OUT-OF-THE-BOX Expectations for 2026 reveals a grab-bag of risk covering everything from garage APTs and AI-augmented threat tools to data sovereignty and post-quantum cryptography. The piece notes that small, resource-constrained groups and nations will launch sophisticated attacks using AI-driven tools, while sovereign-hosted data banks are expected to replace cloud trust in the Data Embassies scenario.
Ransomware is described as becoming less lucrative for attackers as more enterprises refuse to pay, with industry voices forecasting further declines in ransom payments next year. Other trends include cyber resilience informing startup valuations, increased focus on physical security weaknesses in accredited environments, and a shift toward AI-powered, API-driven modern SOCs that transform incident response.
The report also highlights accountability shifts in South Korea, where CEOs have begun taking responsibility for major breaches, and a continued push for PQC readiness as cryptographic inventories and automation rise in importance. according to Dark Reading.