Businesses braced for Covid-themed phishing surge in new year

Nearly two-thirds (64 per cent) of business decision makers are anticipating Covid-themed phishing attacks targeting their company to increase in 2021.

A study of 200 business decision makers from Centrify, a privileged access management solution provider, found that more than half (52 per cent) of business decision makers have anticipated an increase in cyber attacks facing their organisations, as triggered by the most recent national lockdown in the UK, which ended on the 2 December.

Despite these concerns, 37 per cent of respondents admitted that they currently have no plans to train new employees on data management policies and cyber security risks specific to Covid-related disruption.

Furthermore, 37 per cent also stated that they do not have sufficient systems in place to verify employee identities and credentials when accessing company data.

Howard Greenfield, chief revenue officer at Centrify, said: “Covid-themed email, SMS and web-based phishing attacks have not been uncommon over the last year, and so far we’ve seen cyber attack campaigns using the guise of charity, government financial aid initiatives, and business support schemes already lure thousands of victims into leaking sensitive information, such as log-in credentials and payment details.

“In fact, these phishing campaigns have been so sophisticated and widespread in 2020 that business leaders can only reasonably assume that a colleague or employee has already fallen victim to one – especially if they have been working remotely this year for the first time in their career.

“Therefore, it is absolutely imperative for companies to adopt a zero trust approach enforced by least privilege access, which will only grant access to certain applications and data once a user’s identity has been verified. This will ensure that leaked log-in credentials do not necessarily translate to a breach of data.”

    Share Story:

Recent Stories