This past crisis demonstrated that things can change, rapidly. Enterprises rushed to move people from a centralized physical office environment to fully remote work.
A crisis is a bonanza for cybercriminals. Oversaturation of information and general panic means that people tend to let their guards are down. Cybercriminals will launch new attacks designed to capitalize on the moment:
- Phishing emails designed to look like helpful links
- Malware embedded in purported useful messages
- URLs designed to look like official information
The intent is to get access to your devices and the company’s networks.
Most employees are used to working in the castle behind a protective moat. Cybersecurity generally is a given. Working from anywhere requires more vigilance. They need to be educated on good cybersecurity hygiene as they move out of the castle.
Reiterate your company’s cybersecurity policies as part of your new remote worker onboarding process. Keep all employees (especially newly remote ones) up-to-date on any new scams (especially if they relate to a current crisis). Reiterate cybersecurity best practices for remote work.
Most of all, remember to communicate and provide a clear way for remote employees to obtain accurate information. Zscaler has a new Cyber-Security Crisis Checklist that can help you determine how to effectively and securely manage a new crop of remote workers.