Realizing that #WFH is the new normal (at least for the near future), I recently wrote a Client Alert on Five Cyber Issues Companies Should Consider in the Midst of COVID-19. Everyone (not just companies) should be aware of these issues. With that in mind, here is an excerpt:
According to the Financial Times, cyber criminals and hacking groups are exploiting disruption caused by COVID-19 through a range of phishing and malware attacks. The New York Times reported that a series of fake websites for the World Health Organization and the CDC have started to appear.
Security researchers say they are witnessing nation-state hackers in China, as well as Eastern European cybercriminals, exploit the COVID-19 panic through cyberattacks. At a recent panel discussion on Managing Risk at the Intersection of Cybersecurity, Data Privacy and Business presented by the American Bar Association, there was discussion about the high likelihood of an increase in cyber-attacks such as ransomware.
These are valid concerns. To maintain productivity while working remotely, companies are relying on the internet and mobile applications. In other words, companies are working in a digital space.
While many predicted that most companies would eventually move to a digital space, the pandemic has accelerated the process. This presents a prime opportunity for cyber criminals to prey on the unprepared and unsuspecting work force.
Under the circumstances, companies need to protect their IT systems and digital platforms. Here are five cyber issues companies should consider as a result of COVID-19.
1. Cyber Security and Hygiene
Medical experts are encouraging everyone to employ simple hygiene protocols to slow the spread of COVID-19. Cyber hygiene is also important to avoid a cyber event.
Everyone should carefully review random emails requiring some sort of action, such as clicking a suspicious link or transferring large amounts of funds. If there is a link in an email, hover over the link to view the web address. Instead of clicking it, manually enter the web address to avoid clicking a malicious link. If you click on a link in an email and it asks for username and password, do not, under any circumstance, enter that information.
If possible, avoid using public WIFI (such as coffee shops) for company business. Multi-factor authentication is another layer that companies should implement to deter hackers from accessing digital platforms.
For the entire client alert, click here.
~ Florida Cyber Lawyer, Robert Stines, Esq., CIPP