More than ever before, as pandemic conditions persist, the threat of data breaches and cyberattacks continues to grow, according to SFU professor Michael Parent. (Pixabay photo)

More than ever before, as pandemic conditions persist, the threat of data breaches and cyberattacks continues to grow, according to SFU professor Michael Parent. (Pixabay photo)

SFU expert unveils 5 ways the COVID-19 pandemic has forever changed cybersecurity

Recognizing these changes is the first in a series of steps to mitigate them once the pandemic ends, and before the next: Michael Parent

  • Mar. 6, 2021 8:46 a.m.

By Michael Parent, Professor, Management Information Systems, Simon Fraser University

More than ever before, as pandemic conditions persist, the threat of data breaches and cyberattacks continues to grow.

COVID-19 has permanently changed organizational culture and behaviour. Recognizing these changes is the first in a series of steps to mitigate them once this pandemic ends, and before the next.

As we enter the second year of the pandemic and temporary measures seem more permanent, there are five ways that cybersecurity has forever been altered:

1. Working from home

What began as a temporary measure to isolate employees in order to prevent the spread of COVID-19 has morphed into a more permanent, even desirable situation for some. Employees have relocated to rural locales, implemented flexible work hours and begun to relish the absence of hours-long commutes.

For enterprises, it means that every home office, work nook or kitchen table potentially becomes a shared office space. Organizations now effectively have hundreds of satellite offices whereas before COVID-19, they may have had none.

It’s no wonder, then, that the FBI reports cybercrime has tripled since the start of the pandemic. Not only are there more targets for hackers to access, but they are also, in many cases, not nearly as defended as enterprise computing environments. Employees are also dealing with many more emails and messages, which increases the odds that they will inadvertently click on a phishing email.

Each organization is only as strong as the weakest, unprotected home router in its highly distributed network. It is difficult for IT to enforce standards, and to ensure that all devices and software are up-to-date and secure.

Working from home on the scale produced by pandemic public health measures has led to many uncontrolled, unmonitored and insecure access points, making organizations even more vulnerable.

2. Meeting virtually

Love it or hate it, the virtual meeting is here to stay. Long touted as an efficient and cost-effective way to gather, e-meetings have now come into their own out of sheer necessity. To some, it is a blessing: no more pointless, mind-numbing, low-productivity committee meetings (or if there are, multitasking is easier and there is no commute required).

For others, though, the richness of face-to-face communication is lost, as are opportunities for informal but often important conversations. It becomes more challenging to relate to one another, especially for newcomers to the organization. Zoom fatigue is real, distractions are inevitable and performance suffers. Paradoxically, employees end up spending more time meeting on a virtual platform than perhaps they ever did before. “You’re muted” has become a rallying cry!

The pandemic has led to more virtual meetings and a resulting loss in productivity, culture and communications richness. The lower the perceived value of the meeting, the more likely it is to remain online post-pandemic.

3. Keeping data private

Pre-pandemic, consumers were most concerned that their personal information would be stolen by hackers. While this concern remains, the growth in online commerce means that we are forced to share our data and create online profiles for virtually every product and service consumed; even hairdressers, if still operating, often require customers to create online accounts to book appointments and virtually sign COVID-19 waivers ahead of services.

However, consumers are more concerned about the uses of their data now and after the pandemic. There is a call from the American Bar Association, among others, for individuals to own and control their data, and to obtain credible assurances that they will only be used for the purposes agreed to, not sold without permission, and deleted, discarded and destroyed at their wish.

Data ownership has permanently changed, and government regulations need to be in place and enforceable to protect consumer information and guarantee privacy. Consumers should be confident that organizations have data destruction or erasure protocols in place to protect their privacy when they no longer wish to transact with the organization.

4. Redefining culture

Culture is often an organization’s most powerful asset. It has the power to catalyze and create long-term value (financial and otherwise) in organizations. Culture binds employees to each other and to a purpose.

Many scholars and practitioners have studied, commented on and codified corporate culture.

Culture is transmitted in a number of formal and informal ways, explicitly and tacitly: face-to-face meetings when employees chat, corporate events, orientation days and informal socializing during and after hours. Pandemic health measures have constrained this communication. Acculturation — the acquisition of and acceptance into the organization’s culture — has become even more of a challenge.

Employees may feel alienated, alone and adrift. Their organization’s culture itself may have changed. As a result, creating and sustaining a culture that promotes high performance may become challenging when rich, interpersonal interactions are constrained.

Post-pandemic, it will be challenging to recover an organization’s culture and to develop a new one that takes into account the post-COVID reality.

5. Managing and controlling transformation

Management controls are one side of a two-sided coin, the flip side being risk. Systems are designed, implemented and monitored to ensure that risks are eliminated, mitigated or accepted. Before COVID-19, businesses had developed contingency plans for a variety of risks which, ironically, even included pandemics.

Pressures to accelerate digital transformation have led to early adoption of technologies like artificial intelligence. These technologies are not without their risks, as a number of recent incidents have shown.

However, during this pandemic, we have realized that even the most extreme events became likely. As a result, principal risk integration and the newly realized goal of supply chain resilience have gone well beyond the bounds of the organization to include all elements of the supply chain and an organization’s many stakeholders.

cybersecurity

Get local stories you won't find anywhere else right to your inbox.
Sign up here

Just Posted

Nazko drummers marked the occasion by performing. Chief Leah Stump, who performed with the drummers, also smudged the clinic before the opening ceremony. (Cassidy Dankochik Photo - Quesnel Cariboo Observer)
VIDEO: Arena 2 vaccination clinic opens with drumming, singing, smudging

Quesnel’s mass vaccination clinic has begun immunizing people against COVID-19

The public is being asked to use caution when doing backyard burning in the Cariboo Fire Centre. (File photo)
Caution urged with outdoor burning says Cariboo Fire Centre

Anyone conducting burning must ensure adequate resources are on hand to stop fire from spreading

Four defibrillators will be installed around Quesnel at the Bouchie Lake, Barlow Creek and Parkland community halls and at Alex Fraser Park. (Black Press file photo)
North Cariboo Joint Committee approve defibrillators, cycling trail maintenance

The committee held a brief meeting, approving projects in the Quesnel area

There have been four COVID-19 exposures in Quesnel School District facilities. (File Photo)
Northern health detects COVID-19 case at Kersley Elementary

It’s the fourth case detected in the Quesnel School district this school year

Photo collage of loved ones lost to substance use and overdose. (Photo courtesy Moms Stop The Harm)
B.C. overdose deaths still rising 5 years after public health emergency declared

Moms Stop the Harm calls on B.C. to provide safe supply in response to deadly illicit drug use

A screenshot from a Nuu-chah-nulth healing song and performance created in collaboration between Hjalmer Wenstob and Timmy Masso. (Screenshot from YouTube)
WATCH: Tla-o-qui-aht First Nation brothers produce COVID-19 healing song

Hjalmer Wenstob and Timmy Masso share dance and inspiration.

Health Canada headquarters in Ottawa. (Sean Kilpatrick/The Canadian Press)
Health Canada releases guidelines for reducing COVID-19 transmission at home

Improve indoor air quality by opening up your windows and doors, among the encouraged ventilation measures

Flow Academy is not accepting membership applications from anybody who has received a dose of the vaccine, according to a password-protected membership application form. (Submitted image)
B.C. martial arts gym refusing patrons who have been vaccinated, wear masks

Interior Health has already issued a ticket to Flow Academy for non-compliance with public health orders

Two men walk past a sign on Main Street in downtown Vancouver, B.C., Monday, April 5, 2021. THE CANADIAN PRESS/Jonathan Hayward
Calls for government transparency in COVID data continue as B.C.’s 3rd wave wears on

Social media, where both information and misinformation can spread like wildfire, has not helped

The music video for “Green and Blue” featured a Willington Care Centre in Burnaby as well as some of the volunteers and employees. (Screenshot/Todd Richard)
‘Green and Blue’: B.C. country musician releases tribute song for front-line workers

Richard’s new single has been viewed more than 3,000 times on his YouTube channel

An unidentified B.C. man said, in a human rights complaint, that he was refused a contract job after refusing to wear a mask when asked to by an on-site manager. (Unsplash)
Religious B.C. man lodges human rights complaint after fired for refusing to wear a mask

Worker’s claim that ‘to cover up our face infringes on our God-given ability to breathe’ dismissed by B.C. Human Rights Tribunal

This 2013 Dodge Ram 1500 was stolen from Black Creek Motors at approximately 2 a.m. Sunday, April 11. Photos via blackcreekmotors.com
VIDEO: B.C. car dealer posts clip of thieves towing a truck right off his lot

Video shows one white truck towing another off Vancouver Island lot

FILE – People hold signs during a memorial march to remember victims of overdose deaths in Vancouver on Saturday, August 15, 2020. THE CANADIAN PRESS/Darryl Dyck
B.C. to request federal exemption for simple drug possession

Announcement comes on 5-year anniversary of B.C.’s first public health emergency

Most Read