By Wallace Witkowski, MarketWatch
MarketWatch photo illustration/iStockphoto
As millions of workers log into work from home to avoid the spread of COVID-19, there’s the risk that they could increase the chance of exposure to another kind of virus, the kind that can lock up corporate networks.
On Wednesday, the World Health Organization declared the coronavirus that causes COVID-19 a pandemic, a move that will surely boost the number of companies asking employees to work from home. The number of companies that have made that move has grown quickly in the past week, with Alphabet Inc.’s /zigman2/quotes/205453964/composite GOOG +0.86% /zigman2/quotes/202490156/composite GOOGL +1.08% Google encouraging its 119,000 North American employees to work from home, if possible, on Tuesday.
Read: Coronavirus has prompted these tech companies to ask employees to work from home
Chenxi Wang, managing partner at Rain Capital and a former Forrester Research analyst, told MarketWatch that companies like Google are well-prepared for such contingencies as they’ve long had a culture of remote working. Other companies, especially ones that rely heavily on on-premise network security protocols, may not have it as easy.
“For a more traditional company,” Wang said, “this change is going to be difficult, because what they have done is they’ve relaxed security of devices within the perimeter, and now this device has to be taken out of the perimeter [and is] sitting in somebody’s house.”
Yaniv Balmas, head of cyber research at Check Point Software Technologies Ltd. /zigman2/quotes/200866016/composite CHKP +1.68% , told MarketWatch that cyberattackers seeking to take advantage of an influx of employees working from home for the first time would likely pivot to focusing on online services that are being used more than usual.
Services that are getting much more use include teleconferencing software like Zoom Video Communications Inc. /zigman2/quotes/211319643/composite ZM +9.74% and workplace-messaging options like Slack Technologies Inc. /zigman2/quotes/212180539/composite WORK +7.71% . While the S&P 500 index /zigman2/quotes/210599714/realtime SPX +0.48% is down 14% for the year, and the ETFMG Prime Cyber Security ETF /zigman2/quotes/207892345/composite HACK +3.18% is down 15% in that time, Zoom shares are up 66% and Slack shares are up 9%.
Don’t miss: This stock has scored the biggest boost from the coronavirus outbreak — but the company has been out of business for years
Before coronavirus panic started ramping up, Check Point in January pointed out a security flaw in Zoom that allowed intruders to eavesdrop on meetings.
“Today, since everybody is using these remote services, this attack surface becomes much more attractive,” Balmas said.
Paul Martini, chief executive of iBoss Inc., said the coronavirus-inspired work-from-home push really underscores a problem of compatibility between traditional in-house network security appliances and cloud-based mobile devices. Boston-based iBoss offers secure web gateway services, and began a partnership with FireEye Inc. /zigman2/quotes/204730283/composite FEYE +4.48% back in October to provide that company’s threat intelligence product as a service.
“The biggest problem is that these organizations have moved their applications to the cloud — meaning [Microsoft Corp.’s /zigman2/quotes/207732364/composite MSFT +1.02% ] Office 365, Dropbox /zigman2/quotes/205896836/composite DBX -0.09% , Zoom — but the problem is that the connections to those applications at a lot of these organizations sit inside of a building, so while the applications are safe while you’re in the building, what they’re missing is that these users, as soon as they leave that building, those connections are still required to access those applications,” Martini said.
Martini said iBoss allows for a network security perimeter at the device, or user, level — basically providing a face mask for employees when it comes to computer viruses.
See also: Why coronavirus and the flu actually aren’t that similar
Just as people are being urged to be more mindful in practicing respiratory hygiene for coronavirus, Check Point suggested that at-home workers be more mindful of their online hygiene. For employees, that means being more wary of clicking on suspicious links, especially those related to coronavirus, seeing that attackers are banking that fear will better prompt victims to click without thinking. Check Point said that domains related to coronavirus are 50% more likely to be malicious.