BOOK AN APPOINTMENT WITH AN IT SPECIALIST TODAY

Cybercrime & Coronavirus: What You Need to Do to Protect Business, Employees, and Profits

Cybercrime Spikes During Coronavirus: Tips to Protect Your Business

Learn why cybercrime tends to spike during times of global crisis. Get tips on how to protect your tech environment from cyber criminals during the coronavirus.  

Right now, people are hanging onto every news story about the coronavirus. They’re checking social media more than usual. They’re setting up home offices, learning how to use new collaboration tools with their colleagues, or trying to figure out what to do in the absence of income.

They’re also dealing with their kids being at home all day and wading into homeschool. On top of all this, they’re worried about the spread of the virus and its effect on the economy. While everyone is stressed, busy, and distracted, cybercriminals are focused and ready to go.

Coronavirus Cybersecurity

Cybercrime Spikes During Coronavirus

Cyberattacks almost always spike during times of global crisis, and right now, the Federal Bureau of Investigation reports that the coronavirus is no exception. Scammers are hacking into databases, sending out phishing emails, and leveraging the pandemic to convince victims to make donations to fake organizations or buy counterfeit personal protection equipment.

Analysts speculate that cybercriminals will cause $6 trillion in damages in 2021, and in 2020, damages are mounting as criminals take advantage of this situation. Research indicates that phishing emails have increased by 667% since February — that’s a seven fold increase in just a few weeks.

How to Protect Yourself From Cybercrime During the Coronavirus

Being aware of the risk of cybercrime is the first step. While many people think they are immune, no one is free of this risk — in fact, cybercriminals spend a lot of time targeting small businesses and organizations. To protect your business, practice these security essentials.

1. Be hyper-vigilant of incoming emails

As indicated above, phishing emails are on the rise. Cybercriminals are relying on people to have their guard down, and you and your employees need to be vigilant.

A lot of these emails contain dangerous attachments, while others include links to malicious websites. Never open an attachment or click a link from an unknown sender. If the sender looks familiar, take a few extra minutes to verify their identity. Scam artists often make their emails look like they’re coming from someone you know or from an organization like the Centers for Disease Control (CDC).

2. Secure all work-from-home computers

Another reason cybercrime is exploding right now is due to the unprecedented number of people who are working from home. If your employees are working from home, you need to take extra steps to secure your network.

Ideally, you should have your employees work on computers issued by your business. Home computers tend to be full of potentially dangerous videos, photos, or downloads.

Make sure all the computers your employees are using have a firewall that is turned on and configured correctly. Firewall misconfigurations can create extensive vulnerabilities in your network.

Finally, have your employees access everything through a virtual private network (VPN). A VPN encrypts all the data transmitted from their computers, creating an additional layer of security. Ideally, you should use a dual-factor VPN that requires your employees to enter their password plus an additional piece of verification such as a code texted to their phone.

3. Beef up your password strategy

Weak passwords threaten the security of your tech environment. Make sure your employees understand the importance of never using easy-to-guess passwords such as 12345, Password, their own names, or details visible on their social media pages.

Additionally, they shouldn’t let their browsers store passwords. Instead, you may want to look into a password manager such as LastPass or 1Password. These applications store passwords, but they can’t be accessed as easily as most browsers.

Cybercrime can cost you money, reduce your productivity, harm your reputation, and cause other types of damage to yourself, your employees, and your business. To reduce your vulnerability, contact a cybersecurity professional. They can help you identify the processes, products, and practices you need to stay as safe as possible, especially during a global crisis.

More Like This

AA20-209A: Potential Legacy Risk from Malware Targeting QNAP NAS Devices

Original release date: July 27, 2020 Summary This is a joint alert from the United States Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). CISA and NCSC are investigating a strain of malware known as QSnatch, which attackers used in late 2019 to target Network Attached Storage (NAS) …

AA20-209A: Potential Legacy Risk from Malware Targeting QNAP NAS Devices Read More »

Read More

AA20-206A: Threat Actor Exploitation of F5 BIG-IP CVE-2020-5902

Original release date: July 24, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this alert in response to recently disclosed exploits that target F5 BIG-IP devices that are vulnerable to CVE-2020-5902. F5 Networks, Inc. (F5) released a patch for CVE-2020-5902 on June 30, 2020.[1] Unpatched F5 BIG-IP devices are an attractive target …

AA20-206A: Threat Actor Exploitation of F5 BIG-IP CVE-2020-5902 Read More »

Read More

AA20-205A: NSA and CISA Recommend Immediate Actions to Reduce Exposure Across Operational Technologies and Control Systems

Original release date: July 23, 2020 Summary Note: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise and ATT&CK for Industrial Control Systems frameworks for all referenced threat actor techniques and mitigations. Over recent months, cyber actors have demonstrated their continued willingness to conduct malicious cyber activity …

AA20-205A: NSA and CISA Recommend Immediate Actions to Reduce Exposure Across Operational Technologies and Control Systems Read More »

Read More

AA20-198A: Malicious Cyber Actor Use of Network Tunneling and Spoofing to Obfuscate Geolocation

Original release date: July 16, 2020 Summary This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) and Pre-ATT&CK frameworks. See the MITRE ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor techniques. Attributing malicious cyber activity that uses network tunneling and spoofing techniques to a specific threat actor is difficult. …

AA20-198A: Malicious Cyber Actor Use of Network Tunneling and Spoofing to Obfuscate Geolocation Read More »

Read More

AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java

Original release date: July 13, 2020 Summary On July 13, 2020 EST, SAP released a security update to address a critical vulnerability, CVE-2020-6287, affecting the SAP NetWeaver Application Server (AS) Java component LM Configuration Wizard. An unauthenticated attacker can exploit this vulnerability through the Hypertext Transfer Protocol (HTTP) to take control of trusted SAP applications. …

AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java Read More »

Read More

AA20-183A: Defending Against Malicious Cyber Activity Originating from Tor

Original release date: July 1, 2020 | Last revised: July 2, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) and Pre-ATT&CK framework. See the ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor techniques. This advisory—written by the Cybersecurity Security and Infrastructure Security Agency (CISA) with contributions from …

AA20-183A: Defending Against Malicious Cyber Activity Originating from Tor Read More »

Read More