Upcoming Black Friday Warnings: Employees' Predictable Online Shopping Sprees
In the eight months since the shift to remote work, security organisations have been adapting to the new security landscape. Companies are relying on traditional solutions such as endpoint protection, VPNs, two-factor authentication, content filtering, unified threat management firewalls, zero trust architectures, microsegmentation, and detection to safeguard their digital assets.
However, the increased reliance on online transactions, particularly during the holiday season, has raised concerns. The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about the potential surge in cyber threats, with hackers, scammers, and thieves targeting online shoppers and charitable donors.
The shift towards e-commerce is unprecedented. According to recent statistics, nine in ten consumers plan to shop online this year, compared to 34% planning to shop in-store. Retailers have responded by offering Black Friday-like deals as early as October, reflecting economic uncertainty and expectations of conservative spending.
The surge in online shopping on company-owned devices is not unique to 2020 but has seen a 22% increase in reported vulnerabilities in the first half of the year compared to H1 2019. Thirty-eight percent of employees admit to using their work devices for shopping, which can pose a significant security risk.
To mitigate these risks, security organisations recommend the enforcement of HTTPS protocols to secure online transactions and the use of URL-blocking solutions in conjunction with content filtering to protect sensitive data. Timely and direct communications from IT and security teams are also considered important security practices.
The most successful security programs have a culture of security integrated throughout the entire enterprise. Regular reinforcement of security policies and practices, especially during busy periods like the holiday season, is crucial.
In an effort to enhance cybersecurity frameworks supporting remote work and e-commerce transaction security, several security organisations, including the German Federal Office for Information Security (BSI) in cooperation with regional security authorities, have taken measures. These include initiatives like IT baseline protection, network segmentation, and cooperative training and awareness programs.
However, explicit reference to specific measures targeting employees' work devices for e-commerce transaction security during remote work is implied primarily through these broader cybersecurity efforts rather than detailed in available sources.
It's important to note that once a threat enters a business network, every device on the network becomes vulnerable. Cyberattacks are breaking records this year, underscoring the need for vigilance and proactive measures.
Physical shopping on Black Friday is unlikely this year due to the shift towards e-commerce. The CISA encourages shoppers to only engage with trusted retailers.
Despite the challenges, many employees are engaging in low-risk activities on their work devices, such as sending emails and reading news, since March. Some companies have struggled with regularly performing security exercises during the pandemic and recession.
In conclusion, as we navigate the holiday season and the continued shift towards e-commerce, it's essential to remain vigilant, follow best practices, and stay informed about the latest cybersecurity threats and solutions.
Read also:
- Quantum Computing Market in the Automotive Sector Forecast to Expand to $6,462.13 Million by 2034
- List of 2025's Billionaire Video Game Moguls Ranked by Fortune
- VinFast Accelerates Globally, Leveraging Vingroup's Technological and Financial Foundation
- Transformation of Decarbonization Objectives in the Iron Ore Pellets Sector
