By Eric Kenney, Senior Product Marketing Manager at Citrix
With a rapid shift to remote work for so many South African companies, work styles have also shifted. One of the biggest changes has been how we meet. With an unprecedented number of employees working from home and also students learning from home (but still needing to collaborate), the use of web conferencing services has skyrocketed. In fact, South Africa’s global network connectivity was compromised as two undersea cables recently suffered outages, bogging down data speeds across the country.
Many are still figuring out best practices for web conferences, which has brought some much-needed moments of levity. While most see this transition period as a change in how we’re working, others see it as an opportunity to exploit a time of uncertainty. According to security researchers, they have already detected “malware and phishing campaigns using COVID-themed lures, attacks against organisations that carry out research and work related to COVID-19, and fraud and disinformation.”
Here are three risks presented by web conferencing:
One potential risk presented by web conferencing tools is screenshot malware. Many organisations made the decision quickly to require remote work for most, if not all, of their employees. And some did so without a comprehensive business continuity plan in place. In many cases, employees were directed to work from their personal, unmanaged devices. IT departments don’t have oversight of these devices or the risks associated with them. In some cases, devices might be infected with malware that takes periodic screenshots, which are then uploaded to a remote server only accessible by the attacker.
This creates significant risk for organisations because any information that was shared on the screen during the meeting can be exfiltrated. For those that are subject to industry regulations, like healthcare, finance, or government entities, the result can be significant financial penalties.
Accidental Screen Sharing
Additionally, many people are now using web conferencing tools for virtual get-togethers with friends and family. This also creates risk because device use for personal and business reasons gets blurred. For example, Dwight is wrapping up his work week on his BYO device by finishing a report in a virtual app that houses business-critical data. He launches a locally installed web conferencing app to join a virtual happy hour with friends, including some who work at a competitor. But, he forgets to close his business app before joining. He shares his screen with the intention of sharing personal pictures, but he accidentally shows his business app with company data, exposing it to everyone in the meeting.
Web Conferencing Portal Spoofing
Another new risk is the increase of sites spoofing popular web conferencing sites. While these sites look like the portals users are now accessing on a daily basis, they are designed to distribute malware to unsuspecting visitors. Researchers have discovered that some of these sites “will launch an InstallCore installer that will try to install potentially unwanted third-party applications or malicious payloads depending on the attackers’ end goals.”
While web filtering can block access to sites known to distribute malware, many of them are new. In fact, 1,700 new domains designed to spoof a popular web conferencing site have been registered since the beginning of 2020.
With Covid-19 causing a rapid shift to remote work, web conferencing services will continue to be adopted. Although virtual meeting solutions are often reliable, the risks presented by web conferencing are significant and organisations need to ensure the security of their corporate resources.