Why the heightened risk for remote workers?
People across the world have had to pack up and leave the comfort – and the security – of the office to work from home. In many cases, employees are using personal devices or BYOD (bring your own device), which presents a number of security challenges. From the use of outdated anti-virus software (or a complete lack of) to limited control or visibility over what new or pre-existing downloads are being made to devices, which could be malicious and compromise security.
In many instances, we know that users are becoming increasingly frustrated with the solutions available and it is highly likely that we will see a sharp rise in ‘shadow IT’ as employees act to find their own solutions. A timely example of this is the use of Zoom video conferencing. Following an initial surge in the number of new users, many organisations like google have now banned their staff from using the platform due to a number of reported security breaches.
In addition, the thirst for knowledge on the topic of Coronavirus has opened a can of worms in the cyber security domain, with Covid-19 phishing emails or malicious content sharply on the rise.
According to a Proofpoint blog on the Coronavirus Threat Landscape, by mid-March they had already seen over 500,000 messages, 300,000 malicious URLs, 200,000 malicious attachments with coronavirus themes across more than 140 campaigns.
“The coronavirus-themed messages we’ve observed are truly social engineering at scale and each is carefully crafted to convince potential victims to click a malicious link, complete a fraudulent payment, or download nefarious attachments. These coronavirus email examples are, at their core, focused on tricking the people receiving these messages based on urgency, fear or the promise of a miracle cure,” reports Proofpoint.