AI, digital tariffs & the end of VPNs shape cybersecurity’s future

Cybersecurity experts from BeyondTrust have outlined their top predictions globally for the industry in 2026 and the years beyond, focusing on developments in artificial intelligence, identity management, and regulatory changes.

The annual forecast, prepared by Chief Security Advisor Morey J. Haber, Chief Security Strategist Christopher Hills, and Field Chief Technology Officer James Maude, covers trends expected to influence how organisations secure data and adapt to new threat landscapes.

Morey J. Haber, Chief Security Advisor at BeyondTrust, emphasised the forward-looking nature of cybersecurity efforts, stating,

"Cybersecurity has always been a forward-looking discipline. By anticipating where technology, threat actors, and regulation are heading, we can better protect our customers and help the industry prepare for what's next. Looking ahead allows us to adapt faster and turn insight into proactive security action."

The experts say the widespread adoption of agentic artificial intelligence is set to change the attack surface significantly within a year, with almost every connected device integrating this technology.

According to the predictions, accelerated deployment and limited initial oversight could result in new vulnerabilities, increasing the likelihood of AI-driven security breaches.

The forecast also identifies the emergence of "AI Veganism" as a growing trend, with individuals and organisations choosing not to use AI based on privacy, ethical, or environmental concerns.

This stance is likely to place pressure on companies to be more transparent and to offer clear "opt-out" mechanisms regarding AI functionality in their products.

Geopolitical influences feature among the predictions, specifically the introduction of digital tariffs. Governments are expected to begin taxing or restricting digital services that cross international borders. This would form "digital tariffs," potentially reshaping data flows and stimulating regional technology innovation.

Security infrastructure changes

Within infrastructure, the report predicts the formal end-of-life for legacy virtual private networks (VPNs).

As organisations transition to identity-based remote access solutions, traditional VPNs are seen as increasing risks rather than reliable security measures.

Another anticipated trend is the automation of financial account manipulation by cybercriminals, referred to as "account poisoning." The automation of inserting fraudulent billers and diverting payments could present a serious financial threat, making robust identity and transaction validation essential.

The MITRE ATT&CK framework, a widely used resource for understanding cyber threats, is predicted to undergo significant change. The experts point to expected upheaval in leadership and funding, suggesting the framework may be reestablished or rebranded to meet the evolving needs of cybersecurity professionals.

With an increase in global mobility, the report highlights challenges posed by a nomadic workforce. Digital nomads, who may work from multiple countries using a diverse set of devices, will present new identity and compliance risks for employers. The forecast suggests that accurate identity visibility will be crucial for managing these risks.

Physical threats and smart home security

Device tracking technologies such as low-cost geolocation trackers (including AirTags and Tiles) are expected to be used in reconnaissance and blended cyber-physical attacks, requiring enhanced anti-tracking protections.

Alongside this, advancements in smart home technology are expected to introduce voice-driven security configurations, letting users manage their home automation with speech in a secure manner.

Long-term outlook

Looking further ahead, the experts suggest that rapid advancements in AI will lead to a fragmentation into multiple micro-disciplines, not all of which will survive scrutiny.

This so-called AI bubble may eventually burst, with only a select group of sustainable and effective models remaining in widespread use.

The team also forecast progress in biological computing, with "biological computers" based on living neurons potentially overtaking traditional silicon and quantum computers. This shift could give rise to ethical debates around the use of technology capable of exhibiting forms of independent thought.

The report envisions AI companions becoming prevalent in daily life, as systems evolve to offer not just digital assistance but physically present and emotionally responsive support-fundamentally transforming care environments, homes, and workplaces.

According to the forecast, developments in biometric authentication are likely to make traditional passwords obsolete. Instead, advanced technologies using signals from wearable devices and continuous authentication standards may deliver a frictionless, phishing-resistant means of identity verification.

Concerns over supply chain vulnerability are expected to continue, with the introduction of new transparency standards such as AI/ML bills of materials and cryptographic bills of materials to help mitigate risk.

Another long-term trend is the anticipated emergence of autonomous cities where vehicles, commerce, and public services function independently. The report notes that this transition could prompt a new set of cybersecurity and ethical issues for consideration by policymakers and technology companies alike.

Discussing the outlook for cybersecurity, Morey J. Haber stated,

"The future of cybersecurity isn't just about defending data, it's about anticipating how digital and physical worlds will continue to collide. The organisations that will thrive are those that treat identity as the new perimeter and innovation as their strongest defence."