2020 Work-for-Home Shift: What We Learned

2020-12-29 13:00

Goodbye, 2020 - and good riddance, right? Most of us don't want to take too much from this year into the next - but let's make an exception for what we learned about security in the wake of the COVID-19 pandemic.

"Coupled with a challenging home environment where devices are often shared with family members and the rapid change that occurred, there was little time to prepare and that fact has been exploited widely by hackers leveraging phishing attacks and known exploits to penetrate and maintain their hold on the remote environment. In 2021, enterprises need to focus on patching the holes in their security defenses as the majority of their workers continue to operate remotely."

As employees were sent home and forced to connect to precious corporate resources using potentially insecure devices, home networks and new cloud apps, the focus on authentication ramped up for security teams.

"Across any chat medium on mobile, phishing attacks seek to trick users into clicking links to expose personal and work credentials, and even download mobile surveillanceware," Chris Hazelton, director of security solutions at Lookout, told Threatpost.

A survey from IBM Security in June found that more than half surveyed had yet to be given any new security policies on how to securely work from home.

News URL

https://threatpost.com/2020-work-for-home-shift-learned/162595/