The Impact of Covid-19 On Cyber Security Threats

Uploaded on 2020-12-24 in FREE TO VIEW

The coronavirus pandemic of late 2019 and 2020 has changed the way some businesses will operate forever. Although there was an increased take-up of flexible working practices and working from home among many organisations in recent years, the threat of Covid-19 certainly made many businesses speed up their rate of change. 

Of course, there have been numerous challenges that have needed to be surmounted in order to make cooperative work function effectively when a workforce is so dispersed, as has been the case during the pandemic. Many of these challenges have been met by the appropriate use of technological solutions. After all, in the digital age, modern data communications systems have enabled businesses to keep operating productively when, in the past, they may have faced very significant disruption. 

And yet, the increased uptake in remote working technologies has led to some noticeable issues with data security. How has the pandemic impacted on cybersecurity and what are the major threats that Cyber Security Providers UAE and around the world must ensure they guard against today?

Phishing, Malspams and Ransomware

With many criminals in a state of lockdown – just like the rest of the population – the majority of professional cyber security monitoring services noted a significant upturn in malware in 2020. With more people accessing their work via email servers and cloud-enabled data sharing points, so cyber criminals saw an opportunity. To begin with, phishing scams and the deployment of ransomware became more commonplace in 2020. The use of targeted spam for malicious purposes against businesses also became much more prevalent during the crisis.

Network Security and Remote Working Operations

With so many people connecting to centralised servers from home, so the usual cyber security that protects a network from within became harder to manage. Firewalls needed to allow greater authorised access from outside, for example, and this often meant needing ramp up authentication procedures. If not, then it became easier for spyware to secretly snoop on what was going on behind a firewall by monitoring a connected terminal outside of it.

Data Handling Outside of the Office

Not all of the cyber threats during the pandemic were trying to use only software either. Some focussed on old computers and legacy equipment that might be being used in remote locations. Generally speaking, IT teams that didn't manage the use of such equipment properly often found them to be susceptible to unauthorised access. Whether this is because they held data on removable drives, because old equipment was not properly destroyed or simply because their password protection was weak, Covid-19 meant it was harder to keep on top of hardware susceptibilities of all kinds.

The Appropriate Use of Cloud Services

Another big opportunity for cyber criminals was the augmented use of cloud-based services during the pandemic to store information as wide-ranging as customer records to financial reports. Unless the servers running such services were, themselves, fully secure against potential attack, their adoption as a means of maintaining social distancing made some businesses more exposed to data losses (DLP)  and privacy breaches. Even something as seemingly as innocent as a cloud-enabled spreadsheet sharing service has led to significant problems among some organisations since their reliance on cloud services became more commonplace.

Article Contributed By CyberGate Defense

You Might Also Read: 

Criminals Have Ramped Up Covid-19 Related Attacks:

 

« Advanced Threat Detection And Response: Critical Steps
The Different Types of Malware »

Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

DigitalStakeout

DigitalStakeout

A simple and cost-effective solution to monitor, investigate and analyze data from the web, social media and cyber sources to identify threats and make better security decisions.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Perimeter 81

Perimeter 81

Perimeter 81 is a Zero Trust Network as a Service designed to simplify secure network, cloud and application access for the modern and distributed workforce.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

WEBINAR: How To Build A Security Observability Strategy In AWS

WEBINAR: How To Build A Security Observability Strategy In AWS

Thursday, Apr 22, 2021 - Join this webinar to learn how to build a security observability strategy in AWS, covering cloud-native monitoring sources, guardrails, and automation capabilities.

NCX Group

NCX Group

NCX Group is an Information Risk Management Firm, specializing in Information Security, Business Continuity, Incident Response & Security as a Service

DataVisor

DataVisor

DataVisor is a big data fraud detection and anti-money laundering solution.

IDEA4CPS

IDEA4CPS

IDEA4CPS is a Sino-Danish basic research center for cyber-physical systems.

TUV Rheinland OpenSky

TUV Rheinland OpenSky

TUV Rheinland OpenSky offers one of the most advanced and integrated portfolio of security solutions and services for connected devices, platforms and IoT.

RIGCERT

RIGCERT

RIGCERT provides training, audit and certification services for multiple fields including Information Security.

AVORD

AVORD

AVORD is a cloud-based security testing platform that allows clients to manage security testing requirements in a far more productive and efficient way.

SecureWorx

SecureWorx

SecureWorx are a secure multi-cloud MSP, a provider of advanced IT security services and an independent cyber security advisory.

Vijilan Security

Vijilan Security

Vijilan provides 24/7 SOC services to MSPs/VARs. Our Security Operations Center is global, and our services are exclusive to the Channel.