Wednesday, September 22
09:46 AM

Home networks, remote working software continue to be under threat: Report

27 Dec 2020

Trend Micro Incorporated, a leader in cloud security, has predicted that Oman’s home networks, remote working software and cloud systems will be at the centre of a new wave of attacks in 2021.

Trend Micro’s predictions report, ‘Turning the Tide’ (https://bit.ly/3nT8LMb), forecasts that cybercriminals in 2021 will particularly look to home networks as a critical launch pad to compromising corporate IT and IoT networks.

“As Oman begins to enter a post-pandemic world, the trend for remote and hybrid working is likely going to continue for many organisations,” said Assad Arabi, managing director – Gulf Cluster, Trend Micro. 

“In 2021, we predict that cybercriminals will launch more aggressive attacks to target corporate data and networks in Oman.”

Showing the breadth of cyberattacks, during the first half of 2020, Oman experienced a combined 2,599,031 email, URL, and malware cyber-threats detected by Trend Micro, according to Trend Micro’s Midyear Security Report.

“In 2021, Oman’s security teams will need to double down on user training, extended detection and response and adaptive access controls,” added Arabi. 

“This past year, many of Oman’s organisations were focused on surviving; now it’s time for Oman’s organisations to thrive, with comprehensive cloud security as their foundation.”

The report warns that end users who regularly access sensitive data (e g HR professionals accessing employee data, sales managers working with sensitive customer information, or senior executives managing confidential company numbers) will be at greatest risk. Attacks will likely exploit known vulnerabilities in online collaboration and productivity software soon after they are disclosed, rather than zero-days. Access-as-a-service business models of cybercrime will grow, targeting the home networks of high-value employees, corporate IT and IoT networks. IT security teams will need to overhaul work from home policies and protections to tackle the complexity of hybrid environments – where work and personal data commingle in a single machine. Zero-trust approaches will increasingly be favoured to empower and secure distributed workforces.

As third-party integrations reign, Trend Micro also warned that exposed APIs will become a new preferred attack vector for cybercriminals, providing access to sensitive customer data, source code and back-end services. Cloud systems are another area in which threats will continue to persist in 2021, from unwitting users, misconfigurations, and attackers attempting to take over cloud servers to deploy malicious container images.

Steps to mitigate threats in 2021:

Foster user education and training to extend corporate security best practices to the home, including advice against the use of personal devices

Maintain strict access controls for both corporate networks and the home office, including zero trust

Double down on best practice security and patch management programmes

Augment threat detection with security expertise to protect cloud workloads, emails, endpoints, networks, and servers round-the-clock

© 2021 Apex Press and Publishing. All Rights Reserved.