Organizations around the world are adapting to respond to the impact of the novel coronavirus (COVID-19). Companies may experience increased stress and challenges across their security programs arising from increased remote user demand, site availability impacts, stringent travel restrictions and requests for social distancing. Security organizations may also urgently need to deploy critical software and infrastructure to help support and secure a remote workforce or fulfill business priorities.

Sadly, but not unexpectedly, threat actors are attempting to take advantage of this crisis and their ability to exploit the expanded attack surface that an increased remote workforce introduces, and to exploit less-savvy workers with new phishing and malware campaigns masquerading as coronavirus news, tools and heat maps. All of these factors may result in additional pressure on already strained security teams to handle increased alert monitoring, investigations and incidents.

At IBM Security, we understand that corporations and institutions around the world count on us to help during challenging times like these. That is why we want to offer this practical advice and assistance.

Limit Your Attack Surface as Virtual Work Increases

Given recommendations for employees to work from home, virtual and digital interactions can increase an organization’s network activity and the number of connected devices on those networks. Some employees could be using personal and family-shared computers, tablets and mobile devices, increasing security risks.

With remote work, employees are frequently outside on-premises protections such as content filtering, intrusion prevention and even basic firewalls. Employees who do not traditionally work from home can be more vulnerable because of the unfamiliar work environment and are therefore more susceptible to phishing attacks and scams. Additionally, threat actors are attempting to attack organizations to disrupt, spread misinformation and capitalize on this crisis.

IBM Security X-Force is observing threat actor attempts to take advantage of this disruption to our normal work routines and work environments. To help combat these attempts, we are offering no-charge access to all COVID-19/coronavirus threat intelligence collections on the IBM X-Force Exchange. These collections share details of known threat actors and how they’re exploiting COVID-19 with recommendations to proactively protect organizations. Organizations will need their front-line security teams to be fully operational with proactive detection, response and remediation plans in place to navigate changes to the environment in order to limit the impact of a security event.

Strengthen Security Posture by Deploying Security Solutions

During this time when extra vigilance is needed, organizations may have software solutions or infrastructure that are yet to be deployed, but the need for remote access, higher bandwidth and extra security precautions calls for immediate action. Organizations can strengthen their security posture by implementing or scaling security software and infrastructure. You may need experts to help you with these pressing needs. If you are facing impacted resources, you can lean on experts to virtually extend your security operations, optimize existing solutions and maximize the value of your security solutions.

Protect Disparate Endpoints with Response Solutions

Increased remote work results in disparate endpoint security for an organization. Across all of your security vendors, there is a need to secure and protect endpoints interacting with your company data, applications and infrastructure. As we continue to publish a collection of known threat actors and how they’re exploiting COVID-19, we perceive an elevated endpoint risk resulting in the need to respond rapidly to cybersecurity incidents. A Managed Detection and Response (MDR) team can be up and running quickly to virtually supplement and support security operations center (SOC) staff in preparation for the possibility of finding your organization short-handed.

Develop Security Strategies with Virtual Consulting Solutions

During these unprecedented times, organizations may find the need for new strategies on managing risk. Our global advisory consultants can be there for you virtually and help guide you through strategy development and operational planning to meet today’s demands. From translating security intelligence to action or SOC optimization for this disruptive shifting of workforce capabilities, we are here to be your security resource through these dynamic times.

Our team of global advisors serving in more than 170 countries is ready to help solve your most complex security challenges. With experience running some of the largest security programs in the world, our thought leaders advise boards and security teams on improving alignment and execution of cybersecurity goals. Additionally, we help clients with crisis management and response in a virtual manner, which is not only achievable but crucial for these unique times.

Virtual Skills and Resources to Help You Stay More Secure

The current global pandemic has created a new set of security challenges. Whether you need to enable secure remote access for unanticipated volumes of people, establish proper strategies and staffing for your SOC, gain greater security over endpoints, verify your incident response posture or solve a wide variety of other unique security needs, IBM Security is here to help. We can help you pivot quickly and effectively with remote expertise to quickly optimize your security controls, review policies and deploy more capacity to support an increased remote workforce. We can provide 24×7 threat monitoring and response with IBM Managed Security Services to remotely help protect your organization.

Listen to the Think Digital recap on the Security Intelligence Podcast to learn more about addressing key risks business leaders face when supporting a new remote workforce environment.

Listen to the Security Highlights from IBM Think Digital 2020

More from Security Services

X-Force Threat Intelligence Index 2024 reveals stolen credentials as top risk, with AI attacks on the horizon

4 min read - Every year, IBM X-Force analysts assess the data collected across all our security disciplines to create the IBM X-Force Threat Intelligence Index, our annual report that plots changes in the cyber threat landscape to reveal trends and help clients proactively put security measures in place. Among the many noteworthy findings in the 2024 edition of the X-Force report, three major trends stand out that we’re advising security professionals and CISOs to observe: A sharp increase in abuse of valid accounts…

Ermac malware: The other side of the code

6 min read - When the Cerberus code was leaked in late 2020, IBM Trusteer researchers projected that a new Cerberus mutation was just a matter of time. Multiple actors used the leaked Cerberus code but without significant changes to the malware. However, the MalwareHunterTeam discovered a new variant of Cerberus — known as Ermac (also known as Hook) — in late September of 2022.To better understand the new version of Cerberus, we can attempt to shed light on the behind-the-scenes operations of the…

ITG05 operations leverage Israel-Hamas conflict lures to deliver Headlace malware

12 min read - As of December 2023, IBM X-Force has uncovered multiple lure documents that predominately feature the ongoing Israel-Hamas war to facilitate the delivery of the ITG05 exclusive Headlace backdoor. The newly discovered campaign is directed against targets based in at least 13 nations worldwide and leverages authentic documents created by academic, finance and diplomatic centers. ITG05’s infrastructure ensures only targets from a single specific country can receive the malware, indicating the highly targeted nature of the campaign. X-Force tracks ITG05 as…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today