Tips on how to stay protected against cybercriminals during the pandemic.

6th May 2020
Secure working

Tim Freestone, Vice President of Corporate Marketing at Contrast Security tells us how to stay protected against cybercriminals especially during the rise of cyber activity throughout the pandemic.

Now that many people are working from home due to coronavirus, businesses up and down the land are facing unprecedented cybersecurity challenges. Unfortunately, one of those challenges is that hackers are already attempting to capitalise on the crisis by attacking with viruses of their own. In fact, thousands of COVID-19-related websites are being launched by cybercriminals.

Most of these sites include phishing scams exploiting staff’s natural desire to stay up to date on what’s going on. Directing traffic to these fraudulent sites are malicious email campaigns that use phishing and even social engineering tactics to incent action on the part of the user. This explosion of threats has already caught the attention of the FBI, which has issued warnings of an increase in fraudulent crimes related to the coronavirus.

With staff now forced to work outside the network perimeter, businesses face the risk of their internal data being attacked. The surge of videoconferencing, remote access, and VPN services in the home are, sadly, greatly expanding the attack surface that hackers can exploit and gain entrance into a corporate network.

The Role of Digital Trust To Protect Against Cybersecurity Threats
Trending
The Role of Digital Trust To Protect Against Cybersecurity Threats

So, what can be done? These are some tools and ideas that can make the work-from-home experience more manageable:

Set up a home workplace.

For many workers, setting up an area at home to work is a completely new experience. It goes much further than simply having a laptop of computer. After identifying a dedicated work area, workers should take inventory of specific items they need. This could include noise cancelling headphones, blue light blocking glasses, USB desktop microphones, and more.    

Get up to speed on collaboration software.

For the foreseeable future, internal teams are going to greatly depend on enterprise software, whether it is Microsoft Teams, Slack, or Salesforce. Video-conferencing software like Zoom and GoTo Meeting have become near essential for teams and colleagues. In the rush, employees are not being onboarded with new solutions as often as is normally the case. Thus, they are turning to the likes of YouTube for instructions.  

Add essential devices for productivity.

No matter the nature of work, work-from-home employees should all have a high-quality printer, a high-speed router, a good headset, phone and tablet chargers, and, of course, a great coffee maker. You may also want to consider a stand-up desk or ergonomic chairs.

Remain vigilant about security.

In addition to adhering to company security parameters, users should remember to log out of the network when not in use, always use a strong password, and never click on an email or link that seems suspicious. Remember to get COVID-19 information only from known sources, not from a stranger’s email.

Read More: Okta: Preparing for the evolving security landscape in 2020

How Businesses Can Respond to New Work-from-Home Threats

As organisations and workers navigate this new work-from-home world and the threats that come with it, the World Economic Forum has provided a checklist of ways that individual users and businesses can protect from cyberattacks during COVID-19 that are helpful:  

  • Better understand threats to the organisation. Since more employees are working from home, security teams need to identify likely attack vectors and prioritise the protection of their most sensitive information and business-critical applications.
  • Provide clear guidance and encourage communication. Companies need to ensure that security policies for workers are clear and easy to follow. This includes instructing employees to communicate with internal security teams about any suspicious activities.
  • Ensure the right security capabilities. Organisations need to ensure that all corporate-owned or managed devices are equipped with the best security capabilities, extending the same network security best practices that exist within the enterprise to all remote environments.  
Stay protected against cybercriminals deploying cyber-attacks like malware injection

Individual users play an important part in a secure work-from-home environment as well. The World Economic Forum provides guidance for them:

  • Maintain good password hygiene. Workers should always use complex passwords and multifactor authentication when possible and change passwords frequently.
  • Update systems and software. Individuals should install updates and patches as often as possible, including on mobile devices.
  • Secure Wi-Fi access points. Users should change their default settings and passwords to reduce the potential impact on their work of an attack via other connected devices.
  • Don’t mix personal and work. Workers should use their work devices to do work and their personal devices for personal matters, if possible.   

The work-from-home experience is far from ideal for development teams. Individuals are more likely to be more fragmented, with potential interruptions that threaten to derail any coding momentum they’ve built throughout the day. For example, dynamic application security testing (DAST) and static application security testing (SAST) are good tools for identifying coding vulnerabilities, but they limit productivity since they only provide a snapshot in time and can’t keep up with today’s agile software development lifecycle processes.

Application security (AppSec) policies can help ensure worker productivity even in a remote location. AppSec also means faster release cycles so important releases for work-from-home scenarios are delivered quickly. This can only happen when AppSec is integrated into the application using instrumentation, so that vulnerabilities are identified and remediated in the coding process by developers. The truth is that developers do not have time for manual vulnerability identification and verification of their remediation. They require an AppSec platform that removes the burden from them without creating any negative impact on the process itself. Plus, shifting the vulnerability management left to the build phase makes security a critical part of the software development process, allowing developers to save valuable time.

It seems as if the work-from-home experience is going to be significant, perhaps lasting months. This is a big adjustment for both employees and business leaders. But with good solutions and technologies in place, I’m confident that a productive and secure model of remote working can emerge, one that will positively impact how we work moving forward.

We think you'll like:

Tim Freestone

Vice President of Corporate Marketing at Contrast Security

Birmingham Unveils the UK’s Best Emerging HealthTech Advances

Kosta Mavroulakis • 03rd April 2025

The National HealthTech Series hosted its latest event in Birmingham this month, showcasing innovative startups driving advanced health technology, including AI-assisted diagnostics, wearable devices and revolutionary educational tools for healthcare professionals. Health stakeholders drawn from the NHS, universities, industry and front-line patient care met with new and emerging businesses to define the future trajectory of...

Why DEIB is Imperative to Tech’s Future

Hadas Almog from AppsFlyer • 17th March 2025

We’ve been seeing Diversity, Equity, Inclusion, and Belonging (DEIB) initiatives being cut time and time again throughout the tech industry. DEIB dedicated roles have been eliminated, employee resource groups have lost funding, and initiatives once considered crucial have been deprioritised in favour of “more immediate business needs.” The justification for these cuts is often the...

The need to eradicate platform dependence

Sue Azari • 10th March 2025

The advertising industry is undergoing a seismic shift. Connected TV (CTV), Retail Media Networks (RMNs), and omnichannel strategies are rapidly redefining how brands engage with consumers. As digital privacy regulations evolve and platform dynamics shift, advertisers must recognise a fundamental truth. You cannot build a sustainable business on borrowed ground. The recent uncertainty surrounding TikTok...

The need to clean data for effective insight

David Sheldrake • 05th March 2025

There is more data today than ever before. In fact, the total amount of data created, captured, copied, and consumed globally has now reached an incredible 149 zettabytes. The growth of the big mountain is not expected to slow down, either, with it expected to reach almost 400 zettabytes within the next three years. Whilst...

What can be done to democratize VDI?

Dennis Damen • 05th March 2025

Virtual Desktop Infrastructure (VDI) offers businesses enhanced security, scalability, and compliance, yet it remains a niche technology. One of the biggest barriers to widespread adoption is a severe talent gap. Many IT professionals lack hands-on VDI experience, as their careers begin with physical machines and increasingly shift toward cloud-based services. This shortage has created a...

Tech and Business Outlook: US Confident, European Sentiment Mixed

Viva Technology • 11th February 2025

The VivaTech Confidence Barometer, now in its second edition, reveals strong confidence among tech executives regarding the impact of emerging technologies on business competitiveness, particularly AI, which is expected to have the most significant impact in the near future. Surveying tech leaders from Europe and North America, 81% recognize their companies as competitive internationally, with...