The new year has brought a range of surprises like the COVID-19 vaccines, the reopening of offices, and many new upcoming ventures. Nonetheless, the challenges of 2020 continue to give sleepless nights to CISOs. The cybersecurity threat to IT infrastructure is constant. In this blog article at IT Security Expert, Dennis Okpara explains the trending cyber breaches which will continue to linger in 2021.
Since technology giants like Twitter and Google are set to adopt the permanent work-from-home model, about 60 percent more enterprises are also following suit. So, the implementation of 2020 home office policies will remain a priority this year. This openness to flexibility also means organizations must shoulder enormous responsibilities. CISOs are dealing with new sets of obligations to secure their company’s IT infrastructure. These emerging issues are leaving CISOs restless:
The remote workforce continues to leverage personal devices to work odd hours. A majority of them are using private networks, which has increased the risk of “insider threats.” It does not come as a surprise. According to the 2020 Verizon’s Data Breach Investigation report, internal employees are responsible for the growing data breach cases by 30 percent. If you refer to last year’s Twitter breach, it was also an insider’s fault. Threat actors are using social engineering manipulation to access internal systems.
Lack of preparation and distributed networks are the primary reasons for being vulnerable to ransomware attacks. When your remote workforce uses third-party services or free virtual tools, hackers can access your confidential data. The use of private cloud services is another potential threat to your company network. When employees access crucial data stores through personal gadgets, it can cause significant security threats. Ransomware cybercriminals could encrypt the stolen data and demand a high ransom from you.
Multi-factor authentication (MFA) has improved the cybersecurity of corporate services. Nonetheless, your smartphones are the new entry points for vector attacks. Apart from that, malware, data manipulation, weblink interception, and social engineering are the new ploys of cyber hackers. Furthermore, “vishing” is becoming mainstream. The attackers can manipulate employees using fabricated audio calls on behalf of IT officials.
Additionally, cases of smishing or SMS phishing will grow in 2021. Hackers will leave no stone unturned to compromise your mobile devices, predicting an ambiguous future for businesses.
Click on the following link to read the original article: https://blog.itsecurityexpert.co.uk/2020/12/trends-in-it-security-and-iam-in-2021.html