Remote work tripled the number of computers vulnerable to cyber attacks
In the period of self-isolation introduced in Russia in connection with the coronavirus pandemic, the number of computers running Windows operating systems that were potentially vulnerable to hacker attacks increased by 230%. Citizens work remotely on all of these computers.
The cost of the stolen account does not exceed 500 rubles.
The number of vulnerable computers has reached 101 thousand, Kommersant reports, referring to DeviceLock. Experts attribute the rapid growth to those that during the period of self-isolation, the number of servers, including those open to the Internet, increased, explains the founder of the company Ashot Hovhannisyan.
He explained that most organizations only allow remote table connections with VPN technology, and a small fraction of the server allows authorization without a password, which poses a significant risk to corporate networks. According to Aleksey Novikov, head of Positive Technologies expert center, this is also present in all popular VPN-based solutions, they can become another point of failure of the remote infrastructure. The expert notes that with increasing vulnerability, cases of actual attacks have become more frequent.
The reason for this situation was the transition of employees to remote work. The primary concern of the companies was not information security, but ensuring the availability of the office. According to Positive Technologies, remote access had to be organized from scratch or urgently scaled.
Recall that in the new draft Code of Administrative Offenses it was proposed to increase fines for the leakage of personal data from 50 thousand rubles to half a million. Companies that operate with large amounts of personal data are unhappy with the increase in fines for leaks. They believe that they are ready to provide a high level of security.
Recall that the traffic police database containing personal information about Russian car owners got into the darknet. Earlier it became known that the full database on all export-import operations of Russian companies over the past eight years has been made publicly available.