What are the emerging threats that keep you up at night as a CISO?
As we get more skilled at rooting out malicious behavior and stopping it, threat actors are finding new, more effective ways of hiding or persisting their capabilities. At the same time, the systems we use are increasingly more complex and integrated making attack surfaces larger and configurations harder to lock down. This has led to a booming criminal underground and in-turn needs for individuals and organizations to protect themselves.

For example, earlier this year, we identified a cluster of VPN apps available on the Google Play Store that transformed user devices into proxy nodes without their knowledge. Attackers are also hiding behind residential proxies to conduct various types of attacks – including account takeover (ATO) attacks, transaction abuse, programmatic advertising fraud, and web scraping – which makes them hard to detect and disrupt.

The increasing scale of threat operations is also a concern for me as AI and automation augment the efficiency, effectiveness and reach of cyber fraud. For context, the recently disrupted Phish ‘n’ Ships global fraud operation stole tens of millions of dollars from hundreds of thousands of consumers by phishing their payment information and selling them fake goods. They were able to do this by infecting more than 1,000 websites to stage fake product links that redirected to 121 fake web stores in Dutch, English, French and German. All the stages of this campaign were carried out by bots.

https://www.helpnetsecurity.com/2024/12/24/gavin-reid-human-security-ciso-cybersecurity-threats/