Since the start of the Covid-19 pandemic, office workers have had to quickly adapt the way in which they interact and work with each other. The most notable change has been the huge surge in people working from home. This mass move towards home working has not only speeded up a trend which was already emerging, but it has done so at an exponential rate. This rate of change has placed huge strains upon businesses, infrastructure, and IT security systems.

So we have vast numbers of people who may not have previously worked from home now having to do so. For what once may have been the reserve of IT and technical professionals, home-working is now the norm for at least 50% of the workforce [1]. Having so many inexperienced home-workers opens up new channels of opportunity for cyber-criminals who may seek to exploit this inexperience.

These technologically inexperienced employees are also suffering increased psychological stress as a result of wider social changes including social distancing, extra familial responsibilities, lockdown constraints and fear of the virus itself. This can render individuals even more susceptible to cyber-crimes such as phishing scams, unsolicited phone calls and emails.

Phishing scams

Phishing emails are designed to mimic correspondence from an official body or source and could include highly respected organisations such as the Inland Revenue or NHS, both of whom are playing a central role in the management of the COVID-19 pandemic. These emails tap into both the technological and psychological vulnerabilities ever-present throughout the COVID-19 pandemic.

Firstly, people are expecting correspondence from the government who have become pivotal as a support channel during these times. Secondly, people are weakened by their own financial worries and any health concerns. These factors make individuals particularly vulnerable to scams as they are operating with a heightened state of fragility and may, therefore, become naturally more trusting of others. These emails often provide a link to a fake website which may look like the reputable one, it may request that individuals divulge sensitive information such as bank details or personal contact information or even make payments online.

According to Bedfordshire Police, The National Fraud Intelligence Bureau (NFIB) reported that COVID-19 related fraud logs had increased by 400% in the month of March 2020 alone. [2]

Social media and false friendships

Social media sites can also make individuals vulnerable. Our ever-increasing reliance on technology for communication and social interaction makes us vulnerable to forming friendships which are not actually real. This technique can lull people into a false sense of security and could then lead them into divulging personal information to their new-found ‘friend’.

Keep yourself secure when working from home

  • Ensure that your wi-fi is password protected and secure. You should NOT be working on an open or insecure internet connection.
  • If you receive an email from an official body or the government, for example, do NOT click on any links within the email. Go online and check your account directly. More often than not, anything that is emailed to you will also feature in any online accounts you may have.
  • Use strong passwords that cannot be guessed by anyone else, do not include your own name or date of birth as anyone who has access to this information could guess them.
  • If you have the option to use 2 factor authentication then do so; this adds an extra layer of security and requires you to access your mobile phone and enter a security code when logging on to specific sites, they are much harder for cyber-criminals to crack.
  • If you are communicating with the office, only use your official work email to do so, as this system will have extra layers of security to protect your employer’s network from becoming infected with a virus.
  • Make sure you keep your own anti-virus software up to date and always run Windows updates, as these have new defence mechanisms built into them to prevent viruses and attacks on your computer.
  • Never allow anyone who rings you to connect to your computer. Scammers may suggest that you have a problem with your computer and request that they send you a link so that they can connect and fix it for you. Do not allow this as they could steal sensitive information such as bank login information and stored passwords on your browser. If your employer has contacted you to say that someone from IT will be connecting you, ensure that you fully verify who is calling you and for what purpose.

Above all, stay safe, stay well, and stay ahead of the cyber-criminals.

[1] https://www.telegraph.co.uk/news/2020/04/13/half-people-unable-work-home-coronavirus-lockdown-figures-suggest/

[2] https://www.bedfordshire.police.uk/news-and-appeals/corona-fraud-warning-march20