Security leaders should consider if a brief update to their acceptable use policy could lower March Madness security risks, she offered. “March Madness creates a unique amount of risk to employers since it takes place during business hours when fans are generally using work-issued devices and network resources,” she told TechNewsWorld. Breeding Grounds for TroubleĪll major sporting events can create a spike in phishing scams, fake domains, and adware, admitted Jasmine Henry, field security director at cyber asset management and governance firm JupiterOne. Anomalous locations, devices, and the number of login attempts can all be signs of compromised credentials,” he said. “In addition, you need to have visibility into the context under which users are logging in to your infrastructure and access data. Use security software to detect and block phishing attacks as well as web traffic from any device to cut connections to malicious sites. Be on guard against the risk of unauthorized users gaining access to your sensitive data. He advises playing it extra safe this year with cyber intrusions at an all-time high. When it comes to phishing for credentials, a simple text or social media message can be highly effective, observed Schless. Enticing Yet Unsafe OffersĬyberattackers use events like March Madness as a way to entice their targets and get them to overlook any red flags that indicate malicious intent. “But this also introduces risk if your IT and security teams lack visibility into the context under which users access apps and data,” he said. Heavy reliance on the cloud means users can log in from anywhere, which is great for enabling productivity. Phishing has become the most popular way for attackers to gain initial access to corporate infrastructure. This is a tactic that could realistically be used here as well, he warned.
Recent reports abound of attackers using fake share links from Google Drive and Office 365 to trick enterprise users into giving up their login credentials. They easily can spoof the URL of popular sports and betting websites like ESPN, DraftKings, and FanDuel,” he told TechNewsWorld. “Threat actors view this event as low-hanging fruit for social engineering and phishing. These ruses include the promise of bigger winnings or insider information about teams, according to Hank Schless, senior manager for security solutions at endpoint-to-cloud security company Lookout.
Hackers have countless ways to entice you to engage with them. This annual event is a most-popular time for betting pools and bracket challenges - when employees often use websites, online platforms, or shared spreadsheets to organize. ET, followed by the “First Four” games March 15-16 at UD Arena in Dayton, Ohio, and concludes with the NCAA championship game April 4 at Caesars Superdome in New Orleans. The 2022 men’s’ March Madness tournament tips off with “Selection Sunday” airing on CBS March 13 at 6 p.m. If you ignore the Ps and Qs of cybersecurity this year, you might well shell out a lot more than what you bargained for. Don’t lose your shirt while betting on teams competing in the March Madness NCAA basketball tournament.
0 kommentar(er)
