The Covid-19 global pandemic forcing millions of office workers to become remote workers has created a “perfect tsunami” for cyber criminals seeking to exploit the crisis and penetrate corporate defences via unsecured home networks.
Also read: Covid-19: ‘Wearing a mask can create a false sense of security’ – warns World Health Organisation
Unprecedented digital dependency has created unprecedented vulnerability, and an increase in malicious attempts to exploit the mass shift to online platforms for remote working, with South Africa experiencing a ten-fold spike in network attacks in mid-March when much of the country moved to working from home.
Dr Martin Butler, senior lecturer in digital transformation at the University of Stellenbosch Business School (USB) said companies should ensure that the “digital equivalent of handwashing, face masks, social distancing and decontamination” is being implemented by their now-remote workforce.
Also read: Covid-19: Apps to get you through the lockdown anxiety
Cybersecurity provider Kaspersky reported a spike in South Africa in devices affected by cyberattacks, from the norm of under 30 000 daily to 310 000 on March 18, and “extremely high levels of cyber exploits since,” Butler said.
The World Economic Forum (WEF) said on April 1 that the rise in cybercriminal activity seeking to exploit the Covid-19 crisis made cybersecurity “critical to collective resilience” in the face of the pandemic’s impact on the global economy.
Butler said the risk of “brute force attacks” – in which cybercriminals attempt various password combinations to gain access to corporate systems via individual user accounts – remained high and, with compromised credentials responsible for over 80 per cent of breaches, businesses need to implement encrypted communication such as Virtual Private Networks (VPNs) now more than ever.
“Ensuring company policies are applied on the corporate laptop that shares a home network with multiple devices such as mobile phones, is not sufficient,” he said.
Also read: Covid-19: South African websites helping to spread the message – Stay at Home
Cybersecurity company Cynet has identified two main trends in the coronavirus-linked information security breaches.
Attacks aimed at stealing remote user credentials, and weaponised email attacks such as phishing and malware that may not be picked up by home email software.
With most work-from-home employees using online collaboration and video conferencing software, Butler warned that some of these systems are not yet integrated into corporate single-sign-on systems or thoroughly tested and embedded in safe remote environments.
“This creates a perfect tsunami for cybercriminals.
“They can attack devices on unsecured home networks, mostly running outdated software or unsecure hardware, or exploit employees who are using relatively new systems at the extreme of their comfort levels.
“For cybercriminals it is the perfect time to get a malware link to the anxious, and not very tech-savvy, end user wanting to know the latest Covid-19 news and information.
“One ill-informed action may be all that is required for ransomware to penetrate corporate defences from remote locations,” he said.
While highly secure corporate networks should be able to prohibit or at least identify unauthorised activities to ensure that data assets remain protected and services are uninterrupted, home-based WiFi networks and 4G connections don’t have the benefit of corporate security policies and technologies.
“Although it is in principle possible to secure these distributed on-ramps to the internet that have become central in the work-from-home context, protection of them is now the responsibility of each individual user and not corporate IT and therein lies the danger,” Butler said.
In addition to using encrypted communication such as a VPN, Butler recommended that remote workers take precautions including:
- Using secure and complex passwords; and changing them frequently.
- Not replying to or clicking on links in phishing emails or messages.
- Be on the alert for Covid-19 scam emails.
- Ignore and delete WhatsApp messages with unknown links (especially from unknown senders).
- Take extreme care when connecting to unsecured networks.
Dear reader,
As your local news provider, we have the duty of keeping you factually informed on Covid-19 developments. As you may have noticed, mis- and disinformation (also known as “fake news”) is circulating online. Caxton Local Media is determined to filter through the masses of information doing the rounds and to separate truth from untruth in order to keep you adequately informed. Local newsrooms follow a strict pre-publication fact-checking protocol. A national task team has been established to assist in bringing you credible news reports on Covid-19.
Readers with any comments or queries may contact National Group Editor Irma Green (irma@caxton.co.za) or Legal Adviser Helene Eloff (helene@caxton.co.za)
