The 10 Biggest Cybersecurity Risks Businesses Face In 2021
From cloud misconfigurations and unsegmented networks to extorting ransomware victims and taking advantage of their cyberinsurance policies, here are the most significant risks organizations face.
Targeting Family Members Of Executives
A lot of the malware that used to be found on office networks has shifted to residential networks since employees are working from home during COVID-19, said BitSight Chief Technology Officer Stephen Boyer. The combination of residential networks and many employees working on personal machines during the pandemic has made things much easier for adversaries since there’s less protection in place.
The ability to defend and respond to adversaries on a home network is close to zero, which Boyer said has given threat actors free rein to go after the family members of executives. Machines in a home network tend to be trusted and not behind a firewall, meaning that an adversary can easily connect to local services and move laterally by breaching the email account of an executive’s spouse, Boyer said.
This allows the threat actor to carry out certain types of attacks that are possible to execute from within the home network but not using a remote internet connection, according to Boyer. The lack of intrusion detection on home networks has resulted in a big increase in the frequency and success of attacks, with a 450 percent jump in businesses reporting ransomware claims to cyberinsurance providers, Boyer said.