Skip to main content

Cybersecurity training from employers in the past year

Cybersecurity continues to be a challenge for businesses of all sizes, especially as workers are shifting to a remote workforce globally.
Teaching paper computers
According to recent research by Promon, the Oslo-based mobile security company which last year revealed flaws in the Home Office’s Brexit app, two-thirds of remote workers in the UK have not been given any cybersecurity training from employers in the past 12 months, while 77% say they aren’t worried about their cybersecurity while working remotely.
Promon’s research into the attitudes towards cybersecurity comes after Ursula von der Leyen, president of the European Commission, warned on March 24th that cybercrime in the EU has increased due to the coronavirus outbreak. As the pandemic has forced many more people to work from home, attackers are capitalizing on the increased amount of time spent online by carrying out targeted COVID-19-related phishing campaigns which can result in the victim downloading ransomware (malware that encrypts files until a ransom is paid), or attackers gaining access to a victim’s computer.
Examples of such campaigns include a bogus email from HMRC containing a ‘new tax refund program’ set up by the Government, which, when clicked, directs to a fake webpage that harvests financial and tax information. Another example is a fake email claiming to be from the World Health Organisation, containing an attachment on new coronavirus safety measures. When opened a keylogger is downloaded, which then tracks and records every key that’s pressed on the user’s keyboard, enabling the attackers to secure passwords and other sensitive login information.
The survey also found that 61% of respondents are using personal devices when working remotely, adding an extra layer of concern as many of these are likely to be less secure than corporate-issued ones. Cybercriminals are taking advantage of decreased levels of security on personal devices connected to corporate networks, with successful attacks ringing alarm bells for employers whose sensitive corporate data is now at risk, along with individuals’ personal data, including banking information and login details.
Promon CTO and co-founder Tom Lysemose Hansen comment: “It’s concerning to find that such a large number of workers don’t have the necessary training to spot a potential cyber threat, such as a phishing email or spoofed website, as these are the main ways in which cybercriminals are executing their attacks. Organizations must ensure that staff who are working remotely are doing so in secure environments, whether that’s on personal or corporate devices, and it’s critical that they provide the necessary training and tools to ensure corporate data is protected.”
With the majority of people now working remotely, these worrying statistics show the enormous ‘flaw in the plan’ for many organizations which have left themselves unprepared when it comes to the human factor of cybersecurity – the notion that regardless of security measures in place all it requires is one person opening a link within a malicious email for serious damage to be caused.
Security awareness is not a once or twice a year activity, rather it needs to be an ongoing program whereby employees are continually reminded of the threats that are present, how to identify and report them.”
Each successful attack is ringing alarm bells for employers whose sensitive corporate data is now at risk, along with individuals’ personal data, including banking information and login details. So with attacks on the rise, and as security education seems almost non-existent, it is no wonder that cybersecurity is such a challenging battle.


Labels:

Comments

Post a Comment

Popular posts from this blog

MOST COMMON CYBER ATTACKS

1). PHISHING:        • One of the most insidious techniques used today is Phishing. It's hard to find the person that doesn't know what phishing is. However lot of users still getting tricked by the hackers.         • Phishing implies    the replication of the website with the aim of stealing money or personal information. And once a user enters his credit card details in that fake website, a hacker can get access to those details and will be able to use those information for his own benefit. 2). Viruses and Malicious Codes:        • Hacker's can almost crawl into any website and leave in its database malware or insert code into website files.         • There is a huge variety of viruses, and each may impact the infected websites differently. 3). UI Redress:        • This technique is similar to the phising; but in this case a hacker could create a fake hidden user int...
1 comment
Read more

Face search on web

  Today the web is full of such tools, but it is best to focus on the ones with a very good track record over the years. With that in mind, I'll limit myself to the top four, or better yet, the top 4 from my point of view. If you don't like my choice, you can share yours in the comment section and let's have a worthy discussion. How to search for a face or face on the web You can use any of these free facial recognition search engines to find faces on the internet: 1- PimEyes 2- PicTriev 3- BetaFace 4- Google images 1. PimEyes Having the ability to search for faces from over 10 million websites is an incredible superpower, and that's what  PimEyes   will show you. Yes, it is very similar to Google Search in how it works, but if you are not a fan of the Silicon Valley guys, then PimEyes is a great alternative. Interestingly, users can search with four different photos at the same time to narrow down the results. 2. PicTriev I found  PicTriev  to be quite differen...
Post a Comment
Read more

Amazon Web Services (AWS) and Cloud Computing for Beginners — Best and free

  Hey Everyone! If you want to learn about the basics of Amazon Web Services, also known as AWS, and you are looking for excellent & important resources such as books, courses and websites then you have come to the right place. In this article, I will share with you the best lessons from Amazon Web Services or AWS that will help you learn this flexible and valuable technology at no cost. and education. You just need to sign up with them and you can read AWS anytime, anywhere, and in your program. What is Amazon Web Service (AWS) benefits? A W S is just a cloud service provider by Amazon. It is flexible because it allows you to upgrade the app without having to worry about hardware, network, database and virtual infrastructure that you need to run your app. For example, if you want to improve your online business plan, you need more servers, information and other infrastructure. Amazon has built many data centers around the world to support its core business which means the E-Co...
Post a Comment
Read more