ybersecurity firm Bridewell has highlighted the critical trends and

Its report , Cyber Security : What to Expect in 2024 , is informed by insights collected through continuous monitoring from its

24 / 7 Security Operations Centre ( SOC ) and input from its dedicated consultants and cyber experts .

Martin Riley , Director of Managed Security Services at Bridewell , said : “ Looking ahead to 2024 , we can see how emerging technology tools , sophisticated attack methods and the eruption of AI are transforming how criminals organise and operate , but also how legitimate organisations can defend themselves . To strengthen their security posture at a time of great change , organisations must avoid dependence on technology as the sole answer .

“ They must acquire greater visibility and threat intelligence and develop their processes and technologies to ensure they are leveraging sophisticated threat-informed managed detection and response ( MDR ) and extended detection and response ( XDR ) capabilities .”

Among the challenges on the horizon for next year are the growth of Ransomwareas-a-Service ( RaaS ); the rise of malware that thinks for itself ; cyber strikes to the supply chain ; the energy sector facing heightened risks ; and cyberattacks corresponding with major political events with the UK government stepping up security to prevent threat actors from entering networks or disrupting proceedings during 2024 .

ynopsys has published the 2023 Software Vulnerability Snapshot

The data , analysed by Synopsys Cybersecurity Research Centre ( CyRC ), shows a significant decrease in vulnerabilities found in target applications – from 97 % in 2020 to 83 % in 2022 – an encouraging sign that code reviews , automated testing and continuous integration are helping to reduce common programming errors .

The report details three years of data ( 2020 – 2022 ) derived from tests run by Synopsys Security Testing Services , with targets made up of web applications , mobile applications , network systems and source code . Tests are designed to probe running applications as a real-world attacker would , incorporating multiple security testing techniques including penetration testing , dynamic application security testing ( DAST ), mobile application security testing ( MAST ) and network security testing .

“ For the first time in years , we ’ re seeing a decrease in the number of known vulnerabilities in software , which provides new hope that organisations are taking security seriously and prioritising a strategic and holistic approach to software security in order to make a lasting impact ,” said Jason Schmitt , General Manager of the Synopsys Software Integrity Group . “ As hackers have become more sophisticated , a multilayered security approach is needed more than ever to identify where software risks live and protect businesses from being exploited .”

6 WWW . INTELLIGENTCISO . COM