Addressing the Expanding Threat Attack Surface from COVID-19

The COVID-19 pandemic has kept CISOs busy since March 2020, as they were pushed into addressing immediate threats with large workforces moving into remote working in a very short time. There was an intense spike in the number of cyberattacks such as phishing and malware exploiting the fragility and inadequacy of the infrastructure that could support remote working, as is indicated by the U.S. federal report. Not only did the attack surface expand, but several new ones also came into play as corporate IT assets extended into home networks.

Fortunately, the intensity of attacks has reduced since March. CISOs did multiple things -- recalibrated use cases, improved monitoring and cadence, redesigned the security architecture for remote access and more.

As we settle down to living with the pandemic, it is time for CISOs to think about how this will affect their organizations' security strategies in the long term. The threat landscape is not only expected to expand but will bring new challenges.

Industry-wide efforts are on to find new cybersecurity standards that companies can follow. For example, The National Institute of Standards and Technology under the U.S. Department of Commerce is working in collaboration with The National Cybersecurity Center of Excellence to provide a reference architecture that will help healthcare delivery organizations using telehealth capabilities address related security risks.

Read more at: TechTarget