One of the key predictions for 2024 is the transition towards using authentication apps for multifactor authentication. Employers will need to educate their employees on how to handle personal cell phones for this purpose.

Any email being sent from your domain will need to make sure that the correct DMARC and DKIM records are set. This includes 3^rd party apps like Constant Contact, Mailchimp, and any software that sends email on your behalf. All major email providers are now auto rejecting emails that do not have those records set correctly.

Zero trust software prevents unknown software from running on a computer. This is provided with the ICS Cyber package.

Phishing emails have already increased by 464% from 2022 to 2023 due to AI being used to send the emails. AI is already being used to spoof phones calls, voices, and video to steal sensitive information.

Current predictions for the cost of cybercrime in 2024 is $9.5 trillion.

Training users on how to spot phishing emails and testing their awareness is already required for most cyber liability insurance policies.

With Windows 10 reaching its end of life in 2025, transitioning all devices to Windows 11, or a new supported OS will be required. Making sure that all devices connected to the internet have the most up to date security patches is a must. Having proof that patches are done monthly from either your MSP or 3^rd Party security vendor is recommended.

An often overlooked aspect of cybersecurity is vendor management. Companies need to maintain a list of all vendors they use, monitor their access to network resources, and assess the risk associated with each vendor. If using a cloud solution from a vendor, thorough risk assessment and communication are essential to mitigate potential security risks.