This site uses JavaScript to provide a number of functions, to use this site please enable JavaScript in your browser.

Zscaler: A Leader in the 2023 Gartner® Magic Quadrant™ for Security Service Edge (SSE)

Get the full report

gartner-mq-security-service-report

Your world, secured

Experience the transformative power of zero trust.

The Zscaler Difference

Experience the World’s Largest Security Cloud

Customer Success Stories

Analyst Recognition

Machine Learning and AI at Zscaler

Reduce Your Carbon Footprint

Zero Trust Fundamentals

What is Zero Trust?

What Is Security Service Edge (SSE)?

What Is Secure Access Service Edge (SASE)?

What Is Zero Trust Network Access (ZTNA)?

What Is Secure Web Gateway (SWG)?

What Is Cloud Access Security Broker (CASB)?

What Is Cloud Native Application Protection Platform (CNAPP)?

Zero Trust Resources

Secure Your Users

Secure Your Users

Provide users with seamless, secure, reliable access to applications and data.

Secure Your Workloads

Secure Your Workloads

Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.

Secure Your IoT and OT

Secure Your IoT and OT

Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.

Products

Transform your organization with 100% cloud native services

Secure Internet Access (ZIA)

Secure Private Access (ZPA)

Data Protection (CASB/DLP)

Digital Experience (ZDX)

Posture Control

Partner Integrations Industry and Market Solutions

Solution Areas

Propel your business with zero trust solutions that secure and connect your resources

Stop Cyberattacks

Zero Trust App Access

VPN Alternative

Accelerate M&A Integration

Optimize Digital Experiences

Zero Trust Branch Connectivity

Build and Run Secure Cloud Apps

Zero Trust Cloud Connectivity

Zero Trust for IoT/OT

Zero Trust for Private 5G

Find a product or solution

Zero Trust Exchange Platform

Learn how Zscaler delivers zero trust with a cloud native platform that is the world’s largest security cloud

Zero Trust Exchange

Transform with Zero Trust Architecture

Propel your transformation journey

Secure Digital Transformation

Network Transformation

Application Transformation

Security Transformation

Secure Your Business Goals

Achieve your business and IT initiatives

Accelerate M&A and Divestitures

Recession-Proof Your Enterprise

Secure Your Hybrid Workforce

Download Zscaler Client Connectors

Learn, connect, and get support.

Explore tools and resources to accelerate your transformation and secure your world

Amplifying the voices of real-world digital and zero trust pioneers

CXO REvolutionaries

Resource Center

Stay up to date on best practices

Resource Library

Customer Success Stories

Webinars & Demos

Events & Trainings

Find programs, certifications, and events

Upcoming Events

Zscaler Academy

Interactive Zscaler Whiteboard Workshop

Security Research & Services

Get research and insights at your fingertips

ThreatLabz Analytics

Tools

Tools designed for you

Security Preview

Security and Risk Assessment

Security Advisory Updates

Disclose a Vulnerability

Executive Insights App

Ransomware Protection ROI Calculator

Community & Support

Connect and find support

Customer Success Center

Zenith Community

CXO REvolutionaries

Zscaler Help Portal

Download Zscaler Client Connector

Industry & Market Solutions

See solutions for your industry and country

Resource Center

Stay up to date on best practices

Resource Library

Customer Success Stories

Webinars & Demos

Events & Trainings

Find programs, certifications, and events

Upcoming Events

Zscaler Academy

Interactive Zscaler Whiteboard Workshop

Security Research & Services

Get research and insights at your fingertips

ThreatLabz Analytics

Tools

Tools designed for you

Security Preview

Security and Risk Assessment

Security Advisory Updates

Disclose a Vulnerability

Executive Insights App

Ransomware Protection ROI Calculator

Community & Support

Connect and find support

Customer Success Center

Zenith Community

CXO REvolutionaries

Zscaler Help Portal

Download Zscaler Client Connector

Industry & Market Solutions

See solutions for your industry and country

Discover how it began and where it’s going

Meet our partners and explore system integrators and technology alliances

News & Announcements

Stay up to date with the latest news

Leadership Team

Meet our management team

Partner Integrations

Explore best-in-class partner integrations to help you accelerate digital transformation

Investor Relations

See news, stock information, and quarterly reports

Environmental, Social & Governance

Learn about our ESG approach

Join our mission

Find everything you need to cover Zscaler

Understand our adherence to rigorous standards

Zenith Ventures

Understand our adherence to rigorous standards

Zscaler Blog

Get the latest Zscaler blog updates in your inbox

Security Research

Three Cybersecurity Tips for a Safe and Happy Holiday

MARK BROZEK - Sr. Product Marketing Manager

December 24, 2021 - 2 min read

Security Insights

Contents

Article
More blogs

Security researchers have long marveled at one of the most pervasive and persistent threats that hits each year in late December. Dubbed “Santa Claus,” this North Pole-based adversary uses a Chimney loader to deposit a payload named “presents.exe” before erasing any cookies from the system. Santa Claus is known to target home networks with young end users, impacting hundreds of millions of victims every year.

To-date, the Santa Claus attack has not proven to be damaging. In fact, many welcome the puzzling annual intrusion as a ritual of the season. But as security professionals are all too aware, Santa Claus may not be the only adversary that they face over the holidays. Threat actors often time their attacks for when they know security teams will be taking time off and slower to detect, investigate, and respond.

We have your back. To make sure you protect yourself this holiday season, keep in mind the following best practices:

Make sure you’re current with patches, updates, and backups. The recent Log4j attack served as a very painful reminder of the need to keep up-to-date with application version updates and security patches. Attackers scan for vulnerable applications and infrastructure every day. Before you leave for any holiday break, make sure that your systems are protected from known exploits by updating them, and ensure that you have current backups of your data in case you need them.
Update your incident response plan. Your security team (and that of your security partners and vendors) may be slimmed down over the coming weeks, so you should know who is contactable, and how. Assess various attack scenarios and determine whether the holidays impact your incident response and disaster recovery playbooks.
Educate users to be cautious while on break. The holidays can mean changes in end user behavior, particularly increases in shopping and travel—both of which pose cybersecurity risks. Educate your users to be wary of seasonal-themed phishing scams. If they are traveling, ensure that they take extra care of the physical security of their devices and to use a proxy if they need to connect to public WiFi.

As always, Zscaler will be here actively monitoring and maintaining protections to help keep our customers safe. Should you need us, do not hesitate to reach out. Wishing you and your family a wonderful holiday!

For more guidance for the new year based on 2021 attack trends, see “Cybersecurity Lessons to Carry into 2022.”

Explore more Zscaler blogs

A cyber criminal shopping for malware

Agniane Stealer: Dark Web’s Crypto Threat

Business people walking through a city

The Impact of the SEC’s New Cybersecurity Policies

Digital cloud illuminated in blue

Security Advisory: Remote Code Execution Vulnerability (CVE-2023-3519)

The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region

01 / 02