sb-au logo
Story image

A warning from Zscaler - don't drop your security baton this olympics

With the Olympics on the horizon, a strong warning has been issued for organizations by Zscaler to refocus their security efforts.

Most critically, the company claims that organizations need to keep their exposure to phishing and malware attempts in mind.

The warning from Zscaler comes in wake of the real threat that cybercrimnals pose, as users find convenient ways to keep up with the latest sporting news.

According to ThreatLabZ research, at the last games 80% of “Olympic” web domains were scams or spam – pinpointing the need for increased vigilance this time round.

Michael Sutton, CISO at Zscaler, says that streamlined security that doesn’t hinder productivity should be the singular focus for business leaders.

“Every Games, cybercriminals use spam and spoofed websites to trick users into clicking and downloading malicious files. This will be no different,” says Sutton. Zcaler says that in order to fight this threat, businesses should ensure enterprise readiness across three key areas – business productivity, cyber threat response and approved applications.

Sutton adds that in regards to business productivity, employees will find a workaround - even if all live coverage is blocked. 

“The result is an increase in absences and employees that are vulnerable to social engineering, as they seek out websites or streams related to the Games. As such, organisations adopt a proactive security stance to appropriately provision bandwidth and monitor traffic," says Sutton.  At the Vancouver Games, Zscaler unveiled cybercriminals masquerading as legitimate websites and applications that uploaded malware and stole sensitive information.

The company claims that we can expect the same at Rio, as criminals use the major international event to exploit consumer passion.

“Falling for scams, consumers not only fail to gain tickets or other goods, they also expose personal information, placing them at risk of further fraud,” comments Sutton.

“Because cybercriminals will tap into our anticipation of the Games this year, businesses need to ensure they can identify and mitigate attacks from phishing campaign to exploit kits,” he says.

“We can no longer rely solely on URL filtering or the reputation of a site."

Story image
Global attack volume down, but fraud and cyber threats still going strong
“The move to digital, for both businesses and consumers, has been significant. Yet with this change comes opportunity for exploitation. Fraudsters look for easy targets: whether government support packages, new lines of credit or media companies with fewer barriers to entry."More
Story image
Report: Rushing into cloud migration directly related to security issues
A new report from Radware highlights the impact of COVID-19 on organisations compelled to digitally transform in order to maintain business continuity. More
Link image
How a metrics-driven mindset can enable DevOps at enterprise scale
Here's how to enable dev teams to deploy higher-quality software and create reporting standards that clearly communicate software performance.More
Story image
Remote staff overestimating knowledge of cybersecurity basics
‘Unconscious incompetence’ is one of the most difficult issues to identify and solve with security awareness training.More
Story image
Emotet malware is on a rampage after months of silence
CERT agencies around the world are reporting a surge in cyber attacks related to the Emotet malware, which is being distributed by email.More
Story image
Video: 10 Minute IT Jams - The benefits of converged cloud security
Today, Techday speaks to Forcepoint senior sales engineer and solutions architect Matthew Bant, who discusses the benefits of a converged cloud security model, and the pandemic's role in complicating the security stack in organisations around the world.More