Cyber ​​resilience: why it is so important in the corona pandemic

Cyber ​​resilience makes a decisive contribution to securing a reasonably regulated business in the corona pandemic. This means that digital services are available without interruption, and includes both apps and data that employees use for their work at the remote workplace need, as well as all external applications such as e-commerce websites or mobile apps. But how does the pandemic affect corporate cyber resilience and how do they deal with the challenges?

Cyber ​​resilience is a complex approach

First, it is important to understand the different aspects of cyber resilience. There is much more to it than just ensuring that important digital systems and applications are still ready for use, however important it is. It is also important to protect these services from attacks such as digital vandalism, attempted infiltration or data theft.

It also applies to the digital reputation of the company secure so that no false or harmful messages are spread via social media. The digital state of emergency of the corona pandemic has a dramatic impact on companies' room for maneuver to manage all aspects of digital resilience.

The impact of Covid-19 on cyber resilience

The drastic changes in the world of work, which most companies are currently facing, are making new demands on them operational availability of basic systems and applications. The comprehensive switch to home office strategies has triggered numerous changes in companies, such as the use of new tools for digital collaboration and video conferencing. There are also new approaches to using the cloud. And employees who work from home usually need VPN access. In some cases, hardware has to be made available for external workplaces – which in many cases is a costly and complex undertaking.

On the other hand, many providers of the currently very popular services had to reorganize quickly. In spite of enormous peaks in demand, it was important the continuity of service to guarantee. Netflix and YouTube have both reduced their streaming quality to deal with the massive increase in traffic. Even though these services are probably not part of the core business of many companies, they do demonstrate the massive shift in online use we are currently dealing with.

Strong increase in cyber attacks on companies

As far as cyber security is concerned, many companies have seen a sharp increase in the number and volume of attacks. Cyber ​​criminals are trying to capitalize on the fear and insecurity associated with the corona virus. The Link11 Security Operations Center has one in March and April 2020 Increase in DDoS attacks and large-volume DDoS attacks of over 50 Gbps registered.

Other companies saw similar developments. In addition to DDoS attacks, ransomware attacks threaten companies. Pishing emails related to Corona take advantage of people's need for current information and recommendations in dealing with the pandemic. Google says it stops every day 18 million phishing and malware attacks with corona virus reference Many users look for trustworthy sources and unfortunately are too easily guided to fake corona apps and cards.

Should a company fall victim to such an attack, the risk of potential damage to reputation increases. Bad news spreads quickly on the Internet, especially since many people work from home and often access news and social media websites.

How to ensure cyber resilience during the pandemic

Most companies' IT infrastructures are fragmented and hybrid. They consist of on-premises network components and a growing number of workloads that are hosted in private and public clouds. Holistic security Ensuring in such complex, multi-vendor environments is a huge challenge. At the administrative level, IT teams need to keep an overview.

Redirecting all traffic through an external cloud service can help. The service is checked using artificial intelligence, and malicious data packets are immediately identified and filtered out before they can affect critical services. This approach ensures fast and secure attack detection and defense. That also means that IT and security teams in the organization can no longer be held up by diversionary maneuvers such as DDoS attacks in order to start targeted infiltration attempts without being noticed.

Cyber ​​attacks on important interfaces

The attacks often target web applications and the interfaces (APIs) they use. The APIs typically have a low level of protection and monitoring. In many cases, they are the weakest link in the IT value chain and can easily become a bottleneck when deliberately flooded by manipulated data streams.

A leading credit rating agency has been the victim of such an attack. Over a million consumer data has been stolen. led. Companies should therefore understand the risks of their web applications and Rate APIs and use automated solutionsthat can dynamically adapt to new threats and block attacks before they reach the application itself. The new normal will only be temporary. But the positive effects of introducing such safeguards could last a lifetime. (sg)

Link11 Marc Wilczek

About the author: Marc Wilczek is managing director of Link11 GmbH. At the IT security provider, he is responsible for strategic business development, growth initiatives as well as marketing and sales. In addition to various management positions at Deutsche Telekom and CompuGroup Medical, he previously headed the Asian business at IT security provider Utimaco Safeware (today Sophos) as a managing director.

Also read: Cybercrime: On the move to becoming the third largest economy next year