This is confirmed by a VMware investigation, according to which, since the start of the pandemic, 88% of security professionals have detected more attempts to spear phishing.

The relationship between the coronavirus pandemic, telecommuting and the level of security is not completely balanced.

With the health crisis, companies have had to resort to technology to continue maintaining activity while their employees remained confined at home. But the increase in telework, which allows to sustain productivity, brings with it a loss of security. Especially for the accelerated implementations and the entry into play of the human factor.

According to a VMware survey on the impact of COVID-19 on cyber attacks in recent months, 91% of security professionals say that «the number of attacks has increased because there are more employees working from home ”.

92% say that companies have received malware attacks related to the situation stemming from the pandemic. And 89% also point to an increase in phishing attacks . In fact, almost the same figure, 88%, has been detecting more spear phishing attempts since the start of the crisis.

This being the case, the majority (84%) point out deficiencies in disaster planning that have to do with communication with clients and partners. There are also many (88% and 87%, respectively) those who report deficiencies in recovery planning and in information system operations. Other problems would be communication with employees and visibility of threats.

The biggest security hole detected would be inability to implement multi-factor authentication .

“The global situation experienced during the pandemic has highlighted business resilience and disaster recovery planning. Companies lagging behind in implementing multi-factor authentication face major challenges: 29% of respondents worldwide point to the inability to implement MFA as the greatest threat to resilience faced by companies today ”, details Rick McElroy, head of cybersecurity strategy at VMware Carbon Black.

McElroy warns that «security teams must work closely with business leaders to tip the balance in favor of defenders against attackers» .

«Likewise,» he adds, «we must collaborate with IT departments and work to eliminate the complexity that is weighing down the current model. By integrating security tools intrinsically into the fabric of the business — in applications, clouds, and devices — teams can significantly reduce the attack surface, increase the visibility of threats, and know the vulnerability points for security ”.