Survey: Nearly Two-Thirds of Orgs Have Experienced COVID-19 Related Attacks

This new world is putting a strain on organizations’ digital security defenses. First, malicious actors are increasingly leveraging coronavirus 2019 (COVID-19) as a theme to target organizations and to prey upon the fears of their employees. Our weekly COVID-19 scam roundups have made this reality clear. Second, organizations are working to mitigate the risks associated with suddenly having a large remote workforce. Lamar Bailey, director of security research and development for Tripwire, elaborated on some of these risks in a recent blog post for the State of Security:

We are seeing an unprecedented number of remote users on home and public internet services accessing their employer and school resources. This opens up these organizations to more risk from all of the remote users. IT departments are monitoring network bandwidth, VPNs, and access controls to make sure employees can still do their jobs. It is putting a strain on the organization infrastructure and the various internet providers.

The question is: how are organizations dealing with these challenges? And do they feel that their organizations are just as secure as they were before the outbreak of COVID-19? To answer this question, Tripwire decided to commission Dimensional Research to survey 345 IT security professionals in April. Their responses helped to provide insights into how organizations are addressing the digital security effects of COVID-19.

The Rise of Coronavirus-Related Attacks

Given all of the types of scams we’ve featured in our weekly scam roundups, it’s no wonder that organizations have seen their fair share of coronavirus-themed digital attacks. Indeed, 63% of survey respondents indicated to Dimensional Research that their organizations had suffered COVID-19 related ransomware, phishing and/or social engineering attacks. (Overall, 61% of IT security pros said that those attempts had been unsuccessful, yet 2% revealed that their organizations had suffered a breach.) Acknowledging this surge in attacks, it’s no wonder that 94% of survey respondents said that they’re more concerned about their organization’s digital security now than they were before COVID-19.

Securing the Remote Workforce

The security of employees’ home networks in the wake of COVID-19 was also a top concern for 55% of respondents. This worry was followed closely by concerns over keeping remote employees’ computers securely configured and compliant at 41% and 38%, respectively. A ranking of IT security professionals’ concerns amid the COVID-19 outbreak (Source: Tripwire) A majority (83%) of survey participants told Tripwire that their organizations had experienced a significant increase in the number of employees working from home as a result of the COVID-19 outbreak. Even more than that (89%) said that this transition to remote work had made their jobs difficult. Tim Erlin, VP of product management and strategy at Tripwire, felt that this perspective was understandable:

"The massive shift to working remotely represents a huge change for organizations’ attack surfaces. It’s no surprise that security professionals are finding it challenging to monitor and minimize that new attack surface."

Overall, survey participants gave several reasons for why their organization’s transition to a remote workforce had complicated their jobs:

• Almost half (49%) of survey participants indicated that it’s harder to secure employees’ home office environments. That’s just slightly higher than the ratio of IT security professionals (48%) who believe employees were more susceptible to digital attack attempts when working from home.
• More than two-fifths (41%) of respondents asserted that it is more challenging to manage what devices are connecting to the corporate network.
• More than a third (38%) said it is hard to get visibility of remote assets and systems. Overall, 64% of IT security professionals told Dimensional Research that security visibility had become more challenging following the transition of their employees to remote work. An additional 78% of individuals went on to disclose a lack of visibility over crucial data types including system update statuses on user endpoints, vulnerability assessments and remote access infrastructure.

With these perspectives, it makes sense that a majority (65%) of survey participants to conclude that their organization’s digital security was at least temporarily worse off because of COVID-19.

The Way Forward for Organizations

Among all of the challenges discussed above, a lack of visibility might be one of the greatest issues facing IT security professionals today. It’s imperative that security teams know their attack surface so that they can come up with processes for effectively minimizing it and monitoring for threats. But now that the work is happening outside corporate networks and devices, organizations are trying to come up with ways to track threats in new ways. This is an evolving process. As organizations look to get the most value of their tools, they’re turning to their providers to help them understand how they can address specific issues with what solutions they already have. These challenges are constantly changing, so much so that the real security repercussions of COVID-19 have yet to be realized. That’s why improved tooling and training will likely be cornerstones of the post-coronavirus world. Erlin isn’t surprised by this forecast:

"We’ve had unprecedented growth in the cybersecurity market in recent years, but many of the most innovative technologies are most relevant in advanced use cases. It’s understandable that as companies tighten their economic belts and discretionary budgets are reduced, we’ll see more organizations taking a closer look at what their existing tools can do to help secure their assets."

In the meantime, it’s important that organizations stay on top of evolving digital security challenges. You can learn more about these digital security issues resulting from COVID-19 by downloading Tripwire’s full report here.