Remote Work Will Escalate Opportunities For Cybercriminals: Survey
According to Juniper Networks, 73 per cent of the participants said their organization's network and security has sometimes struggled in terms of the added business demands
The 2020 pandemic exposed gaps in network security postures that no one could have foreseen. Unsecured home networks, use of BYOD (bring-your-own-device), and siloed operations made previously visible threats on corporate networks become invisible, hidden on home networks. Cybercriminals took advantage of this expanded attack surface to launch phishing, vishing, and ransomware attacks.
In a recent survey conducted by Vanson Bourne of Juniper Networks, in France, Germany, Israel, Italy, Netherlands, Saudi Arabia, UAE, the UK, and the US. Responses are drawn from chief information officers (CIOs) and chief information security officers (CISOs) of organizations of 1,000 employees and more.
According to Juniper Networks global security strategy director Laurence Pitt, 73 per cent of the participants in the survey stated that in the light of the recent pandemic, their organization’s network and security has sometimes struggled in terms of the added business demands that have been placed upon them.
“With that sobering statistic in mind, globally, life will not return to ‘normal’ anytime soon, and the need for employees to work remotely will remain,” said Juniper Networks global security strategy director Laurence Pitt. “Organizations need to pause and rethink how they approach security to support this new paradigm with a focus on increased visibility and faster response. Otherwise, cybercrime will continue to evolve and take advantage of remote working as the easiest point of entry into their network.”
Security budgets will suffer in 2021
For several years now, cybersecurity has been one area where investment and budget growth are constant. The security team has positioned successfully with insights and future trends, and the business sees strength insecurity as both a regulatory need and a competitive advantage.
However, in 2020 a change was witnessed: investment had to be brought forward to support remote working, and a rapid move into cloud-based software services, all driven by the pandemic.
Now, 2021 may see reduced spending on security, and an increased need to demonstrate fast value from previous security investments, 70 per cent of the participants stated in the report that the pandemic may limit and restrict my organization's future planned to spend on network security.
To prepare for this possible outcome, security teams need to think differently and leverage existing solutions more effectively or deploy changes such as connecting to a secure domain name system (DNS) service, which would only carry minimal implementation costs.
Availability and accessibility puts data in jeopardy
With more employees requiring access to more information, from more places, at all times, we’re likely to see a spike in data breaches and exposures in 2021. Too often, the business needs to provide data is prioritized over safeguarding information and restricting data access appropriately, meaning more databases of information are available for malicious actors to potentially access and exfiltrate.
According to the survey, combined with the adoption of 5G that enables both attacks and data theft to happen faster and more discretely, it is likely that 2021 will suffer from growth in data theft. To reduce the risk, organizations need to consider basic security best practice before making any access changes to business data to make sure that passwords are complex and regularly updated to ensure that role-based access is implemented to restrict and control overall access and to monitor heavily encrypt data, both at rest and in motion.
This combination will help to ensure that hackers end up with a useless batch of restricted data rather than sensitive business information, should they gain access, the report said.
Implementing and securing a distributed workforce
“With the significant rise in remote work due to the ongoing pandemic, businesses in India are challenged with finding new ways to leverage IT to deliver a successful work-from-home operating model, while ensuring reliable and secure connectivity,” maintains Juniper Networks India systems engineering manager Rohit Sawhney, in a statement made in the report.
To enable a robust remote workforce, organizations will require the agility to adopt new technology. Building new IT infrastructure on top of legacy systems within data centers is no longer the solution. In this era, the cloud will lead the way. As such, it is paramount that security remains at the core of this new technology adoption amidst a new wave of remote workers.
However, this has also given way to a broader cyberattack surface. Therefore, to mitigate the increasing number of threats in the network, organizations need to integrate new policies and processes to address these new challenges, while implementing security solutions that are seamlessly integrated across the full stack of cloud-delivered services.