I know it’s a bit early to be making predictions for 2025.

But hopefully listening to my predictions now..

Will prove me wrong next year.

 

WHAT do I predict?

If you work in a small / medium-sized organisation (AND)

Your organisation is the victim of a cyber security attack in 2025:

I predict it will because of one of two reasons:

  1. The attacker will get their hands on some of the organisation’s money (OR)
  2. The attacker will get their hands on one of the organisation’s online accounts (e.g. an email account).

 

HOW do I predict this will happen?

The attack will succeed because:

  1. One of your staff members will be fooled by the attacker (AND)
  2. Your other security defences won’t be strong enough to limit the damage.

 

WHY am I so confident in my prediction?

Because the way you will be hacked in 2025..

Is the same way you could have been hacked in 2020.

 

HOW can you ensure my predictions are wrong?

  1. Continue to build awareness with your staff about why and how they are targeted, and the red flags to watch out for (e.g. emails from unknown people; links to ‘important documents’, messages requiring urgent action).
  2. Make sure at least two of your staff members need to be involved before money is sent to a new destination.
  3. And for the love of God, ENFORCE Multi-Factor Authentication on your important online accounts, especially email accounts.

 

These three steps won’t eliminate the risks.

But they will reduce them.

Significantly.

 

IF you need help in 2024 to protect your 2025?

You know where I am.