The COVID-19 pandemic has created a huge list of challenges for businesses. One that is potentially going unnoticed or under-reported is cybersecurity. Specifically, as lockdown ends and as individuals return to offices and places of work, it may be the case that something malicious is already waiting for them on their devices.

Here we take a look at the cyber risks of remote workers returning to the office.

Cybercriminals lying in wait

Cybersecurity specialists have been noticing a rise in the number of cyber-attacks and other threat activity over the course of the COVID-19 pandemic. However, it would be wrong to assume that a relatively modest increase in attacks is all that can be expected.

“This is only likely to be the tip of the iceberg,” says George Glass, Head of Threat Intelligence at Redscan. “Many more organisations are certain to have been targeted without their knowledge; to maximise returns, cybercriminals will bide their time in order to conduct reconnaissance, avoid detection and strike at the most opportune moment”.

According to Ponemon Institute, the average “dwell time” for a company to become aware of a cyber breach in its system is 206 days. However, it may well be the case that this figure has increased over the course of the COVID-19 crisis. This is because many businesses may not have prioritised cybersecurity during this time. Additionally, their IT and security teams may lack the ability to identify the latest endpoint-focused attacks.

A concern for cybersecurity police

It is not just cybersecurity professionals who are concerned about the number of businesses that may have been infected with malware over the course of COVID-19. Senior cybercrime police officers have been making their feelings known about the dangers that can be on the horizon for companies across the UK.

“One of our concerns (Read more...)