The COVID-19 pandemic is now a year old and has forced businesses to quickly support remote working practices, often without proper security measures in place. The Verizon Business Mobile Security Index (MSI) 2021 reveals that many businesses may have left themselves vulnerable and open to cybercriminals in the rush to ensure their workforce could operate remotely. Forty-nine (49) percent of businesses surveyed in the latest edition of Verizon's MSI stressed that changes made to remote working practices during lockdown adversely affected their company’s cybersecurity.
Interestingly, even though 40% of businesses surveyed recognized that mobile devices are their company’s biggest IT security threat, 45% of them knowingly sacrificed the security of mobile devices to “get the job done” (e.g., meet a deadline or productivity targets) and nearly a quarter (24 percent) sacrificed the security of mobile devices to facilitate their response to restrictions put in place due to the pandemic.
“The pandemic caused a global shift in the way organizations to operate, many of which ramped up their digital transformation agendas and working models to meet the fast-changing needs of both employees and customers,” said the Chief Revenue Officer, Verizon Business. “While businesses focused their efforts elsewhere, cybercriminals saw a wealth of new opportunities to strike. With the rise of the remote workforce and the spike in mobile device usage, the threat landscape changed, which for organizations, means there is a greater need to hone in on mobile security to protect themselves and those they serve.”
The effect of the pandemic on the workforce is going to have a lasting impact. According to the report, a large majority (70 percent) of those that had seen remote working grow following the introduction of pandemic restrictions expected it to fall again afterward. However, 78 percent said that it would still remain higher than before lockdown. Overall, our respondents said that they expected the number of remote workers to settle at around half (49 percent).
Small and Medium-Sized Businesses (SMB) are also under threat !!! Over half of those surveyed (52 percent) said that small and medium-sized businesses are more of a target than larger enterprises but even though this is the case, 59% of SMBs sacrificed security with 22% suffering a mobile compromise. Seventy-eight (78) percent stated that they should take mobile-device security more seriously.
Security should always be front and center; ALWAYS. Of those surveyed, 72% of organizations are worried about device abuse or misuse. Part of the problem is that many companies struggle to develop an effective Acceptable Use Policy (AUP), 57% did not have one at all.
The MSI report details people and behaviors, apps, devices and things and networks, and the cloud as the four sectors of the mobile threat landscape. Additionally, it provides expert insights into how to help safeguard against pending cybercrime attacks, such as establishing a “zero-trust network access (ZTNA)” model and a secure access service edge (SASE) architecture, which is designed for a mobile-first and cloud-first world.
About the Verizon Mobile Security Index 2021 - The Verizon Mobile Security Index 2021 findings are based on an independent survey of 856 businesses across Australia, the US, and the UK. Verizon surveyed professionals that are responsible for the buying, managing, and security of mobile and Internet of Things (IoT) devices for their companies. It provides unique insights into the current mobile threat landscape and what organizations are, or in many cases are not, doing to protect their data and key systems. In addition to analysis from Verizon’s experts, the report includes insights and real-world data from leading security and management companies Asavie, Blackberry Cylance, Check Point, IBM, Ivanti, Lookout, NetMotion, Netskope, Proofpoint, Qualcomm, Thales, VMware, and Wandera.
Red Sky Alliance has been analyzing and documenting these types of cyber threats for 9 years and maintains a resource library of malware and cyber actor reports available at https://redskyalliance.org at no charge. Many past tactics are often dusted off and reused in current malicious campaigns. Red Sky Alliance can provide actionable cyber intelligence and weekly blacklists to help protect your network.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. For questions, comments, or assistance, please contact the lab directly at 1-844-492-7225, or feedback@wapacklabs.com
Weekly Cyber Intelligence Briefings:
- Reporting: https://www.redskyalliance.org/
- Website: https://www.wapacklabs.com/
- LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://attendee.gotowebinar.com/register/3702558539639477516
Comments