How COVID-19 Is Impacting Security

By : Rena Chua | Thursday, September 24 2020 - 14:15 IWST

Rena Chua, Bug Bounty Advisor at HackerOne (Photo by Linkedin)
Rena Chua, Bug Bounty Advisor at HackerOne (Photo by Linkedin) - COVID-19 has thrown the entire world into chaos. Due to the pandemic, organisations worldwide were forced to go digital with their product offerings and services. Businesses scrambled to find new revenue streams, creating digital offerings for customers whose lifestyles had dramatically changed. Tens of millions of workers had to work remotely.

With this accelerated pace of digital transformation, CISOs had to quickly facilitate new needs — while ensuring the security of existing systems and newly-acquired collaboration tools. Security teams were pushed to the limit. They struggled to maintain existing security measures while working to close newly-opened gaps.

Challenges Faced By Global Security Teams During The Pandemic.

In a global survey to better understand how COVID-19 has impacted security, HackerOne reached out to CISOs and IT professionals to learn more about their challenges during the pandemic. The results of the survey found that 30% of global security leaders have had to switch priorities during the pandemic from application security to securing the use of work-from-home and collaboration tools.

Because of the pandemic, 64% believe their organisation is more likely to experience a data breach, and 30% have seen more attacks as a result of COVID-19. 30% of CISOs interviewed have seen their security teams reduced, and a quarter have had their budgets reduced.

In Asia Pacific (APAC), the results echo the same challenges:

56% of APAC security leaders believe they are more likely to experience a breach due to COVID-19

27% have seen more attacks on their IT systems as a result of COVID-19

32% have seen their security teams reduced and;

Almost 25% have seen their security budgets cut

The overall chaos and uncertainty has stressed even the most robust security teams. With shrinking budgets, streamlined teams, and dwindling resources, security teams are struggling to secure their assets, keep up with threats, and shift security to increase speed and agility. It does not help that 66% of all leaders surveyed felt under scrutiny to prove the business takes information security seriously.

Hackers Are Here To Help

Against a backdrop of unparalleled obstacles, security leaders have gained new-found appreciation for hacker-powered security as a nimble, scalable, and cost-effective solution. As many as 30% of global leaders surveyed have reported to be more open to accept vulnerability reports from hackers as a result of the challenges posed by COVID-19. Similar numbers were reported in APAC, with nearly 27% of security leaders surveyed agreeing.

According to HackerOne’s 4th Annual Hacker Security Report, hackers reported 28% more vulnerabilities per month during global lockdowns than immediately before the pandemic took hold. For many researchers, hacking has become a reliable source of supplemental income during COVID-19. For the community, hacking has remained a consistent and stable source of income even during the global recession.

This past year, new hackers have joined the community at an accelerated rate. Compared with January and February of 2020, as the pandemic took hold, the average number of new hacker signups on the HackerOne platform increased by 56% across April, May, and June.

Year over year, April, May, and June of 2020 saw 69% more new hacker signups than the same period in 2019. Hackers are also more prolific than ever with the monthly average number of incoming bug reports in April, May, and June of 2020 increasing by 28% over January and February, and increasing 24% over the previous year. Organisations have responded to this much-needed help by awarding 29% more bounties per month, on average, during the April-June period than during January and February.

The Power of Community

The impact of COVID-19 prompted an incredible amount of support from hackers to help relief efforts across the world. The community itself has created new initiatives, for example Marc Rogers’ CTI League, which combats hacks against medical facilities and other frontline responders, and the US Digital Response, which provides experienced technologists to help governments deliver critical services. Individual hackers even raised their hands to help healthcare providers deal with incoming threats.

The dedication and genuine care shown by this community has inspired HackerOne to create Hack for Good, a custom donation profile where hackers on the HackerOne platform can easily donate full or partial amounts of their bounties to community-selected charities that rotate each quarter. The first recipient — receiving US$30,000 from generous hackers — was The World Health Organisation (WHO) COVID-19 Solidarity Response Fund. Donations were used to support WHO and their global partners in their pandemic fight.

In Conclusion

The COVID-19 pandemic has shown us how small and interconnected our world is. Technology is fundamentally global, and yet the systems upon which we have built our digital lives can be upended in seconds. Around the world, hackers and security researchers are collaborating for the better of the internet. Security has become synonymous with hacking. The future depends on hackers and the organisations that embrace them. 

News Comment

Today's Industry

Salat Island is become a conservation area for Orangutan by the management of PT Sawit Sumbermas Sarana Tbk (SSMS). (Foto: Public Relations of PT Sawit Sumbermas Sarana Tbk)

Sabtu, 24 Juli 2021 - 12:15 WIB

Sawit Sumbermas Sarana Preparing RSPO Virtual Tour for August 2021

PT Sawit Sumbermas Sarana Tbk (SSMS), a public firm of palm oil firm listed in the Indonesia Stock Exchange (IDX), plans to hold a RSPO Virtual Tour on August 2021. It is a measure to support…

Minister of Religious Affairs Yaqut Cholil Qoumas delivers a statement in a press conference on Thursday (22/07). Photo by: YouTube channel of Presidential Secretariat.

Jumat, 23 Juli 2021 - 19:29 WIB

Indonesia Receives 8 Million More Doses of Sinovac Vaccine

Indonesia received eight million more doses of Sinovac COVID-19 vaccine in the form of bulk vaccine on Thursday (22/07).

The Opening of Technical Education and Training for Interpreting batch three held online, Thursday (22/07). (Source: Screenshot from Zoom Application)

Jumat, 23 Juli 2021 - 17:22 WIB

Cabinet Secretariat Holds Online Interpreting Training

Cabinet Secretariat, Thursday (22/07), opened the third batch of Technical Education and Training for Interpreting held virtually.

Minister of Manpower Ida Fauziyah. (Photo by: BPMI Documentation)

Jumat, 23 Juli 2021 - 16:01 WIB

Gov’t to Roll Out Wage Subsidy for Workers, Laborers This Year

In a bid to prevent layoffs due to the impact of COVID-19 pandemic, the Government has decided to continue disbursing wage subsidy for workers/laborers this year.

Ministerial Instruction Number 22 of 2021 on Level 4 Community Activity Restrictions in the islands of Java and Bali

Jumat, 23 Juli 2021 - 15:12 WIB

Home Minister Issues Instruction on Level 4 Community Activity Restrictions in Java, Bali

Minister of Home Affairs Tito Karnavian on 20 July 2021 signed Ministerial Instruction Number 22 of 2021 on Level 4 Community Activity Restrictions in the islands of Java and Bali.