The New Generation Of Cyber Security Threats

Employees working from home have become a tempting target for hackers. Cyber criminals are exploiting the chaos caused by the virus and the proportion of attacks targeting home workers increased from 12% of malicious email traffic before the lockdown began in March to more than 60% just six weeks later. 

Leading AI-driven cybers security firm Darktrace say they detected “a large malicious email campaign” against UK businesses that told employees they could choose to be furloughed if they signed up to a specific unnamed website.

The attacks have increased in sophistication, specifically targeting coronavirus-related anxieties rather than the more usual attempts at financial fraud or extortion. These threats typically aim to sidestep standard cyber security measures that many home workers now have in place, and that means that its necessary to take some extra steps to thwart them.

Phishing attacks, where hackers use misleading emails or fake web sites to trick people into clicking on malicious links or downloading malware onto their computers, have long been one of the most dangerous types of cyber-attacks. The best way to protect against phishing attacks is to be aware of the risks. That means that staff should be educated and reminded never to click on links in emails that they are not expecting, and never to download software from websites that they reach via a link in an email, especially if they purport to contain information about COVID-19.

Hackers understand that there are rich pickings to be had in the cloud, which explains a new type of threat which is emerging: Cloud-Intelligence (AI) technology is advancing at a very high rate, and one area that hackers are likely to use this in the future is in the production of "deepfake" voices which mimic the voice of a real person. 

Using deepfake voice technology, hackers could reproduce the voice of a charity leader, and then call a charity employee working from home. Using the deepfake voice the hacker could then tell the employee to transfer money to a bank account using some plausible pretext.

Reducing human error has as much of a role in cyber security as a faulty anti-malware system. Make sure you know what you can do within your role to protect your company from cyber-attacks and have cyber security training for all your employees. Proper training is a cost effective and usually results in spending less on cyber security because your workforce's activities are tightly aligned to the threats.

Keeping your company safe from cyber threats requires diligence and effective IT cybersecurity strategies.  Combining common sense with good practices can help avoid cyber attack attempts. 

Darktrace:   Cybersecurity Insiders:       Guardian:           CUNA Mutual:       Charity Digital

To reduce the negative effects of cyber hacking one very important part is to ensure your staff and management have effective cyber security training. Cyber Security Intelligence recommends GoCyber. For a free test trial please Click  > Here <

You Might Also Read:

Easing Out Of Lockdown

 

« US - China Conflict Over Social Media
Financial Fraud Using Fake Celebrity Endorsements »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CloudDNA

CloudDNA

CloudDNA deliver solutions that enable users and devices to connect over high performance, secure, efficient, scalable cloud networks.

Hiscox

Hiscox

Hiscox offers cyber and data risks insurance to protect your business against the risks of holding data and using computer systems..

Qolcom

Qolcom

Qolcom is a leading UK based integrator of secure wireless network and mobile device management solutions.

OmniNet

OmniNet

OmniNet delivers the next generation of cybersecurity and is the only provider in the market to move the edge of small businesses to a virtual, omnipresent perimeter.

Cygilant

Cygilant

Cygilant is a SOC2 certified service provider that combines MSSP and Incident Detection and Response (IDR) capabilities managed by global SOCs staffed with trained security engineers.

CERT.lu

CERT.lu

CERT.lu is an initiative to enhance cyber security practices and techniques, and support security professionals in Luxembourg.

RHEA Group

RHEA Group

RHEA Group offers aerospace and security engineering services and solutions, system development, and technologies including cyber security.

CSIRT Italia

CSIRT Italia

CSIRT Italia is the national Computer Security Incident Response Team for Italy.

Dasera

Dasera

Dasera’s Radar and Interceptor products deliver visibility, governance, and protection solutions for data-agile companies.

National Cyber Coordination & Command Centre (NC4) - Malaysia

National Cyber Coordination & Command Centre (NC4) - Malaysia

NC4 is established as a center for dealing with cyber threats and crisis at the national level in Malaysia.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

BluescreenIT (BIT)

BluescreenIT (BIT)

BluescreenIT is an IT Security Consultancy and IT and Cyber Security Training company supporting industry, local authorities, MoD and governmental IT departments.

eGyanamTech (EGT)

eGyanamTech (EGT)

eGyanamTech provides robust security solutions tailored for Operational Technology (OT) and Supervisory Control and Data Acquisition (SCADA) systems used in critical infrastructure systems.

Chorus

Chorus

Chorus are a leading Managed Security Service Provider (MSSP), and member of the Microsoft Intelligent Security Association (MISA), with three Microsoft Advanced Specialisations in security.

Gleam Cloud Security Solutions (GCSS)

Gleam Cloud Security Solutions (GCSS)

GCSS Security is an information security firm providing cyber security protection with a highly skilled and experienced team focused on technology that creates best-in-class customer experiences.

Cypherleak

Cypherleak

Cypherleak provide Automated Cyber Risk Monitoring & Ai powered cyber recommendations.