Sharp increase in cyberattacks on home office Access points and staff
According to bremenports, the port management company, there have been numerous indications of a rise in cyberattacks on home office access points over the last few weeks. bremenports attends to port cyber security on behalf of the Senator for Science and Ports.
Over the last few weeks, many companies have enabled their staff to work from home within a very short time. However, not all of the solutions have taken data security aspects fully into account. As a result, a large number of cyberattacks are now aimed at potential weak points of exactly these home office access points. The weaknesses range from insufficiently secure access, based on user names and passwords which may possibly also be used in other (leaked) online services, all the way through to obsolete or unsuitable software solutions.
Both the Federal Office for Information Security (BSI) and the Computer Emergency Response Team (CERT) North, which is responsible for the Federal Land of Bremen, have meanwhile issued warnings about a rise in the number of cyberattacks on business enterprises during the coronavirus crisis. Allianz Global Corporate & Specialty (AGCS) and the IT security company Trend Micro have also announced that cyberattacks between mid-February and mid-March were five times higher than usual.
An increasing number of phishing attacks have been registered, ranging from simple social engineering to targeted spear phishing. The BSI has also noted a renewed occurrence of dynamite phishing attacks using the emotet malware that was prevalent in 2019. It is necessary to implement both technological protective measures, in the form of mail and antiphishing filters, as well as organisational measures in order to raise the attentiveness of the employees concerned.
The BSI has now issued a Checklist for emergencies, intended especially for private use, as well as Recommendations for home office security.
Business enterprises at the ports of Bremen are welcome to contact the Port Cyber Security Officer to discuss the current challenges and consider potential solutions.