Organizations are expected by KPMG analysts to lean more toward digital trust and zero trust implementation to combat cybersecurity threats in 2023, reports VentureBeat.
Establishing and maintaining digital trust will be gaining value among organizations as they seek to keep up with cyber regulations concerning artificial intelligence, digital infrastructure, and supply chain security, as well as transparency in attacks, said KPMG International Global Cybersecurity Leader Akhilesh Tuteja.
On the other hand, KPMG EMA Cybersecurity Leader Dani Michaux said that organizations should consider the shortening of the time window for cyberattack response amid threat actors' increasing use of automation. Growing security threats are poised to prompt organizations to adopt zero trust as they work on achieving perimeter-less security.
"Simply layering more and more protecting controls increasingly risks impeding the business. Getting the right balance between protection and rapid detection and response will be key to success and people need to be at the heart of that design," said KPMG U.S. Cybersecurity Leader Kyle Kappel.
Numerous government, political, and academic organizations in South Korea have been targeted by the Chinese state-backed advanced persistent threat operation TAG-74 as part of a "multi-year" cyberespionage campaign part of China's intellectual property theft and influence operations, The Hacker News reports.
BleepingComputer reports that vulnerable Openfire messaging servers impacted by the already addressed high-severity authentication bypass flaw, tracked as CVE-2023-32315, are being subjected to ongoing attacks aimed at ransomware encryption and cryptominer distribution.
Ukraine's Prosecutor General's Office and other departments involved in war crimes documentation have been facing mounting cyberattacks from Russian state-sponsored threat operations looking to obtain evidence regarding such crimes, which is a sharp contrast from the previous targeting of energy facilities, Reuters reports.