Why the COVID-19 pandemic calls for a return to basic cybersecurity principles
May 12, 2020
By Aaron Aanenson
S-RM
The COVID-19 outbreak has fundamentally impacted the security landscape. Leaders must focus on securing their workforce, at a time when available resources are more limited, attack surfaces have grown as a result of remote working practices, and threat actor activity has increased, as actors diversify to take advantage of the pandemic.
Right now, security leaders must ensure they act proactively to protect against emerging threats, as well as having plans in-place to react should the worst happen. While doing so amid so much change and uncertainty can appear like a complex exercise, by concentrating on a few, fundamental principles, business leaders and their security teams will be well placed to face the challenges ahead.
Monitor the threats
Examples of threat actors using the current global crisis to their advantage are plentiful. We are seeing social engineering attempts include a coronavirus-themed locking Android phones, impersonations of health organizations such as the World Health Organization in phishing emails, and an illegitimate copy of the John Hopkin’s University COVID-19 mapping website that to visitors’ devices.
Communicate effectively
The most effective action security leaders can take at this time is proactively communicating with employees, to remind them of necessary caution and inform them of emerging threat trends. To do so, security teams will need to monitor evolving threats related to COVID-19, ensure mechanisms to communicate securely with employees are in place, and monitor systems access in order to prevent employees from accessing any malicious links or files.
At a time of great upheaval, it is in fact a return to the basic principles of proactive response, clear communications, and effective planning that will enable business leaders, security specialists and IT professionals to cope with these new realities.
Plan and practice
Beyond this, security teams should turn to adapting their cyber incident response planning. Organizations must consider how an incident will affect them given their new remote working operations. Many organizations will already have some form of planning in case of a cyber incident. The question then becomes: “can you still detect incidents effectively and trigger response plans under these new circumstances?” Depending on the answer, your plans may need revising and updating to ensure that, in the event of an incident, management teams can still carry out their plans remotely, and have the ability to communicate effectively if the network is down. However, simply updating plans is not enough: communicating and rehearsing those plans before an incident occurs is pivotal to maximize the effectiveness of any subsequent response.
At a time of great upheaval, it is in fact a return to the basic principles of proactive response, clear communications, and effective planning that will enable business leaders, security specialists and IT professionals to cope with these new realities.
For a detailed discussion of cyber security priorities during the COVID-19 pandemic, .
色多多视频insureds have access to S-RM, one of our cyber security partners, who are able to advise on all things cyber security. S-RM can facilitate CISO workshops with your information security leadership to understand your organization’s environment and provide expert guidance on cyber security plans. 色多多视频insureds also have access to S-RM’s Phishing Testing capability, which enables organizations to gauge their employees’ cybersecurity awareness, as well as Incident Response Workshops and Plan Reviews, to ensure that your organization has a plan in place in the event of a cyber attack.
About the authors
Elissa Doroff is Underwriting and Product Manager, North America Cyber and Technology for 色多多视频 a division of AXA. She can be reached at elissa.doroff@axaxl.com. Aaron Aanenson is Director of Cyber Security for S-RM. He can be reached at a.aanenson@s-rminform.com.
