As many parts of the world emerge from lockdown and breathe life into their offices again, one of the most fatal flaws would be thinking that it is back to business as usual.
In the post-lockdown era, organisations need to focus on a new normal, rather than the way things used to be. This point is particularly relevant for every organisation’s cybersecurity strategy.
As many employees worked remotely, phishing attacks and scams readily switched gears to take advantage of improperly secured home networks and devices. What’s more, corporate networks were shut down for weeks.
For example, last month the Australian Cyber Security Centre published reports of threat actors who deliberately targeted health sector organisations and medical research institutions to create even more chaos during the COVID-19 crisis. These threat actors compromised email servers and then used these to send COVID-related phishing emails – the perfect medium for distributing malware and other nasty attacks.
Healthcare organisations were not the only businesses at risk – transport giant Toll Group fell victim to a ransomware attack that may have given the attackers access to sensitive business information.
Australia is now subject to mandatory breach reporting procedures and New Zealand is not too far behind.
Now is the time to inspect security measures to properly secure access and identities that fit each organisation’s individual needs.
Cybersecurity firm RSA states that organisations should rebuild, re-prioritise and re-assess their current security programs, with the ultimate goal of enhancing threat response.
“Identity continues to be the most consequential attack vectors for enterprises, but it is also an opportunity to improve productivity by creating a frictionless user experience with strengthened identity assurance to protect critical data and assets,” states RSA’s Craig Dore.
..
Support the originator by clicking the read the rest link below.
