In response to stay-at-home orders, many businesses have been forced to quickly transition from traditional offices to remote working environments. Working from home presents a new set of cybersecurity challenges to maintain privacy and confidentiality standards.
Threats to Data Security
Cyber criminals are using COVID-19 to exploit vulnerabilities, prompting the FBI to issue multiple press releases related to COVID-19 schemes since March 20. Businesses should take appropriate precautions to stay ahead of potential scams.
Understand and mitigate risks associated with third-party platforms. Paid versions of third-party platforms often come with increased security protocols. Implement automatic safety measures and provide staff training on enhanced security features.
Emails with information about COVID-19 are being used to unleash ransomware and social engineering attacks. A remote-access Trojan virus can give a cybercriminal administrative control over your device or network and result in demands for payment. Other schemes include donation requests to fictional charities, fake offers of immediate approval of SBA loans for a fee, fraudulent links to purchase hard-to-find personal protective gear, home COVID-19 testing equipment, and cure-all medications.
Social engineering attacks often use fear and intimidation to create a sense of urgency in an effort to trick users into taking immediate action, like clicking on a link to download a file, uploading critical information, or changing a routine security procedure. Use care when responding to email and verify the request before clicking links in suspicious messages.