The cybersecurity landscape has become increasingly hostile in recent years, with a growing threat from common cybercriminals as well as the looming shadow of state-level geopolitical activity. Recent research commissioned by the UK government found that 32 percent of UK businesses have identified a breach or attack in the last 12 months and – it should be noted – many more have likely been compromised but lacked the capability to detect it.
One of the key reasons for the cyber threat landscape becoming more hostile is that the bar for entry into cybercrime has never been lower. There is a growing awareness that you don’t have to be a genius hacker to be a successful cyber criminal, and that even someone with minimal technical skill can go on the dark web and purchase a malware kit and a guide on how to use it.
Cybercrime also presents an attractively low-risk option for a criminal: there is a multitude of tools available for obfuscating identity and location and cases of arrest and trial are few and far between.
Many high-profile breaches were also made possible by businesses making basic errors in setting up their infrastructure and cloud solutions – essentially leaving their doors wide open for even the most unskilled criminals.