Corona Virus: A threat to cyber-security?
The current outbreak of COVID -19 pandemic (caused by CORONA VIRUS) is not only posing a threat to the lives of people worldwide but also has increased risk for cyber-security. Besides, the organization (of whatever kind and size) should make sure the improvement in their general cyber-security maturity. Cyber-security is a much-needed tool for the protection of data and network from the attacks of cyber-criminals, hackers, etc. as well as the protection for end-users.
According to Google’s statistics (updated on 20/05/2020), there are a total of 4.93 M confirmed cases with 324 K deaths (worldwide) because of Corona virus Disease. And even during this time of great loss, fear, and stress, Cyber-criminals are taking advantage of it by assaulting inappropriately arranged or abused advances, misusing specialized vulnerabilities, and taking part in different types of extortion. Since many organizations have adopted new technologies (including the use of personal devices or services, remote working arrangements), frequently without proper cyber risk management measures, etc.
Possible cyber-security risks due to COVID-19 are as follows:
- PHISHING/ EMAIL FRAUD: On the web, email, informing, and phone tricks and extortion (for example mock sites, phishing messages and social designing tricks) that imitate government offices, controllers, medicinal services associations and specialized help staff and organization adventure fears and vulnerabilities about the pandemic.
- TECHNICAL VULNERABILITIES: Misuse of unpatched basic vulnerabilities and inappropriate designs of gadgets, equipment, programming and administrations
- MALWARE: Malware(is a short form of malicious software) like Ransomware. Malware is the general term covering various types of threats and risks to computer safety.
- VIDEO CONFERENCING RISKS: Hacking of improperly configured video conferencing and phone calls and assaults on remote work area applications.
- SQL INJECTIONS: Cyber-criminals use the SQL (Structured Language Query) statement to insert malicious code into data-driven applications.
Recommendations to help organizations manage COVID-19 cyber risk:
- Encourage automatically and continuously updating software and operating system to benefit from the latest security patches.
- Use properly configured and protected anti-virus, anti-phishing software, anti-malware software, and all the best technologies for protection and detection of all the threats and risks.
- Use complex passwords/passphrases and multi-factor authentication(MFA).
- Encourage the implementation of Zero-Trust protocols(decide not to trust anyone or anything outside your organization parameter).
- Encourage the use of VPNs(Virtual Private Network).
Also, see BLG bulletins Cybersecurity Guidance for Small and Medium Organizations
Check out my article: https://www.techshenanigans.com/post/coronavirus-a-threat-to-cybersecurity