• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar

Red Sift Blog

Red Sift Blog
  • redsift.com
  • Featured
  • Who are we?
  • Get in touch
You are here: Home / Cybersecurity / Covid-19 phishing: 5 steps to protect your workforce

Covid-19 phishing: 5 steps to protect your workforce

by Hope Chauland
April 9, 2020August 24, 2022Filed under:
  • Coronavirus
  • Cybersecurity

Covid-19 phishing attacks have risen by 400%*.

Whilst public authorities have taken decisive action to respond to the emerging health threat, the business community is having to reconsider the adequacy of measures in place to protect their workforce, systems, and services. A big part of this is organizations now working remotely in order to prevent the spread of this new virus and we’re seeing Covid-19 phishing attacks increase at the same time.

What are the security challenges?

Cybercriminals are taking advantage by impersonating health and government organizations such as The Center for Disease Control and The World Health Organization in malicious email campaigns. These are designed to invoke fear and trigger a reactive response from the person receiving the email. This knee-jerk response will involve an action that gives a cybercriminal access to sensitive information, money or even systems access for ransom. This is why securing business communications is essential to ensure your newly remote workforce remain safe.

5 steps to help secure a remote workforce

Here are our top 5 security tips to help IT teams securely and proactively address business continuity during the transition to remote working:

1 – Block fake emails sent from your domain 

With DMARC (Domain-based Message Authentication, Reporting and Conformance) properly configured for your domain, you can block cybercriminals from impersonating your organization with Covid-19 updates. These may include Covid-19 instructions, or business advice sent to unsuspecting employees, suppliers and partners. With tools like OnDMARC you can simply follow step-by-step instructions to configure DMARC and block this type of domain fraud. Already started your search for a DMARC provider?

You can find our eBook guide on how to find your perfect DMARC provider in our site’s resource center.

2 – Increase awareness of Covid-19 scams or install software to do it for you

Work to increase awareness amongst your remote workforce around new inbound email fraud and exercise caution in handling any email with Covid-19 content. Alternatively, you can install software like OnINBOX’s intelligent email threat detection, which will automatically scan for these threats and point them out at the top of every email for your colleagues wherever they’re working from.

3 – Shine a light on Shadow IT as distributed employees use new services

As employees work from home, some for the first time, shadow IT will also creep in… OnDMARC will give IT teams up-to-date knowledge about new services being used, such as marketing signing up for a new automation service. OnDMARC automatically surfaces new sending services in your home dashboard so that you can sleep easy!

Learn more about Shadow IT in our blog here.

4 – Control access to your corporate systems

A Virtual Private Network (also known as a VPN) is a mechanism for securely connecting devices or networks together, even if geographically separated. Hence why at this time during the Covid-19 outbreak, they are popular for enabling remote working from end-user devices (EUDs). This NCSC guide to Virtual Private Networks provides risk owners and IT administrators considering this mechanism with more advice.

5 – Last but not least, set up multi-factor authentication for online services

By ensuring your remote workers have multi-factor authentication (MFA) in place, you’re mitigating the risk of password theft. MFA (multi-factor authentication) can also be called two-step verification or two-factor authentication (2FA) – take your pick! For advice on implementing multi-factor authentication to protect against password guessing and theft online check out this article by the NCSC here.

To learn more about how Red Sift can help you protect your remote workforce from Covid-19 phishing attacks, check out our home page.

Red Sift find out more

Sources

* A March 2020 snapshot of Covid-19-themed phishing attacks as reported by a well-known cybercrime consortium.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)

Related

Tagged:
  • Phishing
  • remote workforce
  • shadow it

Post navigation

Previous Post Featured: Information Age – How your business can succeed in a digital transformation project
Next Post OnINBOX takes on social engineering attacks

Primary Sidebar

Subscribe to our blog and be the first to get updates!

Categories

  • AI
  • BEC
  • BIMI
  • Brand Protection
  • Coronavirus
  • Cybersecurity
  • Deliverability
  • DMARC
  • DORA
  • Email
  • Finance
  • Labs
  • News
  • OnINBOX
  • Partner Program
  • Red Sift Tools
  • Work at Red Sift
  • February 2023
  • January 2023
  • December 2022
  • November 2022
  • October 2022
  • September 2022
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • May 2018
  • April 2018
  • March 2018
  • February 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • September 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • October 2016

Copyright © 2023 · Milan Pro on Genesis Framework · WordPress · Log in