This February 2022, the SIC magazine, specialized in cybersecurity management, information security and privacy, has launched an issue dedicated to the evolution of cyberattacks in 2022.

Unfortunately, as Lorena Boix Alonso, Director of Digital Society, Confidence and Cybersecurity, comments, “attacks on critical infrastructures are expected to intensify, particularly on supply chains (in software) and via ransomware, with more diverse extortion methods.” In this way, cybersecurity protection has become key to the design of global policies. During the speech of the President of the European Commission, Ursula von der Leyen at the end of last year 2021, she already highlighted the importance of having a European cyber defense policy since “we cannot talk about defense without talking about cyber security”.

This issue of the SIC magazine collects opinions from very different profiles, from senior officials of the European Central Bank, the European Cybercrime Center (EC3) – EUROPOL or the United Nations. It also gives a voice to relevant international actors, public authorities, the State Attorney General’s Office, regional entities, as well as associations and analysts, research centers and laboratories, and industry representatives.

Miguel Rego, Director General of Funditec, has had the opportunity to participate in this edition and present his point of view:

The concept of “work from anywhere” (WPA-Work From Anyware) has gone from being a temporary measure in response to the pandemic to being a permanent strategy, and this situation will continue to create many opportunities for attackers in 2022. This year we will see an increase in multifaceted extortion cases based on ransomware, especially in the health sector, and criminals will intensify the use of new tactics, such as recruiting insiders within the targets or increasing the level of punishment for those who hire negotiating companies to reduce the amount to be paid. The extortion will also be extended to companies in the attacked supply chain that have had to share information with him. Apart from ransomware, another cyber threat that will continue to concern us will be the shortage of cyber-talent. Until AI and “machine learning” allow cybersecurity systems to have the autonomous capacity to respond, we will continue to need a huge volume of engineers, analysts, consultants and operators to manage all the complexity deployed. Now, more than ever, cybersecurity “upskilling” and “reskilling” programs are essential to generate the critical mass of employees needed by the entire cybersecurity value chain. Of course all this, and that employers know how to offer attractive conditions to capture that talent that is so essential for their digital survival”.

Here you can find the issue.