Top Cyber 2025 Predictions

1. AI Where it Makes Sense

The future of AI is not yet written, but at the present, there’s more than a few places where using AI can have a huge impact without the moral foibles of ‘creative’ focused AI – we’re talking aboutAI platforms that can summarize lengthy data – that is to say – your data --  into meaningful information and bullet points. These tools are streamlining workflows and processes everywhere and helping turn pages and pages of data into useful notes. There are many AI apps like this too choose from, but two such examples are Google’s NotebookLM, and Nouswise, both of include abilities to upload data and information and then ask relevant questions based on what you uploaded, generate text summaries, and in the case of Google, even generate a podcast related to the information you provided. Of course, as with all AI, you should always verify the information, but assuming you’re already familiar with the content and context, these platforms are quickly becoming your digital personal assistant.

2. AI Where it Doesn’t Make Sense

The buzz and hype around AI is huge right now, and it’s important to stay levelheaded. AI is only as good as the data set you provide it, so stay on the lookout for “model collapse,” which is when recursive information is fed back into the AI. It will start to ‘hallucinate’ or make inferences that aren’t true. Because AI doesn’t ‘think,’ it can’t improve itself or think creatively about your project or future goals or the data you gave it. To that end, be wary about anyone or anybody who claims a new AI program can run your business or eliminate particular staff – or even write good code. Recall the saying: To err is human, but to really foul things up you need a computer. In the same vein, don’t try to plug every hole with an AI solution. At the end of the day,AI is still nascent, and highly advanced computer logic, even if it can parse natural human language. Stay alert for any extraordinary AI claims this year –there are bound to be more than a few – and extraordinary claims require extraordinary evidence.

3. Spotlight: Backups

It should go without saying that backups are the key to any successful business operation, but now more so than ever before. It seems like for the last 5 years running, ransomware is still the preeminent threat that can bring a business to a grinding halt. Having adequate backup solutions ensures you can bail yourself out properly should the worst occur. Investing in a good backup solution(CloudCare recommends Datto) will pay dividends in the future, should you run up against nefarious ransomware. And don’t forget to test your backups regularly – it’s just as important as making them.

4. QR Codes Continue to Proliferate

They’re on TV commercials, cereal boxes, at the local checkout, on your restaurant menu, movie tickets and more – there’s no end to where QR codes are being used. As the momentum builds, so too will hackers try to take advantage of it. Remember, the same malicious links in phishing e-mails can be embedded right inside a QR code. Already, hackers are now sending QR codes in phishing e-mails instead of traditional URL links, as they know links get scanned and blocked by e-mail filters, whereas the QR Code image does not.  In some examples, QR codes are ‘built’ usingASCII characters, again evading filters and detection. In the coming year, expect a continued uptick in QR related phishing scams, and maybe even reports that it could be happening at your local coffee shop!

5. Cybersecurity Audits‍

If you’re looking to obtain cyber security insurance – and many companies will soon be required to – you’re going to have to endure an audit. As obtaining and maintain cybersecurity insurance becomes part and parcel of doing business, so too will yearly audits.  The first audit can be tough, especially if documentation of your IT environment is a bit scant or disparate. However, once you complete the first audit, you’ll have a completed template of evidence for all subsequent audits. If you haven't yet talked with your IT team about how they are tracking and documenting the security and safety of your IT environment, now is an excellent time to begin that conversation. Performing an internal audit for your own sake can also be a great way to uncover any security vulnerabilities before they become a problem. Taking the time to understand your IT environment is always worth it, and having the safety net of cybersecurity insurance can give you some peace of mind should the worst occur.

‍