 1: Supply Chains, Ransomware and Cyberterrorism