Why security misconfiguration is higher during Covid-19

There are good reasons your IT security team may be looking a bit sleep-deprived. In addition to the stress of the Covid-19 pandemic everyone is facing, they’re also dealing with heightened risks to network firewall security, as new external assets (websites, web portals, mobile apps and more) are provisioned to enable customers and an expanding remote workforce.

First, enterprise networks have changed dramatically – and with dramatic speed. The pandemic has led organisations to urge their employees to work from home. For many businesses, that has turned the normal pattern of network connections upside down. Instead of most employees logging in securely from a wired office, most of them are logging in remotely. Up to half the workforce is now working from home.

IT teams have had to work overtime to accommodate this rapid revolution in network configuration. A survey of our customers revealed that enterprise infrastructure change is up by an astounding 300 per cent.

The pace and scope of these changes adds immeasurably to the challenges of keeping the network secure from inadvertent errors – especially given the complex hybrid networks that are the norm today. The pandemic has only added to that complexity by vastly expanding the need to access cloud services. Microsoft has reported an almost unbelievable 775 per cent increase is usage of cloud services due to the pandemic.

Finally, in the face of these rapid configuration changes – and in part because of them – security threats are increasing. Bad guys thrive on chaos, and the pandemic has created an opportunity they find irresistible. An FBI official reported that cyber-crime reports had quadrupled by mid-April compared to the months before the pandemic.

Moreover, the increase in malicious activity is not limited to just one or two types of attacks. Threats of all kinds are up:

  • The regularity of DDoS attacks and other disruption risks targeting enterprise networks is up
  • Bad bot traffic is up, along with all the threats that exploit bot networks
  • Phishing attacks are up, and Google has detected a huge increase in active phishing sites
  • Credit card skimming attacks are up, matching the increase in online shopping

We’ve created a compelling infographic that captures the specific and relevant risk data facing every networked business during this pandemic. It is a powerful summary of the challenges your IT security team is working to overcome every day. Check it out.

Of course, threats are just threats unless they are somehow able to penetrate your network firewall security – which brings us to the biggest challenge facing IT teams.

With so much change to network and cloud security group configurations in such a short time, mistakes resulting from manual change processes are inevitable. Misconfiguration errors are responsible for a staggering percentage of security breaches. Gartner reports that 99 per cent of all firewall breaches over the next several years will be caused by misconfigurations, not flaws.

What is the answer? In the short term, it’s the unsustainable approach of checking and rechecking configurations with every change, paying particular attention to the most common misconfigurations that result in data breaches.

The real solution, however, is applying a disciplined and repeatable practice by automating the process of configuration change. By minimising manual efforts and the inevitable errors they bring, IT teams can significantly reduce instances of misconfigurations that inadvertently expose vulnerabilities, leaving data – your company lifeblood – vulnerable.

Copyright Lyonsdown Limited 2020