It’s December- What is next year looking like?

In today's rapidly evolving threat environment, traditional security measures are no longer sufficient. Cyber adversaries are continuously refining their tactics, making it essential for organizations to adopt a proactive and layered approach to authentication and identity verification. Employees and stakeholders must be trained to recognize social engineering attempts and remain vigilant against increasingly sophisticated schemes.

Additionally, fostering a culture of cybersecurity awareness at all organizational levels can make a critical difference. Regular training, scenario-based exercises, and open communication about emerging threats empower teams to respond effectively and minimize risk. By embracing innovation responsibly and prioritizing both policy and practice, organizations can bolster their defenses and safeguard sensitive data in an unpredictable digital landscape.

Here are some insights to keep on your radar for NEXT YEAR:

1. Breach entryway remains the help desk. Password changes help, however many people already have their SSN, middle names and other sensitive information on the dark web- therefore, this is not a good way to validate identity.  What can your organization do? 

• Review help desk policies to include better and different ways to validate identity. 

• Update education and training materials to include trending security issues and conduct scenario based exercises, including phishing simulations.

• Implement layered security controls with multifactor authentication, encrypted password protocols, etc.

• Invest in advanced intrusion/detection/prevention systems to create multiple lines of defense.

• Regularly update hardware and software configurations to reduce vulnnerabilities.

• Conduct internal testing to see if identification is appropriately confirmed  Call your own help desk and try to simulate another employee (white hacking attempt).  Update incident response and disaster recovery plans to include up to date technology advancements.

• Leverage SOC2 or other audit requirements and test prior to formal review.

• Conduct regular penetration tests and vulnerability scans to identify both strengths and weaknesses, then prioritize patching based on level of risk.

• Strengthen data protection and backup strategies.

2. With the rapid advancement of artificial intelligence, organizations face new threats such as intercepted Teams calls and deepfake attacks that can mimic the voices of executive management, C-Suite, or Board of Directors. These sophisticated impersonation attempts pose significant risks to organizational security and reputation.  What can your organization do?

• Integrate Deepfake Scenarios into Disaster Recovery Testing.  Regularly include deepfake and voice impersonation simulations in annual disaster recovery and incident response exercises. This ensures teams are prepared to recognize and respond to these emerging threats.

• Update organizational cybersecurity policies to require multi-factor verification of individual identities when joining work calls, especially for sensitive meetings. Consider implementing visual verification or secure authentication methods to confirm participants’ identities.

• Adopt collaboration tools with robust security features, such as end-to-end encryption and real-time monitoring for unauthorized access. Ensure regular audits of access logs and alerting for suspicious activity.

• Utilize secure collaboration platforms and monitor for unauthorized access.  Work with legal and IT teams to thoroughly review contracts and security language for collaboration platforms. Ensure vendors are held to high security standards and address data privacy, incident response, and breach notification requirements.

• Update training materials to include current trends in AI-driven threats, such as deepfake technology. Conduct scenario-based exercises and phishing simulations to increase awareness and resilience among employees.

3. Recent surveys indicate that two-thirds of organizations, including their CISOs, believe they have sufficient protection against cyber threats. However, in a rapidly evolving digital landscape driven by continuous innovation, it is critical to ask: does your organization truly have appropriate governance in place? Navigating the world of artificial intelligence without robust safeguards is like handing your teenager the keys to a Formula 1 car without installing a seatbelt—an approach fraught with risk and uncertainty.  When organizations are moving fast to provide competitive products but not keeping up with compliance, is the risk worth it?  What can you do?

• True resiliency come from proactive leadership.  It’s essential to ensure that your CISO and security teams are engaging in meaningful, forward-looking conversations about how technological advancements—especially AI—are reshaping the cybersecurity terrain. These discussions should go beyond general concerns, delving into the specifics: What new capabilities are emerging? How might they access your systems? What data must be shared, and what contractual language best protects your interests? Regularly reviewing and updating policies to address AI-driven threats, such as deepfake attacks and voice impersonations, is no longer optional but necessary for security and reputation management.

• Maintaining a comprehensive data inventory is fundamental. Do you have full visibility into where all your data resides? Can you account for which third parties have access to your information—and precisely what types of data they hold? Is there a process to delete the data upon request?  Understanding your data landscape enables you to respond effectively to incidents, comply with regulations, and ensure that all parties involved are held to stringent security standards.

• Investing in your people is key. Are you empowering your teams to lead strategically and build true resilience? Providing ongoing training that addresses current trends—such as AI-driven phishing and deepfake scenarios—and conducting scenario-based exercises equips employees to recognize and respond to emerging threats. Leadership should champion a culture of security, encouraging collaboration between IT, legal, and operational teams to ensure robust protections at every level.