This 2021 is a year of great challenges and challenges in every way. The pandemic has captured all of our attention, but we cannot neglect many issues that concern us on a day-to-day basis, including the security of our devices. Unfortunately for cybercriminals any time is a good time to attack and therefore it is important to know what the main threats are and to follow the advice and good practices indicated by the experts. Every year technology helps fight cybercriminals, but in turn they find new tools that make it easier for them to carry out their evil deeds.
This year, for example, be very vigilant about automated spear phishing attacks, a special form of attack derived from traditional phishing. These attacks consist of highly targeted and compelling emails with specific and precise details about you, your business, or your personal life. They may have been spying on the victim for weeks or months, learning their habits and preferences, and tailoring the attack entirely. Their goal is to get you to click on a malicious link that will lead you to provide login credentials, download files that spread malware, reveal confidential information, or even transfer money. Until now, in spear phishing, hackers went through manual and slow processes but it will change in 201. From Panda Security, to WatchGuard Brand, they warn that the authors of the threats will combine automated phishing tools and programs capable of deceiving social networks and to various websites to unleash a wave of credible personalized spear phishing attacks.
While it is true that some security services, such as DNS filtering, can prevent these attacks from succeeding, to avoid being a victim of spear phishing it is essential to be alert for the warning signs. For example, keep an eye out for requests from bosses or coworkers that seem out of the ordinary and check for details that don’t add up.
Another problem that has grown in 2021 is the increase in attacks on home networks. Many more people are now telecommuting at home with less security than in offices. In this way, cybercriminals have an easier time exploiting the home network as a gateway to valuable corporate terminals. They are expected to create computer worms, a type of malicious software program whose primary function is to infect other computers while remaining active on infected systems. It self-replicates and duplicates itself to spread to non-infected computers.
The problem here is that they deliberately seek to infect company laptops with VPN connections to try to infiltrate corporate networks. To avoid this, it is important to confirm with the IT or security department that you have some type of terminal protection service installed on your home computer. Also, it should be verified that your VPN requires a health check of the endpoints before allowing connections back to headquarters.
Password manager and MFA
No matter how many times they remind us, we keep falling into the same error. Having a unique and strong password is essential to stop cybercriminals attacks. Using a password manager and multi-factor authentication (MFA) allows you to improve your security and that of your company on the Internet. Password managers, like Panda Dome Password, can help you create strong and unique passwords for each and every one of your online accounts. This ensures that attackers cannot use a compromised credential to access multiple accounts. MFA, meanwhile, is a security process that requires users to respond to a request to verify their identities before they can access network services or other applications. You can use a passkey, possession of physical objects, or geographic or network locations to confirm identity. Combining a good password manager with MFA on all your important accounts is the most effective way to prevent unauthorized access.