Current & potential developments

Increased risks associated with lack of cybersecurity protocol and oversight emerge when employees are working remotely. The term “social distancing” inevitably leads to the risks associated with “social engineering.” Cyber threat actors are preying on the concerns associated with COVID-19 and the potential lack of secure office environments as a launching pad for cyber-attacks.

Impact

Cyber attacks can have devastating consequences and organizations must take critical steps now to prevent these attacks from occurring.

Criminals take advantage of coronavirus anxiety to defraud victims online using social engineering tactics.

Attackers take advantage of weaker security controls for remote users to initiate web-based attacks.

Key questions you should consider

  • What additional host-based security controls do you have in place for remote workers?
  • What logging and alerting thresholds are in place to detect email account takeovers or unauthorized logons?
  • Can any of the bank’s SEIM monitoring be extended to user endpoints if they are working remotely?
  • For local and hosted email, is the bank restricting the use of MAPI, IMAP or POP3 to reduce the attack surface for email? Is logging in place for all of these protocols?
  • Have you modified any of your email controls to aggressively detect and deny email phishing and attacks.

How Accume can help

Enhanced perimeter security assessment to evaluate the security controls you have in place to support remote workforce.

A review of your Email configurations and security controls to ensure that logging and alerting is in place to prevent, detect and deny unauthorized user access.

A detailed review of your security configurations to ensure that you don’t have any blind spots in your logging and alerting.