Work-from-home requirements have magnified cybersecurity threats for practically every company, whose data now must traverse Wi-Fi networks with weak passwords, while workers share devices and bandwidth with the entire household.
This article in the Wall Street Journal outlines how a shift to remote work due to COVID-19 has created cybersecurity vulnerabilities.
IBM has indicated that about 53% of people working remotely conduct company business on personal laptops, which often lack safeguards that many employers provide, such as firewalls and antivirus software. The large influx of remote workers with questionable cybersecurity hygiene has opened the opportunity for malicious attackers to start banging against the door to see what will stick.
The FBI has seen a doubling in the rate of complaints of Internet crime since employees started working remotely. Additionally, intelligence agencies in the U.S. and Europe warn that companies are prime targets for government-sponsored hackers going after corporate secrets.
According to the Wall Street Journal article, “Security researchers have warned that hackers are targeting employees doing business from their new, makeshift workplaces, using techniques such as scam emails that pretend to be videoconference invitations but that actually steal network credentials.” Mixed with the email surge have been hacker ploys that play on Covid-19 fears or solicit charitable donations.
Battling attacks during the pandemic has reinforced a basic security lesson: No matter how a hacker tries to infiltrate a company’s systems, an individual worker can be the strongest—or weakest—link.
Regardless of how much technology your deploy in an effort to protect your networks from cyber attacks, employees are always the first line of defense. It is absolutely essential all employees receive security awareness and phishing training. Then conduct phishing tests to be sure your training is having an impact.
ACE IT Solutions provides organizations with security awareness training and simulated phishing solutions to mitigate the risks of cyberattacks on remote workers. To boost your cybersecurity posture and meet compliance requirements, contact ACE IT Solutions at 646.558.5575 or firstname.lastname@example.org and ask about getting started with our phishing testing and security awareness training program.
Form more information: Read Why Security Awareness Training is Not Optional
Read the Wall Street Journal article here.