Due to social isolation, many companies and organizations (in addition to the education sector) implemented telework as an alternative to continue their activity. However, in the opinion of More than 1,200 users who participated in a survey carried out by ESET Latinoamrica, the leading company in proactive threat detection, 42% said that the company they work for was not prepared in terms of equipment and security knowledge to telework in the context current.
Reality showed that as the health problem progressed globally, malicious activity grew. Cybercriminals began to take advantage of the concern to launch various malicious campaigns using the COVID-19 theme as a pretext to cheat users, as well as the fact that many more people are working remotely or that users are spending more time previously connected to the Internet to carry out activities such as making video calls, watching and / or downloading movies, playing video games, making online purchases, or simply looking for information., says Camilo Gutierrez, Head of the Research Laboratory of ESET Latin America.
89.9% of users stated that since the period of social isolation began, they use electronic devices more frequently.
The need to work or study remotely increased the exposure to being victims of a security incident. According to data from the ESET Latin America laboratory, the increase in the distribution of malware by posing as legitimate software for videoconferencing involved Zoom, but also GoToMeeting or Microsoft Teams, among other tools. In this sense, according to survey data, more than 85% of those surveyed claimed to have downloaded applications or tools that they did not previously use to carry out their tasks. Although 54% said they had confirmed that their download was really safe, 38% said they did not verify it.
On the other hand, at least since March, ESET noticed the increase in phishing campaigns that take advantage of the COVID-19 issue as part of its social engineering. From phishing emails that try to infect various types of malware to social engineering campaigns through applications like WhatsApp that seek to steal information from users or distribute invasive advertising. As stated by the surveyed users, and44% claimed to have received phishing emails using the COVID-19 theme as a social engineering strategy.
What the new scenario raised by the pandemic revealed is that although in the corporate sphere there are those who have already adopted the necessary mechanisms to carry out this process of digital transformation and were able to adapt to the new scenario without major problems, some organizations that ignored or they postponed the decision to carry out this transition were affected by the lack of availability, integrity or confidentiality of their information, added Gutierrez. In this sense, the survey showed that 66% of the participants said they were working remotely because of COVID-19 and 51% said that the company they work for did not provide them with the necessary security tools to telework.