Cybersecurity is one of the biggest challenges for today’s enterprises. Many firms are willing to pay a premium for candidates with exceptional qualifications. The Open Institute of Technology (OPIT) can support postgraduate students in furthering their career opportunities in this field via an MSc in Enterprise Cybersecurity. With a combination of technical and managerial expertise, this course equips students to fulfill the demand for adaptable, versatile cybersecurity professionals.

Introducing the MSc in Enterprise Cybersecurity

Students on the MSc in Enterprise Cybersecurity will undergo advanced technical training. The course emphasizes hands-on experience and the use of real-world applications. Throughout the course, there will be opportunities to assess and implement cybersecurity initiatives and integrate security solutions. Students will also learn relevant soft skills, helping them advance their careers through leadership opportunities.

Take a look at this quick overview of the OPIT MSc in Enterprise Cybersecurity:

• Duration: Three or four terms, each lasting 16 weeks
• Focus: Blending advanced cybersecurity skills with managerial and soft skills
• Content: Cybersecurity fundamentals, understanding how generative AI fits into cybersecurity, risk assessment, network security, leadership skills, and an industry-relevant research project.
• Format: Fully online remote learning via live lectures and pre-recorded content from an exceptional faculty
• Assessment: Students will spend their final term on a Capstone Project and Dissertation, also called the MSc Thesis

The MSc program has no final formal exam. Instead of coaching students to merely pass exams, OPIT offers hands-on, practical training because we believe that this better prepares learners for the realities of high-level cybersecurity roles. Many students may undertake their final project via an internship at a respected company or research lab, opportunities fully facilitated by OPIT.

What You’ll Learn

Your first term will cover cybersecurity fundamentals and governance. There’s also a module on network security and intrusion detection. As this course is aimed at potential cybersecurity leaders, there are also topics covering risk management, compliance, and legal aspects. These are all critical concerns for enterprise data security.

The second term introduces many AI-based topics, such as the elective module on AI-driven forensic analysis in cybersecurity. There’s also a deeper dive into business resilience and response strategies. Other elective modules help you personalize your course content. You might choose to study leadership and communication, or take a closer look at secure software development.

The final term is the aforementioned Capstone Project and Dissertation. This is the pivotal project of the course, consolidating your acquired skills through an industry-relevant research endeavor. An OPIT supervisor will help you formulate a project proposal. You may wish to consider an internship, which could help you build connections and may even lead to future career opportunities.

Who It’s For

Anyone who has a BSc in a STEM subject and wants to advance their career opportunities could benefit from the MSc in Enterprise Cybersecurity. This may include recent graduates eager to continue their studies, or seasoned cybersecurity professionals ready to explore new opportunities.

With this MSc course, students gain the aptitudes that can lead to roles such as:

• Cybersecurity Risk Analyst
• Security Solutions Architect
• Cybersecurity Compliance Officer
• Incident Response Manager
• Cybersecurity Manager/Director
• Advanced Ethical Hacker
• Chief Information Security Officer (CISO)
• Cloud Security Manager

All of these roles are in high demand and could command impressive salaries.

The Value of Taking an MSC in Enterprise Cybersecurity With OPIT

Many postgrad learners are enhancing their education and prospects by taking a more advanced degree. An MSc represents a step up from a BSc, with many employers prepared to pay a premium for professionals with this qualification.

Cybersecurity, in particular, is a fast-growing and therefore highly competitive field. Demand for specialists far outstrips the volume of people with the relevant skills and knowledge. In fact, the Bureau of Labor Statistics (BLS) notes that the job market for information security is growing at a rate of 29% per year, much higher than average.

So, it makes sense that an MSc is the next step to differentiate yourself in the market. But what makes OPIT stand out from other educational institutions?

• A World-Class Faculty: OPIT’s lecturers and academic leaders come from a wide range of cybersecurity backgrounds, from finance to NASA. The course is led by Tom Vazdar, the Chief Security Officer at Erste Bank Croatia and advisor to the European Cybercrime Centre. Students will also gain access to excellent student support, including networks and connections with many top-level companies and research labs.
• A Fully Online Program: With OPIT, students can learn from anywhere thanks to the fully online format of the course. Attending live lectures will give students the best opportunities to connect with professors and interact with other learners. There is also a range of pre-recorded materials you can study at your own pace. Samples of these are available to view for free on the OPIT website.
• Practical, hands-on learning: The MSc in Enterprise Security is unique in that it focuses on both real-life cybersecurity skills and the soft skills you’ll need to excel in leadership roles. You’ll learn current techniques and explore emerging technologies for a future-proof qualification that will benefit you for many years.
• A Thriving Community: Thanks to OPIT’s online format, the community of students you’ll connect with is truly global. Education should be more than just lectures. At OPIT, you’ll discover peer-to-peer support, shared projects, and more real-world opportunities. The OPIT student community consists of over 600 individuals from more than 90 nations. Plus, there are at least 20 events held every year that allow students the opportunity to come together and make connections.

Entry Requirements and Fees

OPIT prides itself on making courses as accessible as possible, with affordable fees that encourage applicants from a range of backgrounds. You’ll need to have a passion for cybersecurity and be ready to explore the fields of management and enterprise administration alongside developing technical skills.

All applicants must have, as a minimum:

• A BSc degree, ideally in a STEM field or other related discipline
• Proficiency in English to a B2-level certificate or
• A willingness to take the OPIT English test

The course costs €6750 or €2250 per term for the three-term option. There are a number of different payment plans available, including the option to pay the entire cost upfront for a 10% discount. You can also speak directly to the OPIT team about financing options and scholarships to help you reduce costs or manage your payments.

The Open Institute of Technology (OPIT) began enrolling students in 2023 to help bridge the skills gap between traditional university education and the requirements of the modern workplace. OPIT’s MSc courses aim to help professionals make a greater impact on their workplace through technology.

OPIT’s courses have become popular with business leaders hoping to develop a strong technical foundation to understand technologies, such as artificial intelligence (AI) and cybersecurity, that are shaping their industry. But OPIT is also attracting professionals with strong technical expertise looking to engage more deeply with the strategic side of digital innovation. This is the story of one such student, Obiora Awogu.

Meet Obiora

Obiora Awogu is a cybersecurity expert from Nigeria with a wealth of credentials and experience from working in the industry for a decade. Working in a lead data security role, he was considering “what’s next” for his career. He was contemplating earning an MSc to add to his list of qualifications he did not yet have, but which could open important doors. He discussed the idea with his mentor, who recommended OPIT, where he himself was already enrolled in an MSc program.

Obiora started looking at the program as a box-checking exercise, but quickly realized that it had so much more to offer. As well as being a fully EU-accredited course that could provide new opportunities with companies around the world, he recognized that the course was designed for people like him, who were ready to go from building to leading.

OPIT’s MSc in Cybersecurity

OPIT’s MSc in Cybersecurity launched in 2024 as a fully online and flexible program ideal for busy professionals like Obiora who want to study without taking a career break.

The course integrates technical and leadership expertise, equipping students to not only implement cybersecurity solutions but also lead cybersecurity initiatives. The curriculum combines technical training with real-world applications, emphasizing hands-on experience and soft skills development alongside hard technical know-how.

The course is led by Tom Vazdar, the Area Chair for Cybersecurity at OPIT, as well as the Chief Security Officer at Erste Bank Croatia and an Advisory Board Member for EC3 European Cybercrime Center. He is representative of the type of faculty OPIT recruits, who are both great teachers and active industry professionals dealing with current challenges daily.

Experts such as Matthew Jelavic, the CEO at CIM Chartered Manager Canada and President of Strategy One Consulting; Mahynour Ahmed, Senior Cloud Security Engineer at Grant Thornton LLP; and Sylvester Kaczmarek, former Chief Scientific Officer at We Space Technologies, join him.

Course content includes:

• Cybersecurity fundamentals and governance
• Network security and intrusion detection
• Legal aspects and compliance
• Cryptography and secure communications
• Data analytics and risk management
• Generative AI cybersecurity
• Business resilience and response strategies
• Behavioral cybersecurity
• Cloud and IoT security
• Secure software development
• Critical thinking and problem-solving
• Leadership and communication in cybersecurity
• AI-driven forensic analysis in cybersecurity

As with all OPIT’s MSc courses, it wraps up with a capstone project and dissertation, which sees students apply their skills in the real world, either with their existing company or through apprenticeship programs. This not only gives students hands-on experience, but also helps them demonstrate their added value when seeking new opportunities.

Obiora’s Experience

Speaking of his experience with OPIT, Obiora said that it went above and beyond what he expected. He was not surprised by the technical content, in which he was already well-versed, but rather the change in perspective that the course gave him. It helped him move from seeing himself as someone who implements cybersecurity solutions to someone who could shape strategy at the highest levels of an organization.

OPIT’s MSc has given Obiora the skills to speak to boards, connect risk with business priorities, and build organizations that don’t just defend against cyber risks but adapt to a changing digital world. He commented that studying at OPIT did not give him answers; instead, it gave him better questions and the tools to lead. Of course, it also ticks the MSc box, and while that might not be the main reason for studying at OPIT, it is certainly a clear benefit.

Obiora has now moved into a leading Chief Information Security Officer Role at MoMo, Payment Service Bank for MTN. There, he is building cyber-resilient financial systems, contributing to public-private partnerships, and mentoring the next generation of cybersecurity experts.

Leading Cybersecurity in Africa

As well as having a significant impact within his own organization, studying at OPIT has helped Obiora develop the skills and confidence needed to become a leader in the cybersecurity industry across Africa.

In March 2025, Obiora was featured on the cover of CIO Africa Magazine and was then a panelist on the “Future of Cybersecurity Careers in the Age of Generative AI” for Comercio Ltd. The Lagos Chamber of Commerce and Industry also invited him to speak on Cybersecurity in Africa.

Obiora recently presented the keynote speech at the Hackers Secret Conference 2025 on “Code in the Shadows: Harnessing the Human-AI Partnership in Cybersecurity.” In the talk, he explored how AI is revolutionizing incident response, enhancing its speed, precision, and proactivity, and improving on human-AI collaboration.

An OPIT Success Story

Talking about Obiora’s success, the OPIT Area Chair for Cybersecurity said:

“Obiora is a perfect example of what this program was designed for – experienced professionals ready to scale their impact beyond operations. It’s been inspiring to watch him transform technical excellence into strategic leadership. Africa’s cybersecurity landscape is stronger with people like him at the helm. Bravo, Obiora!”

Learn more about OPIT’s MSc in Cybersecurity and how it can support the next steps of your career.

Source:

• Computer Weekly, published on May 27th, 2025

By Nicholas Fearn

An AWS tech stack can aid business growth and facilitate efficient operations, but misconfigurations have become all too common and stall this progress

Amazon Web Services (AWS) has become the lifeblood of millions of modern businesses, both big and small. But while this popular cloud platform enables them to manage and scale their operations with impressive speed, simplicity and affordability, it also represents a significant security and privacy risk if mismanaged by users.

• Computer Weekly

Source:

• Wired, published on May 01st, 2025

People are using ChatGPT’s new image generator to take part in viral social media trends. But using it also puts your privacy at risk—unless you take a few simple steps to protect yourself.

By Kate O’Flaherty

• Wired

Source:

• LADBible and Yahoo News, published on May 01st, 2025

You’ve probably seen them all over Instagram

By James Moorhouse

• LADBible and Yahoo News

Many people treat cyber threats and digital fraud as a new phenomenon that only appeared with the development of the internet. But fraud – intentional deceit to manipulate a victim – has always existed; it is just the tools that have changed.

In a recent online course for the Open Institute of Technology (OPIT), AI & Cybersecurity Strategist Tom Vazdar, chair of OPIT’s Master’s Degree in Enterprise Cybersecurity, demonstrated the striking parallels between some of the famous fraud cases of the 18th century and modern cyber fraud.

Why does the history of fraud matter?

Primarily because the psychology and fraud tactics have remained consistent over the centuries. While cybersecurity is a tool that can combat modern digital fraud threats, no defense strategy will be successful without addressing the underlying psychology and tactics.

These historical fraud cases Vazdar addresses offer valuable lessons for current and future cybersecurity approaches.

The South Sea Bubble (1720)

The South Sea Bubble was one of the first stock market crashes in history. While it may not have had the same far-reaching consequences as the Black Thursday crash of 1929 or the 2008 crash, it shows how fraud can lead to stock market bubbles and advantages for insider traders.

The South Sea Company was a British company that emerged to monopolize trade with the Spanish colonies in South America. The company promised investors significant returns but provided no evidence of its activities. This saw the stock prices grow from £100 to £1,000 in a matter of months, then crash when the company’s weakness was revealed.

Many people lost a significant amount of money, including Sir Isaac Newton, prompting the statement, “I can calculate the movement of the stars, but not the madness of men.“

Investors often have no way to verify a company’s claim, making stock markets a fertile ground for manipulation and fraud since their inception. When one party has more information than another, it creates the opportunity for fraud. This can be seen today in Ponzi schemes, tech stock bubbles driven by manipulative media coverage, and initial cryptocurrency offerings.

The Diamond Necklace Affair (1784-1785)

The Diamond Necklace Affair is an infamous incident of fraud linked to the French Revolution. An early example of identity theft, it also demonstrates that the harm caused by such a crime can go far beyond financial.

A French aristocrat named Jeanne de la Mont convinced Cardinal Louis-René-Édouard, Prince de Rohan into thinking that he was buying a valuable diamond necklace on behalf of Queen Marie Antoinette. De la Mont forged letters from the queen and even had someone impersonate her for a meeting, all while convincing the cardinal of the need for secrecy. The cardinal overlooked several questionable issues because he believed he would gain political benefit from the transaction.

When the scheme finally exposed, it damaged Marie Antoinette’s reputation, despite her lack of involvement in the deception. The story reinforced the public perception of her as a frivolous aristocrat living off the labor of the people. This contributed to the overall resentment of the aristocracy that erupted in the French Revolution and likely played a role in Marie Antoinette’s death. Had she not been seen as frivolous, she might have been allowed to live after her husband’s death.

Today, impersonation scams work in similar ways. For example, a fraudster might forge communication from a CEO to convince employees to release funds or take some other action. The risk of this is only increasing with improved technology such as deepfakes.

Spanish Prisoner Scam (Late 1700s)

The Spanish Prisoner Scam will probably sound very familiar to anyone who received a “Nigerian prince” email in the early 2000s.

Victims received letters from a “wealthy Spanish prisoner” who needed their help to access his fortune. If they sent money to facilitate his escape and travel, he would reward them with greater riches when he regained his fortune. This was only one of many similar scams in the 1700s, often involving follow-up requests for additional payments before the scammer disappeared.

While the “Nigerian prince” scam received enough publicity that it became almost unbelievable that people could fall for it, if done well, these can be psychologically sophisticated scams. The stories play on people’s emotions, get them invested in the person, and enamor them with the idea of being someone helpful and important. A compelling narrative can diminish someone’s critical thinking and cause them to ignore red flags.

Today, these scams are more likely to take the form of inheritance fraud or a lottery scam, where, again, a person has to pay an advance fee to unlock a much bigger reward, playing on the common desire for easy money.

Evolution of Fraud

These examples make it clear that fraud is nothing new and that effective tactics have thrived over the centuries. Technology simply opens up new opportunities for fraud.

While 18th-century scammers had to rely on face-to-face contact and fraudulent letters, in the 19th century they could leverage the telegraph for “urgent” communication and newspaper ads to reach broader audiences. In the 20th century, there were telephones and television ads. Today, there are email, social media, and deepfakes, with new technologies emerging daily.

Rather than quack doctors offering miracle cures, we see online health scams selling diet pills and antiaging products. Rather than impersonating real people, we see fake social media accounts and catfishing. Fraudulent sites convince people to enter their bank details rather than asking them to send money. The anonymity of the digital world protects perpetrators.

But despite the technology changing, the underlying psychology that makes scams successful remains the same:

• Greed and the desire for easy money
• Fear of missing out and the belief that a response is urgent
• Social pressure to “keep up with the Joneses” and the “Bandwagon Effect”
• Trust in authority without verification

Therefore, the best protection against scams remains the same: critical thinking and skepticism, not technology.

Responding to Fraud

In conclusion, Vazdar shared a series of steps that people should take to protect themselves against fraud:

• Think before you click.
• Beware of secrecy and urgency.
• Verify identities.
• If it seems too good to be true, be skeptical.
• Use available security tools.

Those security tools have changed over time and will continue to change, but the underlying steps for identifying and preventing fraud remain the same.

For more insights from Vazdar and other experts in the field, consider enrolling in highly specialized and comprehensive programs like OPIT’s Enterprise Security Master’s program.

Data is a company’s most valuable asset. So, doing everything in your power to protect that asset is a given. But what if the threat you’re guarding your data against is known to cripple operations, tarnish reputations, and drain finances? And even worse, what if that threat is only getting more dangerous, thanks to a little thing called artificial intelligence (AI)?

Unfortunately, for many businesses, there’s nothing “what if” about this scenario. As many as 72% of businesses worldwide have experienced a ransomware attack at some point and know just how devastating the aftermath can be.

That’s why we tapped two cybersecurity experts to share their insights on ransomware, its evolution, and how businesses can protect themselves. Read on to hear what Tom Vazdar, the chair of the Enterprise Cybersecurity Master’s program at the Open Institute of Technology (OPIT), and Venicia Solomons, a seasoned cybersecurity architect, have to say on this topic in their “Cyber Threat Landscape 2024: Navigating New Risks” master class.

Ransomware: The Basics

Ransomware is nothing new. However, there are always new business owners who (luckily) haven’t encountered it yet. So, let’s cover the basics first.

Ransomware is a natural product of phishing, a human-centric cyber threat that relies on social engineering to deceive individuals into providing sensitive information or downloading malicious attachments. The latter is what ultimately triggers a ransomware infection. Tom describes the process like this:

You click on a malicious link.

Your device downloads the malware.

Your system is now infected, and somebody else is essentially in charge.

They encrypt your data and demand you pay ransom for the encryption key to get it back.

As mentioned, dealing with ransomware attacks and cyber criminals has become a daily reality for companies worldwide. What certainly doesn’t help companies is the fact that ransomware is now also offered as a service.

Ransomware as a Service

Just a few short years ago, cybercriminals needed sophisticated technical skills and tools to develop and deploy ransomware. Now, all they need is access to the dark web.

As Tom explains it, numerous cyber criminals on the dark web offer ransomware as a service, a malicious adaptation of the software as a service (SaaS) business model. So, you essentially pay them to deploy their ransomware on your behalf.

The most famous, or should we say infamous, among these threats is the LockBit model, which has wreaked havoc on thousands of companies worldwide. The issue is that LockBit ransomware attacks vary in tactics, techniques, and procedures. In other words, an organization must be prepared for virtually anything.

How Has AI Affected Ransomware?

Ransomware is dangerous on its own. But throw artificial intelligence into the mix, and you’ve got a massive threat on your hands.

AI has undoubtedly revolutionized the cybersecurity industry, for better or for worse. The “worse” part is that AI is making cyber threats smarter. Unfortunately, for organizations, this particularly applies to ransomware. According to a 2024 report by the U.K.’s top intelligence agency, ransomware stands to gain the most from AI.

How so?

Well, AI has the potential to create malware that circumvents current cybersecurity detection measures. After all, AI is trained using data. Give it malware data to analyze, and it will learn how to evade detection by traditional cybersecurity tools.

AI will also likely generate a surge of new cybercriminals as the barrier to entering into cybercrime decreases with AI-powered tools.

Of course, the more capable and experienced attackers will also benefit from AI. They will use it to identify system vulnerabilities, bypass security defenses, and craft more precise social engineering attacks.

How to Prevent Ransomware Attacks

Given how quickly ransomware is evolving, preventing attacks requires a multi-faceted approach that combines technology, education, and proactive measures. Tom and Venicia break down this approach.

1. Keep Your Systems Updated

When it comes to anything cybersecurity-related, this is the first crucial step. Keep all your systems and programs updated and patched if you want to stand any chance of protecting against known vulnerabilities.

Tom says that there’s a new vulnerability “basically each week,” so having a process in place to update regularly and patch systems is essential.

Venicia adds that something as simple as a basic software update can go a long way toward protecting your data from ransomware. This update will limit its ability to spread through your network, thus reducing the impact of the attack.

2. Invest in Quality Training

Having the most advanced protection systems in place will do you no good if you don’t have well-trained employees.

These employees must learn to recognize potential cyberattacks that could introduce malware into your organization’s system (e.g., phishing emails). Of course, the next step is to respond effectively to the attack. Though each organization has its own set of rules in place, the proper response typically involves disconnecting from the network and contacting IT support.

3. Implement Defensive Systems

Humans are undoubtedly the first line of defense against cyber threats. However, they can’t do it alone. That’s why implementing advanced Endpoint Detection and Response (EDR) solutions is crucial. Tom explains that these systems will help you identify and, more importantly, mitigate a threat on time.

However, he also adds that you must restrict user permissions within the system. This way, even if a single component is compromised, the ransomware won’t take down the entire network.

4. Implement Network Segmentation

As you can see, a huge part of mitigating ransomware attacks is ensuring they don’t affect the entire network. That’s where network segmentation can also help.

As Tom explains, with network segmentation, the malicious actor in control of your network won’t be able to do “lateral movements.” In other words, even if they do manage to penetrate your network, they won’t be able to spread within it.

So, network segmentation is a critical part of the multi-layer approach every organization should adopt when it comes to cybersecurity.

5. Collaborate With Others

Remember – you aren’t the only one experiencing cyberattacks. In Venicia’s words, “ransomware has a global impact.”

That’s why organizations in the private sector are constantly encouraged to “talk to each other,” as Tom puts it. Of course, there’s always the issue of confidentiality, but Tom explains that this, too, can be resolved with a “closed circle of trust.”

Also, organizations in the private and public sectors are encouraged to share relevant information with institutions such as the Financial Services Information Sharing and Analysis Center (FS-ISAC).

In Europe, there’s also something called The No More Ransom Project. This Europol initiative has existed for years, hosting decryption keys for different types of ransomware. It has helped numerous individuals and organizations decrypt their systems and avoid paying the ransom.

Of course, this won’t always be possible, as the attackers typically keep changing the encryption keys. However, anything that helps organizations avoid paying the ransom is worth trying.

Why?

Because paying the ransom often won’t solve any problems.

As Tom explains it, you’re dealing with criminals, after all. So, they will often double the ransom after you pay the initial amount, having realized that you have the money. Or, they’ll simply take the money and run without giving you the decryption keys.

So, ongoing threat intelligence sharing should be among the top priorities for an organization, as it allows them to evade the last-resort scenario of paying the ransom.

6. Invest in Backups and Disaster Recovery

According to Venicia, backups and disaster recovery have a massive role to play in combating ransomware. She says that the primary reason organizations choose to pay the ransom is because they don’t have any backups in place. In other words, they don’t have an alternative way to get their data back.

That’s precisely what Tom has experienced working with many small and medium-sized businesses.

He says that these businesses usually don’t have disaster recovery procedures and data backups because they find them to be too expensive. Other times, they’ll say they didn’t have the time to deal with these measures. But whatever the excuse may be, one thing’s for sure – having no backups leaves you vulnerable to losing your data permanently in a ransomware attack.

According to Tom and Venicia, here’s what an ideal proactive approach to cybersecurity would look like.

Step No. 1 – Have regularly scheduled backups and ensure they’re stored in different environments, including offline ones. Tom suggests the 3-2-1 data backup strategy – have three copies of your data on two different mediums (e.g., hard drives and DVDs) with one copy off-site (a different physical location).

Step No. 2 – Regularly test your backups to see whether they’re able to handle different scenarios.

Step No. 3 – Implement a disaster recovery plan that outlines the steps for different types of incidents. Of course, these incidents shouldn’t only cover ransomware. Earthquakes, floods, and even meteor strikes should be considered in your plan. The last part might seem silly to you. In fact, it also sounded silly to Tom and his colleagues. That is, at least, until a meteor struck Russia in 2013. So, you never know!

The Importance of Cybersecurity Specialists

Most of the strategies for combating ransomware require one thing – a skilled cybersecurity specialist to execute them. This is also what most companies lack, which is why they easily fall victim to cyberattacks.

That’s why programs like the Enterprise Cybersecurity Master’s program at OPIT are essential for the future of cybersecurity. This program helps train the next generation of cybersecurity professionals to defend organizations against the so-called “Ransomware Armageddon” and any other cyber threat that might emerge.

There are currently few things that worry CEOs worldwide as much as geopolitics. Cybersecurity is undoubtedly one of them. But what happens when you combine geopolitical conflicts and cyber threats?

Geopolitical cyber threats, that’s what.

This lethal combination threatens to disrupt economies, destabilize governments, and shatter global stability. That’s why it must be met with an ironclad cybersecurity strategy.

But what does that strategy entail?

That’s for Tom Vazdar and Venicia Solomons to answer. Tom is the chair of the Master’s Degree in Enterprise Cybersecurity program at the Open Institute of Technology (OPIT). Venicia is a seasoned cybersecurity architect and advocate who has rightfully earned the nickname “the Cyber Queen.”

Here’s what these two esteemed cyber professionals have to say about geopolitical cyber threats in their highly informative master class titled “Cyber Threat Landscape 2024: Navigating New Risks.”

What Are Geopolitical Cyber Threats?

Geopolitical threats refer to cyberattacks (or campaigns) driven by political motives. These attacks are often conducted by state-sponsored actors and have a specific strategic goal in mind.

For instance, Iran-backed hackers have recently been targeting U.S. water systems, aiming to disrupt Israeli-made equipment globally. This example also perfectly illustrates the targets of geopolitical cyberattacks – critical infrastructure, government systems, military networks, and other relevant entities.

But don’t jump to conclusions – the private sector isn’t immune to such attacks.

Cybercriminals have also targeted private companies to steal intellectual property, disrupt operations, or extort money. However, what differentiates these attacks from other cyberattacks is the motivation behind them.

Whether it’s through espionage, sabotage, or disinformation, geopolitical cyber threats always aim to achieve a political or strategic advantage for the attacker.

How Do State-Sponsored Cyber Threats Differ From Other Cyberattacks?

In their master class, Tom and Venicia specifically focus on state-sponsored cyber threats, even though they aren’t the only type of geopolitical cyber threats. Why? Because they’re the most advanced and sophisticated cyber threats.

As Venicia puts it, state-sponsored cyberattacks involve “specialist hacking techniques,” “stealthy behavior,” and “stealthy execution.” That’s why the consequences of these attacks are often only seen after significant damage has been done.

This leads us to another distinctive characteristic of state-sponsored cyberattacks – they typically involve long-term execution.

You see, other forms of cyberattacks usually want to reach their goal as soon as possible. For instance, a ransomware attack will infiltrate your system, and the hacker will ask for ransom straight away.

A state-sponsored cyberattack, on the other hand, usually plays the long game. That’s why they’re considered an advanced persistent threat (APT). Remaining undetected for a long time allows these threats to collect lots of critical data and perform long-term espionage.

Tom adds that the goal of these cyberattacks is another important distinction. As mentioned, they usually have a strategic goal in mind. “Regular” cyber threats, in contrast, typically only aim for financial profit.

Why Is Geopolitical Cybersecurity Important?

For the most part, traditional warfare was limited to three battlefields – the land, the air, and the sea. However, as Tom points out, two vital battlefields have joined the fray – space and cyberspace.

Sure, threats in cyberspace aren’t overtly visible like those on land, air, or sea. However, they can be just as devastating, if not more so – especially if they’re geopolitical cyber threats.

Here’s how Tom and Venicia break down the importance of geopolitical cybersecurity.

Protecting Against Espionage

As mentioned, espionage is one of the leading types of geopolitical cyberattacks. Since espionage aims to collect as much valuable information as possible, these attacks are typically highly refined, which allows them to remain undiscovered for months on end.

Venicia points out that the recent geopolitical tensions have led to increased cyber espionage. That’s what makes solid geopolitical cybersecurity more important than ever. Let one intruder into your network, and you’re essentially giving away all your classified information (past, present, and future).

Avoiding Manipulation

2024 is an election year. This means that “influence operations, disinformation operations, [and] deep fake operations” will run more rampant than ever, as Tom warns. Ultimately, these operations aim to shape public opinion and undermine trust in democratic institutions. These outcomes are never desirable, let alone during such a crucial time.

That’s where cybersecurity comes into play.

These measures help secure digital platforms, detect (and remove) false information, and (in this specific scenario) safeguard electoral systems.

Protecting the Economy

As mentioned, geopolitical cyberattacks aren’t typically done for financial gain. However, they can still cause massive financial losses. How? By targeting “public organizations and private entities that make a large contribution to a country’s economy,” as Venicia explains.

And a world that’s still reeling from the effects the COVID-19 pandemic had on the global economy can’t possibly handle another major disruption. That’s why any similar threat should never be taken lightly.

How to Combat Geopolitical Cyber Threats

Now that you know why geopolitical cyber threats must be combatted, let’s discuss how this can be done.

Keep All Aspects in Mind

There are numerous factors that go into protecting against geopolitical cyber threats. But for this protection to actually work, all these factors must be considered when devising a defense strategy.

For starters, this means protecting all critical infrastructure sectors. Tom lists just some of them –financial services, healthcare and public health, and transportation systems. However, one thing applies to all critical infrastructure sectors – they aren’t “independent islands,” as Tom puts it.

They’re all part of a larger ecosystem.

Each sector can only be protected if there’s a holistic approach to cybersecurity, one that considers interdependencies between sectors and the potential cascading effects of cyber disruptions. This way, in case of a cyberattack, every sector can provide support and respond effectively to minimize the impact.

Foster Collaboration

The collaborative approach shouldn’t only apply to critical infrastructure sectors. All stakeholders, including government agencies, cybersecurity experts, and the private sector, must work together to address geopolitical threats effectively.

This collaboration can take many forms.

However, Tom highlights the three most important ones on the global level – sharing intelligence, developing international norms and agreements, and establishing cybersecurity alliances.

Our experts list some of the most useful alliances and resources in this regard:

• The No More Ransom Project helps organizations combat ransomware attacks by providing decryption keys, thus returning their vital information.
• Public-Private Partnerships (PPPs) worldwide allow for sharing cyber threat intelligence among industry partners to improve defenses collectively.
• The Budapest Convention on Cybercrime sets out international standards for combating cybercrime, promoting cooperation among countries to tackle cyber threats effectively.

Focus on Critical Infrastructure

By now, one thing’s clear – protecting critical infrastructure against geopolitical cyber threats is paramount.

According to Tom, collaboration plays a key role here as well. In his words, “The only way to protect [critical infrastructure] is that collaborative effort between government and the private sector because they cannot go without each other; they have to work together.”

Implement a Robust Cybersecurity Framework

A comprehensive and collaborative approach to combating geopolitical threats is just the preamble. The implementation of a robust cybersecurity framework is where the actual protection starts. Of course, these systems should be based on the intelligence collected through collaboration and education.

However, the system itself is just as important. After all, protecting critical infrastructure and other elements of similar importance requires more than just traditional anti-virus software!

According to Tom, a comprehensive cybersecurity framework will comprise four elements – threat detection, response tools, regular security assessments, and training. The specifics will vary by organization, and every relevant employee should be familiar with them.

Tom also emphasizes the importance of adopting a multi-layer approach to cybersecurity defenses. This way, even if one layer is breached, others will provide protection and prevent a total collapse of the system.

Stay Vigilant

Organizations should always be on the lookout for an uptick in suspicious activities, especially during times of geopolitical conflicts. This vigilance includes monitoring network traffic for anomalies, conducting regular security audits, and staying on top of the latest cyber threats and—let’s face it—the latest geopolitical conflicts.

Train Your Employees

The importance of thorough cybersecurity education can’t be understated. After all, employees are usually the first line of defense against cyber threats. So, they should be trained to handle the information system properly within the organization. They should know what to do and what not to do before, during, and after a geopolitical cyberattack.

However, there’s another type of employee crucial for the strength of cybersecurity within an organization – cybersecurity professionals themselves.

These individuals must be on top of their game at all times. One way to ensure this is to only hire professionals with ample experience and education. For instance, completing a renowned Master’s program like OPIT’s Enterprise Cybersecurity should be a huge green flag for any employer. It signals a strong commitment to cybersecurity excellence and a deep understanding of the latest trends and techniques in the field.

Invest in the education and professional development of your employees, and you stand a chance against the ever-evolving landscape of cyber threats, geopolitical and beyond.