Kaspersky threat predictions for 2022: Machine “unlearning,” undetectable ICS attacks and more digital health vulnerabilities

Woburn, MA — November 23, 2021 — Each year, Kaspersky experts look back at the biggest security developments over the past 12 months as part of the Kaspersky Security Bulletin series to help users and businesses usher in a safer new year.

Here are the highlights of predictions for the industrial, healthcare and privacy sectors.

Machine “unlearning” on the rise

Modern machine learning can memorize massive chunks of information about users’ private behavior. As governments contemplate new regulations to protect citizens’ privacy, will that extend to the private data being used to train ML models in the first place? If it does, then expect companies and researchers to develop new technologies such as “machine unlearning” that will allow them to remove data from already trained algorithms.

Similarly, governments and users are calling for more transparency when it comes to machine learning algorithms. Such algorithms are increasingly used for various decisions from determining whether or not people qualify for a loan to the ads displayed on users’ screens. However, this can lead to privacy concerns and even discrimination. In the coming year, researchers expect more discussions and regulations surrounding the decisions being made by automated systems.

Attacks against industrial organizations will continue and may become harder to automatically detect and prevent

Expect attacks to continue to disrupt operations and cause harm to businesses in the coming year in even more devastating ways. The reason for this is, as attackers are forced by governments’ actions to invest in the security of their own operations and to mitigate their risks, attacks on financial targets may rise. As such, there will be a greater need to adopt more efficient tactics and technologies to react to the security controls and mechanisms recently implemented in industrial organizations.

In addition, cybercriminals are now shortening the lifecycle of the malware in use. A particular malicious sample may be used against a very limited set of targets and only be active for a couple of weeks while it is at its peak effectiveness and then a new build is released to bypass detection. Cyber attackers are also limiting their use of malicious infrastructures. Research into recent APT activities shows that some campaigns’ Command and Control servers may only be active for a few of hours during the relevant phase of the operation. Some attackers even avoid using a malicious infrastructure altogether in the source of the attack.

Digitalization in the healthcare sector will result in more data breaches

Last year, Kaspersky researchers predicted that as the pandemic took hold, the healthcare sector would receive major attention from cybercriminals. This certainly proved true, as criminals sought to make money profit off the vaccine and ransomware hit hospitals, endangering patients’ lives.

In the year to come, the attack vector for the healthcare sector will only continue to expand, as more patient data moves to the internet and healthcare providers continue adopting digital treatment services, such as telehealth. 2021 already saw healthcare data breaches increase by one and half times when compared to 2019. Expect attackers to search for vulnerabilities they can exploit in new wearable devices and medical applications being developed or creating fraudulent apps that users may mistakenly download. What’s more, as different countries set different vaccination rules for traveling and visiting restaurants, the market for fraudulent digital vaccination passports and certificates will continue to grow.  

To learn more about the most important trends in the cybersecurity industry in 2022, check out the Kaspersky Security Bulletin 2021.

Check out Kaspersky’s new series hacker:HUNTER Behind the Screens. Created by Tomorrow Unlocked, this series explores recent cyber attacks against major businesses and offers solutions for how your organization can stay safe from similar threats.

About Kaspersky

Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at usa.kaspersky.com.

Media Contact:

Cassandra Faro

Cassandra.Faro@Kaspersky.com

781-503-1812