Cyber security risks grow amid COVID-19 pandemic
AS MOST schools are now operating fully online and many businesses now having some or all their staff ‘ working from home’ in a bid to do their part to curb the spread of COVID19, cybercriminals will seek to take advantage of this new situation.
With many people hungry for updates on COVID-19, which has now evolved into a new variant, and are ready to click on anything that seems legitimate, scammers are sending out coronavirus-themed Malware and Business email compromise (BEC) attacks which have the appearance that they are coming from official sources. The World Health Organization (WHO) has issued warnings to be wary of cybercriminals and to verify sources before clicking on them.
MANY TELEWORKING RISKS EXIST
Many organisations have a range of IT security technologies in place to protect them from cyberattacks, but when users start to work from home, the risks are increased. Attackers will be doing their very best to exploit risks related to the type of technologies that are used for remote work.
Another contributing factor to this risk is the type of equipment that you are using; is it owned by you or is it owned by the company? Are you the only one using this computer at home or is your child, who is also at home with you, using it to do homework, or more worrying, play games or do Tik-Toks? While you might have done the Cyber security Awareness Training that you are required to do, your child is more prone to click on enticing-looking links. Depending on how you connect to your office, you can put the entire organisation at risk.
Sadly, many companies are still using stolen, ‘cracked’ or unlicensed software to run their business. As a result of this, many of these are not updated with the relevant security patches. Cybercriminals know these weaknesses and one click on the wrong link can bring your organisation to its knees.
FORWARD, FORWARD, SHARE, SHARE!! NOT
Let’s be honest, if you are not used to remote work from home, the distractions are numerous. One of the biggest distractions are mobile instant messaging Apps like WhatsApp and Telegram that offer a quick and easy way to stay in touch with friends and family, but they are also used to spread rumours, half-truths and fake news instantly. I am now begging folks in many of the WhatsApp groups that I am in not to forward links, images and content without first verifying that it is legitimate and is of real value to the group. If you don’t have the time to verify the claim, then don’t share or forward it to anyone. Cybercriminals use malware to steal data from our mobile devices also. The fear and anxiety around COVID-19 provides a tremendous opportunity to hack our devices.
TIPS TO PROTECT YOU AND YOUR COMPANY
1. Multi-factor authentication should be enabled and utilised to get access to all company assets.
2. Your computer or mobile device needs to be updated with all the latest security patches.
3. Security Polices should be enabled to require safer passwords and also to block unauthorised devices from being plugged into your device.
4. Don’t share your company-issued mobile device.
5. Have your IT Security partner do a dark web search to ensure that none of your account access credentials have been posted. If you don’t have an IT Security partner you can contact tTech Limited at info@ ttech.com.jm.
6. Encrypt the data on your devices and also virtual private network (VPN) traffic.
7. Education is more important that ever, ensure that a cyber security training programme is in place for everyone. This will help you to learn about data security, email attacks and it helps you to better recognise what are legitimate links and what are not.
8. Take a chill pill from instant messaging on your mobile device. Turn off notifications on your devices. It will reduce stress and anxiety.
Some schools are now conducting classes with applications like Google Classroom, some parents are now at home working remotely, plugging into their company’s network. This means that the cyber risks have increased tenfold as you must access the Internet.
If you need help to stay cyber secure and have IT peace of mind, email