March 14, 2024 at 01:05AM
The UAE’s increasing adoption of IT and operational technology has expanded its attack surface, leading to nearly 155,000 vulnerable assets due to misconfigurations and insecure applications. CPX’s “State of the UAE Cybersecurity Report 2024” emphasizes the need for a unified approach to improve national infrastructure and cybersecurity, amidst growing threats including ransomware, DDoS attacks, and cybercriminal activities.
From the meeting notes, it is clear that the rapid adoption of IT and operational technology in the United Arab Emirates has significantly increased the country’s attack surface, leaving nearly 155,000 assets vulnerable due to misconfigurations and insecure applications. As a response, Hadi Anwar, executive director of strategic programs at CPX, emphasized the need for a unified approach involving policymakers, businesses, and citizens to strengthen the nation’s infrastructure and overall cybersecurity.
The United Arab Emirates has initiated multiple cyber initiatives, such as smart city projects, digital transformations, and efforts to boost its digital economy. However, as organizations expand their use of cloud computing and operational technology, the cyberattack surface continues to grow, with Mohamed Al Kuwaiti highlighting the increased threat from ransomware and distributed denial-of-service (DDoS) attacks.
In terms of cyber incidents, the government detected and blocked more than 71 million cyberattacks in the first nine months of 2023. The majority of companies in the UAE have faced cyberattacks over the past two years, with CPX’s security operations center (SOC) handling incidents involving misconfigurations, malware, email fraud, phishing, unauthorized access, and denial-of-service attacks.
The report also highlighted the global nature of cyber threats faced by the UAE, dispelling the belief that attacks are solely motivated by regional geopolitics. It outlined that businesses and government agencies’ investments in cybersecurity are yielding positive results, with a majority of attackers being detected within days and weeks. To further fortify cybersecurity, the report emphasized the need for comprehensive programs that include awareness campaigns to educate employees about potential cyber threats and promote vigilance.
Overall, the meeting notes underscore the critical importance of a collaborative and proactive approach to address the evolving cybersecurity landscape in the United Arab Emirates.