Cybercriminals are preying on fears of the COVID-19 coronavirus pandemic to spread malware, perpetrate scams, and compromise systems and networks. Many of these attacks are targeting employees who are working from home under “social distancing” policies. Organizations should shore up their cyber defenses to ensure that attacks on remote workers don’t result in a security breach.
The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) issued an alert on March 13th about phishing emails attempting to steal user credentials from teleworkers. The CISA also warned that cybercriminals are targeting vulnerabilities in the virtual private networks (VPNs) remote workers use to connect to corporate IT resources.
According to the Check Point Global Threat Index, 8 percent of the more than 4,000 coronavirus-related domains are malicious or suspicious, creating a significant threat of malware infection if an employee visits one of these sites. Security experts have also noted attacks on company executives who are working outside their organization’s secure network perimeter.
That perimeter has all but disappeared in recent years due to increasing numbers of remote and mobile workers. Approximately 4.7 million Americans now work from home at least half the time, according to the U.S. Census Bureau. That’s a 159 percent increase since 2005. The rise in telework due to the COVID-19 pandemic will likely result in more employees taking advantage of this option long term.
Organizations should prioritize security policies, procedures and technologies to protect remote workers. It starts with a “zero trust” security model in which every user and device attempting to access the network is presumed to be a threat. User identities and the security posture of the devices they use must be authenticated, whether they are inside or outside the network perimeter. User behavior analytics tools can help to detect deviations from normal activity that could signal a cyberattack.
Other steps organizations can take include:
Remote workers should also take steps to prevent a cyberattack, including:
Rahi Systems can help you implement the policies and tools you need for telework security. Give us a call to schedule a confidential consultation.