New vulnerabilities and exacerbation of old ones

[rakhirhif8963]

Since the task of mass and time-limited remote connections of personnel to ensure business continuity was set by business management, IT and information security services were forced to forget about traditional disagreements between themselves, since neither of them was able to solve the task on their own. There are known cases when businesses decisively parted ways with security specialists who showed inertia and excessive "strictness" during the pandemic.

Not all companies were able to provide employees with corporate devices for remote access, so many of them had to rely on the use of employees' personal devices when working remotely, which are often accessible to all household members. For this reason, remote work has made the task of organizing the security of employees' home computers acutely relevant, especially considering that it had to be solved in an emergency mode.

As practice shows, at best, home devices only have an antivirus colombia whatsapp data as a means of protection. For attackers, this has opened up new loopholes in corporate ICT infrastructures and cloud environments that provide services for remote work (the demand for which has increased sharply during the pandemic).

The risks associated with the use of the Remote Desktop Protocol (RDP) and terminal access in general, which have become popular, have become more acute. The number of DDoS attacks on remote access gateways has increased, and if the architecture of these gateways was designed incorrectly (for example, it included only one device without redundancy or one Internet connection channel), then even a not very strong DDoS attack could easily disrupt their functionality.