2020 continues to be a year of change, as businesses are adapting to new circumstances and more employees than ever are working from home. It is not only the business world that has had to adapt, cyberattacks are taking advantage of these strange times too. Many businesses are unaware of the cybersecurity risks of working from home, which leaves them vulnerable. The list below outlines the five most common cyberthreats of 2020 so far, so you are better informed to protect your business.
- Phishing
Phishing is the act of sending a message, usually an email, that claims to be from a legitimate organisation, such as a bank. This message will usually ask the recipient for information or to click on a link, supplying the attacker either with valuable personal details, or access to your computer via the use of malicious software. The rate of phishing attacks has increased drastically in 2020. However, it is not only at-home workers who are vulnerable to phishing attacks. In February 2020 the Puerto Rican government lost $2.6 million due to a phishing email that claimed that there had been a change with their banking account. Phishing is a quick and easy way for attackers to obtain information and can lead to devastating consequences. Luckily for business owners, there are ways to protect yourself again this threat by using a security solution-driven phishing protection service.
- Malware and Ransomware
Malware is a type of software that has been specifically designed to damage a computer. Ransomware refers to a particular type of malware that is used to lock down a computer and its files, which are then held to ransom. This type of attack can happen to any type of business that does not have the right protection and can radically affect operations. For example, the Denmark-based business, ISS World, was unable to access business-critical systems from February to March this year due to a ransomware attack. The predicted expense incurred as a result is between $75-113 million.
- Database Exposure
Database exposure occurs when a company does not adequately manage to protect their data. An example of database exposure is the NHS data breach that occurred in July 2018, which resulted in the confidential information of 150,000 patients being shared without their permission. Database exposure has become more common in 2020, as organisations fail to maintain the necessary cybersecurity measure as people are working from home.
- Credential Stuffing
This type of cyberattack involves hackers using large-scale automated login credentials to gain unauthorised access to a database of usernames and passwords. There are many ways that you can protect your business against this type of cyberattack. For example, you can use two-factor authentication systems and secure passwords.
- Accidental Sharing
The final biggest cybersecurity risk of 2020 is not a threat from a criminal attack, rather an unintentional action by an employee. The most common consequence of accidental sharing is the sharing of sensitive company information online. In March of this year, accidental sharing made the news as the data of millions of European eBay and Amazon shoppers became available online.
