Contents: News ANALYSIS CyAN Member Op Eds and Articles Events News: Microsoft Cracks Down on Malicious Copilot AI Use | Dark Reading by Kristina Beek https://www.darkreading.com/application-security/microsoft-cracks-down-malicious-copilot-ai-use Microsoft has announced stricter measures to address the misuse of its AI-powered Copilot tool, following reports of malicious applications. …
Please welcome our newest member from Trinidad, Dale Connell! Dale Connell is a seasoned Cyber Risk and Technology Lead within Deloitte’s Consulting service line at the Trinidad and Tobago office. With extensive expertise in information security strategy and implementation, Dale supports organizations across various industries …
As we step into 2025, the cybersecurity landscape is bracing for transformative shifts. Organisations face a rapidly evolving threat environment where agility, foresight, and innovation are essential to staying ahead. Here are the top five cybersecurity predictions for 2025 and their broader implications for leaders across industries:
1. AI-Driven Cyber Threats: A New Era of Sophistication
Cybercriminals are leveraging AI to orchestrate more sophisticated and large-scale attacks. From crafting highly convincing phishing campaigns to automating malware development and conducting real-time adaptive attacks, the potential of AI to bypass traditional security measures is becoming alarmingly clear. Organisations must prioritise AI-driven threat detection and response capabilities to counter these emerging risks effectively.
2. The Rise of State-Sponsored Cyber Warfare
Geopolitical tensions are fuelling an uptick in state-sponsored cyber activities, with critical infrastructure and governmental systems as prime targets. These developments underscore the urgency for nations and organisations to bolster cybersecurity measures that safeguard essential assets and services. For leaders, this means embedding resilience and cross-sector collaboration into their strategic priorities.
3. Preparing for the Quantum Threat
Quantum computing poses a formidable challenge to existing encryption methods, making advancements in quantum-resilient cryptography a pressing necessity. In 2025, organisations are expected to accelerate the adoption of quantum-resistant algorithms, ensuring the long-term protection of sensitive data. Forward-thinking leaders must begin strategising their cryptographic transition now to stay ahead of this paradigm shift.
4. Strengthening Supply Chain Security
Supply chain attacks are expected to proliferate, requiring businesses to adopt rigorous vendor vetting processes and implement end-to-end monitoring mechanisms. The interconnected nature of modern supply chains means that even a single vulnerability can have cascading impacts. Building resilience at every level of the supply chain will be a top priority.
5. The Shift to Zero-Trust Architecture
The evolution of cyber threats is driving the adoption of Zero-Trust Architecture (ZTA), which emphasises continuous identity verification and strict access controls. Organisations embracing this model will strengthen their defences by ensuring that no user, device, or system is inherently trusted. Leaders must champion a cultural shift towards ZTA adoption, embedding it into their security strategies and operations.
Implications for Leaders: Beyond Cybersecurity
The trends shaping cybersecurity in 2025 extend their influence far beyond technical realms, impacting societal, legal, and economic systems. Here’s how:
The Call to Action for 2025
Cybersecurity in 2025 is not just an operational challenge but a strategic imperative. Senior leaders must cultivate a forward-thinking mindset, fostering collaboration across functions to address these interconnected challenges. By embedding resilience, adaptability, and innovation into their strategies, organisations can navigate the complexities of this evolving landscape and emerge stronger.
The future of cybersecurity is here. Are you ready to lead the way?
As Europe introduces the NIS2 Directive and the Digital Operational Resilience Act (DORA), the continent faces a pivotal question: Are these regulatory frameworks merely a defensive response to rising cyber threats, or are they a foundation for a more resilient and innovative digital ecosystem? This article explores how these initiatives intertwine regulation with resilience, shaping Europe’s role in the global digital landscape.
We are proud to share that two of our esteemed CyAN members, Bharat Raigangar and Dr. Mathew Nicho, are featured as the cover story in the December 2024 issue of Enterprise IT World MEA! his engaging cover story reflects their thought leadership and their commitment …
Please welcome our newest member from Kuwait, Yedhu Krishna Menon from Kuwait!
Yedhu Krishna Menon is a seasoned Third-Party Risk and Cybersecurity expert with over 15 years of experience, currently serving as the Head of Third-Party Risk Management at Gulf Bank. Throughout his career, he has demonstrated excellence in third-party and supply chain security, cybersecurity, data protection, regulatory compliance, and corporate security domains. Yedhu has held key positions in leading global organizations such as Bank of New York Mellon, MetLife, KPMG, FIS, Ameriprise, and HCL.
Yedhu’s accomplishments include founding the International TPRM Alliance, an initiative that propagates “Collaborative Defense” across EMEA and APAC, where he has mentored over 100 professionals in Third-Party Risk Management. He is also the founder of Helping Brainz, a social impact initiative recognized for driving 175+ development projects in India, utilizing technological innovations to support communities during crises like the Kerala and Assam floods and the COVID-19 lockdown.
As an advocate for cybersecurity awareness, Yedhu has delivered 22 sessions to schools and colleges, fostering digital safety among youth. In recognition of his thought leadership and expertise, he was named among the Top 10 Influencers in Kuwait by Favikon, ranking in the Top 5 for Cybersecurity in 2024. He has also been a featured speaker at renowned events like the Third Party & Supply Chain Cybersecurity Summit (Dubai, Madrid) and Cyber-First Summit (Kuwait).
Yedhu’s academic and professional credentials are equally impressive. He holds a B.Tech in Electronics and Communications from SKIET, Kurukshetra University, and a PGD in Cyber Law and Cyber Forensics from the National Law School of India University. He is certified in CISA, CTPRA, ISO 27001 LA|LI, ISO 31000 LI, ISO 22301 LA, CPISI, CIPR (UK), CCIO, CDCP, and ITIL.
Beyond his professional endeavors, Yedhu is passionate about traveling, cooking, and playing soccer. His unique blend of technical expertise, leadership, and commitment to social impact makes him a valuable addition to CyAN.
We are thrilled to have Yedhu join CyAN and look forward to his contributions!
Please join us in welcoming Yedhu Krishna Menon to our network!
Contents: News STATISTICS & INSIGHTS powered by Evisec CyAN Member Op Eds and Articles The Year in Focus: A Look Back at 2024 and Ahead to 2025 Events News: Does Desktop AI Come With a Side of Risk? https://www.darkreading.com/application-security/does-desktop-ai-risk The rise of desktop AI tools …
Please welcome our newest CyAN member, Fatema Fardan, from Bahrain. Fatema Fardan is a passionate and experienced Cyber, Digital, and Information Security professional with over 16 years of expertise in the financial and banking industries. She has successfully managed and delivered enterprise-level projects, including Information …
CyAN is pleased to announce our formal support for Survivors & Tech Solving Image-Based Sexual Abuse (STISA), a global initiative with a survivor-centric approach aimed at combatting Image-Based Sexual Abuse (IBSA).
STISA is a non government organization dedicated to reducing the exposure to IBSA and implementing technology to streamline the removal of the abuse. The organization advocates for survivors, coordinates activities of like-minded organizations, and helps develop technology to fight IBSA, AI deepfakes, and related wrongdoing. STISA’s objectives are highly congruent with CyAN’s mission to help make the Internet and digital society safer, trustworthy, and more secure.
We encourage you to visit, follow, and support STISA at https://stisa.network for more information, or on LinkedIn.
Contents: News Analysis STATISTICS & INSIGHTS powered by Evisec CyAN Member Op Eds and Articles CyAN Member News Events News: AI enters Congress: Sexually explicit deepfakes target women lawmakers https://19thnews.org/2024/12/ai-sexually-explicit-deepfakes-target-women-congress/ Sexually explicit deepfakes targeting women lawmakers have infiltrated U.S. political discourse, highlighting the dangers of …