https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Channel Research


Shutterstock

Overconfident Businessman

Malwarebytes Research: Companies Too Confident About WFH Security

  • Written by Edward Gately
  • August 20, 2020
Users' confidence often doesn't match the actual protective capabilities of tools.

New Malwarebytes research shows companies are more confident than they should be about their ability to stay secure while working from home (WFH).

The Malwarebytes research includes survey results from 200 IT and cybersecurity decision makers. The respondents are from small businesses to large enterprises.

Despite an increased number of threats, companies appear to have a high level of confidence about the transition to WFH. Roughly three in four people gave their organizations a score of seven or above on preparing for a WFH transition.

Confidence vs. Reality

Adam Kujawa is director of Malwarebytes Labs. He said this confidence “doesn’t match the reality.”

Malwarebytes' Adam Kujawa

Malwarebytes’ Adam Kujawa

“A recurring theme in many of these surveys is what I refer to as security hubris, which refers to the confidence a user has in their security tools that does not match the actual protective capability of the security tool,” he said. “For example, assuming that since you’ve established a very solid network border protection strategy, you don’t need to worry about making internal systems secure because that bad guy can’t get to them, right?”

When asked specifics of what policies and strategies have been used to ensure an organization’s preparedness, many of the answers had low percentages, Kujawa said.

Some 55% performed security and privacy analysis of any software suggested for their network before deploying it. However, 21% refrained from deploying software because it didn’t meet their security standard.

Despite this, 61% were able to supply staff with devices to work remotely. And 56% provided crucial training to ensure best cybersecurity practices were followed in a home environment.

“So we believe it’s safe to say that the idea of security and confidence in it is top of mind for many, but the details and execution paint a different picture,” Kujawa said.

Breaches and Associated Costs

Other findings include:

  • One in five (20%) said they faced a security breach as a result of a remote worker. This, in turn, led to higher costs.
  • One in four (24%) had unexpected expenses to address a cybersecurity breach or malware attack following shelter-in-place orders.
  • Three in five (61%) of respondents’ organizations did not urge employees to use antivirus solutions on their personal devices.

In addition, 28% admitted they use personal devices for work activities more than their work-issued devices. This could create new opportunities for cyberattacks.

“At the end of the day, if you give your employees the right equipment, show them how to use that equipment correctly, make sure they have support for that system and you allow some trust in your employee-employer relationship, it shouldn’t be that difficult to get folks to use their work devices for work,” Kujawa said.

Cybercriminals Stepping Up

On the threat landscape, Malwarebytes research showed cybercriminals have adapted to take advantage of improperly secured corporate VPNs, cloud-based services and business email. All could be used for infiltration of corporate assets.

There’s also been a surge in phishing emails that use COVID-19 as a lure to cover up malicious activity. These emails contain commercial malware, such as AveMaria and NetWiredRC. Those allow for remote desktop access, webcam control, password theft and more.

AveMaria jumped over 1,200% from January to April, an enormous increase from 2019. According to Malwarebytes, AveMaria mostly targeted large enterprises.

Similarly, NetWiredRC saw a 99% increase in detections from January to June. It primarily targets SMBs.

“The biggest issue is the changing threat landscape, which wasn’t too much of an issue at the beginning of the pandemic,” Kujawa said. “We observed a lot of older malware, mainly deployed for information gathering purposes, with the goal of gaining access to corporate resources through remote employee systems. Now that we are six months in, we’re seeing a resurgence of bigger and more dangerous threats that focus on corporate networks, coming up with new methods of infection and new strategies to exploit our remoteness.”

Tags: MSPs VARs/SIs Best Practices Channel Research Networking Security Strategy

Related


  • Target group
    Stratus Technologies Targets VARs with New Partner Program
    Stratus offers two edge computing platforms.
  • 501 Somewhere Logo
    It’s 501 Somewhere: Janet Schijns on Transformational Leadership
    Schijns talks about what it takes to be a true leader, transformational technology, and her three steps for success.
  • Two cloud-shaped hands shaking among other clouds in the sky.
    IBM Buys Cloud MSP Taos for Expertise in AWS, Azure, Google
    Channel partners will be able to take advantage of the combined companies’ hybrid cloud capabilities.
  • ThinkPad X1 Titanium Yoga
    Lenovo to Ship Its Thinnest ThinkPad Yet with X1 Titanium Yoga
    Lenovo's expanded commercial line includes revamped ThinkBooks and AR glasses.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • HPE, Synnex Channel Execs Look Forward to Former Intel CTO Returning as CEO
  • Kaseya Unified RMM Solution Tackles Growing Number of Connected Devices
  • How Secure is Your Cloud Data?
  • Tenable Research: Publicly Known Vulnerabilities Increased in 2020

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

The Importance of Being Security-Centric

January 22, 2021

Cyberattacks: Threat Hunters Conquer Unpredictability with 3 Measures

January 21, 2021

The Right Data Migration Tool Helps Schools Move to Cloud During COVID Crisis

January 19, 2021

Webinars

View all

Who’s Behind the Mask? Hacker Personas Explained

January 26, 2021

Your Network Perimeter Has Changed

February 18, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Eight Reasons Why MSPs Need IT Industry-Specific Sales Tools

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

.@exabeam, @VulcanCyber, @ntti3, @Vectra_AI, @Lookout and @valtixinc give high marks to @POTUS' federal… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Judge sides with @AWScloud against #Parler; @SADAsystems gets AI-centric board member; @EnsonoIT, @navisite get… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

2021 may be the year of the #security-centric #MSP @BarracudaMSP #remoteworking #ITsecurity #dataprotection #RMM… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Adding #AIOps and #AI-driven WANs will help IT administrators move forward, says @MistSystems.… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Microsoft taps @tybryson as corporate VP @msuspartner group @julwhite heading to SAP, @anderson to @Qualtrics.… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

#MSPs can inject predictability into #threathunting @Sophos #cybersecurity #ransomware dlvr.it/Rr4ffV https://t.co/Bztc2Yxwvc

January 22, 2021
ChannelFutures

.@RiskBased report shows decrease in #databreaches, jump in exposed records in 2020. dlvr.it/Rr4fcW https://t.co/PYiDMiJFbt

January 22, 2021
ChannelFutures

Legal experts say @VMware's #lawsuit against @nutanix's new CEO holds little weight. dlvr.it/Rr48FJ https://t.co/oLxPhgvgAt

January 21, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X