{"id":108146,"date":"2020-11-09T16:00:52","date_gmt":"2020-11-09T13:00:52","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/"},"modified":"2020-11-09T16:00:52","modified_gmt":"2020-11-09T13:00:52","slug":"working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/","title":{"rendered":"#Working From Home Makes Cyberattacks More Likely \u2013 CloudSavvy IT"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a25b3c968520\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a25b3c968520\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/#COVID-19_Exploited_By_Cybercriminals\" >COVID-19 Exploited By Cybercriminals<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/#Working_from_Home\" >Working from Home<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/#Cloud_Working\" >Cloud Working<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/#Video_Conferencing\" >Video Conferencing<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/working-from-home-makes-cyberattacks-more-likely-cloudsavvy-it\/#Steps_You_Can_Take\" >Steps You Can Take<\/a><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#Working From Home Makes Cyberattacks More Likely \u2013 CloudSavvy IT&#8221;<\/strong><\/p>\n<div id=\"article-content-area\">\n<figure id=\"attachment_7890\" style=\"width: 700px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-7890 size-full\" src=\"https:\/\/www.cloudsavvyit.com\/thumbcache\/0\/0\/91684e151f6dd9f80fcf4979116b0aba\/p\/uploads\/2020\/11\/46bfde18.png\" alt=\"\" width=\"700\" height=\"300\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/back-view-photo-woman-worker-have-1728065929\" data-credittext=\"Shutterstock\/Roman Samborskyi\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\"><a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/back-view-photo-woman-worker-have-1728065929\">Shutterstock\/Roman Samborskyi<\/a><\/span><\/figcaption><\/figure>\n<p>COVID-19 forced many companies to adopt a working from home policy that saw staff using domestic computers over rushed implementations of remote access. That\u2019s an open invitation for cybercriminals.<\/p>\n<h2 id=\"covid-19-exploited-by-cybercriminals\"><span class=\"ez-toc-section\" id=\"COVID-19_Exploited_By_Cybercriminals\"><\/span>COVID-19 Exploited By Cybercriminals<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Cybercriminals are extremely agile. Not in a gymnastic way, but in the way they can react rapidly to a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">news<\/a>worthy event and use that as the cover story for a new set of threats. Or more accurately, to redecorate old threats and give them a new lease of life. They only need to reword their phishing emails so they refer to the news story, rebrand the email in the <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ropriate corporate livery, and send them out. They can do this with hardly any effort and in next to no time.<\/p>\n<p>And of course, cybercriminals are heartless. As soon as the COVID-19 pandemic hit, phishing emails were arriving in people\u2019s inboxes offering malicious links or attachments that purportedly contained information regarding infection rates, how to claim furlough payments, offering vaccines or cures, and supplies of sanitizer and face masks. Shortly after the phishing emails, the infected bogus websites and the malicious smartphone apps appeared.<\/p>\n<p>Even worse, knowing that the COVID-19 pandemic made them even more critical than under normal conditions, healthcare and medical facilities have been specifically targeted with ransomware attacks. The health care staff are rushed, stressed, and more likely to fall for a phishing email because of the pressure-cooker conditions they\u2019re operating in. The institution is also more likely to pay the ransom if they think that will get them back online faster. That there are lives at risk doesn\u2019t bother the cybercriminals at all.<\/p>\n<p>COVID-19 forced a huge change with offices sitting practically empty and the majority of may workforces working from home. And those circumstances provided yet another set of opportunities to the threat actors.<\/p>\n<h2 id=\"working-from-home\"><span class=\"ez-toc-section\" id=\"Working_from_Home\"><\/span>Working from Home<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The COVID-19 lockdowns have forced usually office-based employees to work from home. Personnel without a laptop and who cannot take their office desktop out of the building have been forced to use whatever hardware they happen to have at home.<\/p>\n<p>A typical domestic laptop or desktop is less secure than a corporate machine. They won\u2019t be subject to regular security and bug-fix patches, nor are they likely to have business-grade endpoint protection software on them\u2014if they have any at all. They can have any software application under the Sun installed on them, whether it is reputable or not, or secure or not. And if it is the family computer, the other family members are going to want to use it too, including kids and teenagers.<\/p>\n<p>As a result of using home computers, company material has been transported to the homes of the workforce and copied to unregulated home computers. It is being worked on locally, which is less secure, is not centrally managed, and it is not included in the corporate backup scheme. The net result is the risk of data loss is magnified.<\/p>\n<p>The device they\u2019re working on is unlikely to have a password that would satisfy your password policy, and it is unlikely that their Wi-Fi password would either. And that\u2019s if they work from home and not from a cafe or library on a public Wi-Fi.<\/p>\n<p>Many businesses already had some capability to accommodate remote workers but they didn\u2019t have the capacity to handle the majority of staff working from home. They were faced with the challenge of rapidly scaling up to meet the sudden demand of the majority of the workforce not coming into the office. Worse, other businesses had no remote working capability at all and had to quickly implement a solution that should allow outside connections into their networks.<\/p>\n<p>All IT infrastructure decisions need to be given careful thought and review, but remote access is one that demands the highest levels of due care and attention. The focus should be on finding the right solution for the business, one that brings with it robustness and security\u2014not finding the fastest thing you can implement. That type of haste breeds insecurity.<\/p>\n<h2 id=\"cloud-working\"><span class=\"ez-toc-section\" id=\"Cloud_Working\"><\/span>Cloud Working<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Microsoft has said that its commercial cloud revenue has been\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.nytimes.com\/live\/2020\/10\/27\/business\/us-economy-coronavirus\">boosted by the pandemic<\/a>, with an increase of 31 percent. The scramble to go to the cloud to facilitate home working will no doubt harbor many examples of the same phenomenon: \u201cWhat\u2019s important right now is to get it working, we can fine-tune and lock it down later.\u201d<\/p>\n<p>Of course, a move to the cloud would be appropriate for many organizations. The cloud was built for power, scale, and integration, and most on-premise solutions simply can\u2019t match its level of integrated security\u2014or lack the budget to even try. But running to the cloud harum-scarum isn\u2019t going to end well. Plan your migration carefully.<\/p>\n<h2 id=\"video-conferencing\"><span class=\"ez-toc-section\" id=\"Video_Conferencing\"><\/span>Video Conferencing<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Video conferencing became the new phone call. The upsurge in the use of products like <a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"http:\/\/redirect.viglink.com?u=https%3A%2F%2Fzoom.us%2F&amp;key=204a528a336ede4177fff0d84a044482\">Zoom<\/a> was unprecedented. Whenever there is a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/game\/\" data-internallinksmanager029f6b8e52c=\"7\" title=\"Game\" target=\"_blank\" rel=\"noopener\">game<\/a>-changing uptake of a particular <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a> the cybercriminals are running right alongside searching for new exploits.<\/p>\n<p>Zoom in particular came into the spotlight for a lack of end-to-end encryption and other security shortfalls. The company actually took the step to freeze new development to allow their developers to work through the backlog of freshly discovered vulnerabilities.<\/p>\n<p>In a time-critical situation, staff training and expertise are often overlooked in the rush to embrace a new product or technology. Employees with no previous experience were dropped in at the deep end and had to learn as they went along. Running any software with the bare minimum of knowledge is always a bad idea, but especially so with any kind of software that connects and unites remote sessions.<\/p>\n<p>Crowded video conferences allow unauthorized participants to exploit either poorly configured\u2014or completely ignored\u2014security settings and to join the conference and hide in the crowd. They may either lurk and listen in, or behave in inappropriate and disruptive ways. This gave birth to a new phrase, \u201cZoom-bombing.\u201d<\/p>\n<p>As with all popular platforms, Zoom credentials can be\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.independent.co.uk\/life-style\/gadgets-and-tech\/news\/zoom-app-accounts-sale-buy-dark-web-a9463661.html\">purchased on the Dark Web<\/a>\u00a0with over half a million account credentials available in April 2020. Not only will they let a threat actor into a Zoom call, because people often reuse passwords elsewhere the chances of those credentials working in other accounts are high. That increases the success rate of credential stuffing attacks.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Steps_You_Can_Take\"><\/span>Steps You Can Take<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure id=\"attachment_7840\" style=\"width: 700px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-7840 size-full\" src=\"https:\/\/www.cloudsavvyit.com\/thumbcache\/0\/0\/3871d79650f15a39c2e5306bc50fbcd4\/p\/uploads\/2020\/11\/caf934f4.png\" alt=\"\" width=\"700\" height=\"300\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/cooperation-corporate-achievement-planning-design-draw-368529578\" data-credittext=\"Shutterstock\/Rawpixel.com\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\"><a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/cooperation-corporate-achievement-planning-design-draw-368529578\">Shutterstock\/Rawpixel.com<\/a><\/span><\/figcaption><\/figure>\n<p>Review any steps that you have been forced to take in haste. Remind staff of company policies and procedures because even the basics can get side-stepped when working conditions are not the norm.<\/p>\n<ul>\n<li>Diligently review the security of recent infrastructure changes. If you\u2019ve recently implemented remote access for workers, consider engaging with a penetration testing service. If you\u2019ve migrated to the cloud because of the pandemic, check all exposed services, databases, and APIs are protected and locked down.<\/li>\n<li>New accounts may be assigned to cloud resources or remote access to offices. Remind homeworkers that all corporate accounts require robust passwords or pass-phrases.<\/li>\n<li>Implement two-factor authentication where possible.<\/li>\n<li>Create and implement guidelines for using domestic computers on corporate networks. Advise staff on\u2014and provide guidance for\u2014updating and patching operating systems, software, and endpoint protection suites.<\/li>\n<li>Homeworkers must not leave logged-on sessions unattended. They must log off when they leave their computer.<\/li>\n<li>Prohibit users from using their personal email accounts for business correspondence.<\/li>\n<li>Business documents must reside in business storage. They should never be placed in personal cloud storage. Hard copy documents must be stored out of sight when not in use, preferably in a locked cabinet.<\/li>\n<li>Advise staff to check that emails or phone calls allegedly from the\u00a0 IT team or tech support are genuine before collaborating with their requests.<\/li>\n<li>Remind staff to double-check links in emails by hovering the mouse over them before clicking. Attachments from unknown senders should be deleted.<\/li>\n<li>Have staff report anything suspicious. Communicate frequently with your workforce to alert them of the type of scams and attacks that have been detected, to help them stay informed, vigilant, and safe.<\/li>\n<\/ul>\n<\/div>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener noreferrer\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.cloudsavvyit.com\/7854\/working-from-home-makes-cyberattacks-more-likely\/\" target=\"_blank\" rel=\"noopener noreferrer\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#Working From Home Makes Cyberattacks More Likely \u2013 CloudSavvy IT&#8221; Shutterstock\/Roman Samborskyi COVID-19 forced many companies to adopt a working from home policy that saw staff using domestic computers over rushed implementations of remote access. That\u2019s an open invitation for cybercriminals. COVID-19 Exploited By Cybercriminals Cybercriminals are extremely agile. Not in a gymnastic way, but&#8230;<\/p>\n","protected":false},"author":1,"featured_media":108147,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2020\/11\/46bfde18.png","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-108146","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/108146","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=108146"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/108146\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/108147"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=108146"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=108146"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=108146"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}