Netwrix: Working from Home Prompts Latest Cybersecurity Trends
Insider cyber threats will become more pressing in the months ahead.
Netwrix says organizations need to keep an eye on five cybersecurity trends in the second half of 2020 and beyond due in part to working from home.
The massive shift to working from home in response to COVID-19 has led to an increase in cyberattacks. However, Netwrix experts don’t envision dramatic shifts in the cybersecurity threat landscape. Instead, they identify the following cybersecurity trends that have accelerated and will have the biggest impact on organizations:
The insider threat will become even more pressing. Many organizations already plan to keep more of their staff working from home. IT teams will have to adapt to a larger remote workforce. That means a lack of control over a greater number of endpoints and network devices.
Security by design and by default will become the norm. Use of online services has exploded while working from home. Unfortunately, many users have little knowledge about cybersecurity threats, which makes them easy targets for online scams.
Deepfakes will take spoofing to the next level. Emails impersonating C-level management and voice spoofing will continue. But the extensive use of video conferencing will lead to a rise in video spoofing.
Attacks will go undetected in a flood of false alarms. The abrupt change to working from home has caused many security monitoring solutions to generate far more false positives since they require time to adapt to the new normal. A similar spike in false alarms will occur when employees return to the office. Hackers will continue to use these turbulent times to launch attacks, knowing that organizations will be blind to their malicious behavior.
Organizations will move beyond passwords. As people flock to online services, re-use of passwords between services will increase. Users can’t remember dozens of unique passwords and are reluctant to adopt password management tools. Therefore, organizations will adopt non-password authentication methods, such as biometric data, like fingerprints or eye scans.
Netwrix’s Ilia Sotnikov
Ilia Sotnikov is Netwrix’s vice president of product management. He said MSSPs and other cybersecurity providers can develop specific services to address the burning needs of their customers. They can offer packages that will help organizations improve control over user activity, and provide more visibility into network devices.
“Also, security providers need to ensure they are able to offer solutions and services to manage cyber risk,” he said. “They should keep their eyes open for easy and simple solutions as those would be likely to be accepted by the market. Organizations will have to reassess their risks and adapt their plans, having new lower budgets in mind. Simpler solutions that don’t require costly consulting services are likely to be in demand.”
Organizations have to reprioritize budgets and many have to focus on availability of their applications and data, Sotnikov said. IT departments often lack budget and expertise to do much beyond keeping the lights on. MSSPs have the opportunity to fill this lack of expertise gap and guide clients to a comprehensive security strategy.
“Organizations will definitely have to support remote infrastructure for awhile,” he said. “Employees will be coming back in phases, and the last ones may be working remote until the end of the year, or perhaps forever. This means that targeted attacks on employees and insider threats will still be an issue. Also we might expect a new wave of phishing attacks, as we have seen with COVID-19 related emails. Security providers and their customers should consider renewing employee knowledge on security best practices.”
In many cases, the urgent move to working from home demonstrated to executives that their teams can stay productive while working remotely, Sotnikov said. This means some will leverage the opportunity and give employees more flexibility, he said.
“You can also expect a higher number of new businesses to start with a ‘virtual office’ to attract the best talent globally and cut the costs during the rapid growth stage,” he said. “MSSPs that have predefined service packages for remote or mixed office/remote environments can definitely leverage this trend.”
Sophos Unleashes Advanced EDR
Sophos has unveiled an updated version of its Endpoint Detection and…