The recent pandemic was unexpected and unknown to most part of the world. It has changed our life and we are slowly adapting to our new lifestyle. The risks associated with the new lifestyle, both personal & corporate, are unknown to most of us. I have listed down here some points to think about -
If you wish to see global data, this is the best I have come across:
Sorting feature is amazing.
DO NOT: Please do not click on random link to get more information. Many of these sites are downloading malware to your mobile or laptop. The same can be said about RANDOM APPS which can be downloaded to give you information on COVID19. It locks your screen and asks for bitcoin.
A detail analysis of COVID Mobile App Ransomware can be found here along with the website names / app names - https://www.domaintools.com/…/covidlock-update-coronavirus-…B) Other types of scam -
DO NOT: If you donate, please donate at PM or CM funds or known NGO. Do not do random donation. You may walking into a trap which is collecting your Credit Card Details, Name, Expiry Month & year, CVV. With these information they can make any purchase on a foreign eCommerce site without PIN or OTP.
Care fund for PM is pmcares@sbi, while the fake one circulating on internet is pmcare@sbi (missing "s").
DO not click on every link or video or image. Do not forward them. 2 mins of fun can drain all your savings, if you are using the same mobile for mobile banking or PayTM.
C) WORK FROM HOME: Companies have till now invested mostly to strengthen their office with firewall, Backup, Patch Management, etc. Most of the MSME are not ready to face cyber security threats for remote worker. There is no firewall, employees are using their own devices which are unprotected, backup can only be on cloud, network is unprotected without full tunnel VPN, software codes can be downloaded to their machines, etc. In few cases, the employees have shifted to their native places which are so remote that they may not have uninterrupted electricity or internet during office hours (read BPO).In such cases, companies should now adopt -
What is the remote working tool that you have chosen. I have listed the security vulnerabilities in popular remote working tools.
Zoom - https://www.cvedetails.com/vulnera…/vendor_id-2159/Zoom.html
GotoMeeting - https://www.notebookcheck.net/GoToMeeting-is-found-to-be-po…
Microsoft Teams - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5922
Skype for Business - https://www.cvedetails.com/…/Microsoft-Skype-For-Business.h…
Cisco webex - https://www.cvedetails.com/…/pro…/year-2017/Cisco-Webex.html
Nasscom has published a good practice guideline, which can be found here - http://chimpzlab.tech/mailer/wfh-nasscom/
Some COVID related articles on our ISOEH website - https://www.isoeh.com/breaking-news.html
Please share with others for a SECURED Digital India !!