2020 saw the onset of the Covid-19 crisis that caused human and financial disasters for every society in the world. The impact of the crisis totally changed the way in which people work, shop, and socialise with a greater emphasis on homeworking, online shopping, and social media. Unfortunately, these changes have resulted in a greater increase in cyber attacks on organisations, businesses and individuals by cyber criminals and Advanced Persistent Threat (APT) groups using Covid-19 related phishing emails and scams as the workforce becomes more distributed (NCSC, 2020).
Hospitals continue to be targeted with ransomware
Ransomware attacks have also continued to target hospitals responsible for the welfare of people suffering from covid-19. The BBC has said that US hospitals have been worst hit by ransomware attacks with demands from threat actors of $1 Million to decrypt their data. Although there is no confirmation whether the ransoms were paid it has been reported that cancer treatments were cancelled because of these attacks (BBC, 2020)
Covid-19 Vaccine has become the main focus
The development and production of vaccines have drawn the attention of threat actors. In July, National Cyber Security Centre (NCSC) in the UK stated that a group called APT29 which is widely believed to be part of the Russian Intelligence Agency had attempted to illegally obtain vaccine data. However, UK Government sources said these attacks have not been successful (Guardian, 2020). The attacks used Phishing emails targeting organisations involved in the Cold Chain Equipment Optimisation Platform (CCEOP) used to supply Covid-19 vaccines. IBM believe that a nation-state mission to understand the “cold-chain” distribution method in the transportation and distribution of vaccines began in September this year using phishing emails that included malicious code and requests for user login details were used (Corera, 2020).
What does this mean for Cyber Security going forward?
Covid-19 has undoubtedly changed the way in which we live and work. It has accelerated the inevitable move to a more distributed workforce and the demise of shopping centre shops for online purchases. These changes in such a brief time potentially have consequences if a secure approach to data sharing and distribution is not included in the rollout of services.
As we move forward with the “new normal” it is important that cyber security is a primary factor in every development and every deployment of any service, rather than an afterthought. Further, the design and ongoing support and maintenance of these services must take into account all aspects of the environment and those who use them.
