Cyber Security challenges in 2020
2020 was a Cyber Security headache for business owners and security teams. Although some were well set up for supporting home workers and experienced no transition period, a huge proportion of firms simply did not have the infrastructure or devices to accommodate this sudden technological shift. Security professionals were faced with impossible decisions, which meant they had to choose between the security of data and the longevity of the business itself.
Amongst the internal challenges of implementing a company-wide remote working strategy, securing business critical data and ensuring staff can access the necessary resources, cyber-attacks were growing daily. With the weight of the entire business already on their shoulders, these attacks had become the proverbial icing on the cake for security professionals. However, with more users accessing corporate systems on insecure devices and networks, the attack surface had grown exponentially and security teams were too stretched to eliminate the risk exposures.
Whilst security teams were playing catch up, cyber-criminals quickly adapted their tactics to suit the changing attack surface. As the pandemic developed over the course of 2020, phishing emails changed to fit the current concerns of the public. For example, back in March they focused on fake Covid-19 information, which then changed to supposed ‘Covid cures’ and more recently scams which invite victims to receive their vaccine. By preying on public fear, scammers hope to lure people into ‘clicking’ on malicious links, disclosing passwords or entering financial details.
Alongside the unprecedented increase in phishing scams, an 80% rise in ransomware and a staggering 800% increase in web application attacks in the first quarter, there was a whole host of high-profile breaches in 2020, these include: Marriot, Nintendo, Solarwinds, EasyJet, Claire’s, The Ritz, Google, Virgin Media and Zoom. Although these breaches all involve large corporations, this is not to say the SMB market are not a target for cyber-attacks- they simply do not make the headlines.
What Cyber Security trends will we see in 2021?
We are now one year into the global pandemic, and it has become clear how Cyber Security is likely to change in 2021. Now that the dust has well and truly settled after the shock of lockdown 1.0, it is clear that remote working is here to stay. In 2021, businesses will begin to rethink their strategies, adapt to the changing threat landscape and continue on their journey of digital transformation. Read on to find out more about the key Cyber Security trends of this new decade.
- Developing more secure applications: For the most part, app developers and app security teams operate as separate entities. Usually, developers create an application and the security teams test the code upon completion. However, this often results in security teams picking apart the weaknesses in the code. Moving forward, it is likely that the two teams will work more collaboratively as they need to be singing from the same hymn sheet. By integrating security measures at the development stage, developers will build stronger applications from the outset. This will help to reduce the risk of compromise caused by application vulnerabilities.
What are your Cyber Security plans for 2021?
Last year, as businesses faced sudden and transformative network changes, combatting advanced threats became a mammoth challenge. To accommodate this new network model in 2021, we must reflect, consolidate and strengthen our security strategies. Unfortunately, cyber-attacks are only set to increase and become more advanced in the coming year. In order to stay ahead of the curve, security strategies should not be static, businesses must continue to innovate and evaluate their approach to securing critical data. Here at Equilibrium, we help our customers achieve complex Cyber Security initiatives. If you are looking to continue your journey of Cyber Security digital transformation in 2021, our cyber experts are well placed to offer specialist guidance and support. If you would like to get in touch, please use our contact details below.