WORKING life across the country has changed beyond all recognition because of coronavirus, with logging into the office from home – previously a relatively rare occurrence – now the norm for many of us.

Remote access to business computer systems gives us a work environment that is almost 100% virtual, with face-to-face conversations, interviews and meetings with colleagues all conducted through video-calling apps such as Facetime or Zoom.

However, a leading cybersecurity expert has warned that the criminal fraternity sees such working practices as a global opportunity and has identified businesses as their prime targets.

“So now is the time for companies and organisations to redouble our efforts and make sure we do not fall prey to the growing number of social engineering and phishing attacks,” said Richard Holmes, head of cybersecurity for multinational business consultancy CGI. “Already company workers have started to see coronavirus-related phishing emails with links to fake news articles which are in fact malware.

“There are also coronavirus websites which reveal maps of the spread of the virus which are themselves a virus.

“Just this week scammers have sent out bogus emails purporting to be from groups including the World Health Organisation, preying on Covid-19 fears.”

Holmes said that while phishing and compromised websites were nothing new for the business community, in today’s world with coronavirus updates changing by the hour, people’s desire to see the latest details as they unfold made it a bigger and potentially more lucrative arena for cybercriminals.

“In a similar way, a new breed of phishing emails have emerged to lure people in, different from the ‘we’ve hacked your photos’ mail that used to be so prevalent,” Holmes said.

“The business community’s online adversaries will adapt their playbook to feed on the fears of us all.

“So, as companies and organisations get used to the new norm of the virtual office, it’s time for every worker to develop a mental checklist to run through their head.”

The advice is similar to everything we have heard before – you should check if you need to click any links contained in an email; do you recognise the website the mail is trying to redirect you to? Do you recognise the sender’s email address, or are you sure if you’re expecting an attachment?

Holmes said: “One thing which is becoming more common is the receiving of a completely clean document except for a lone link which takes you to the malware.

“The document will ask you to click on the link to an unknown Google Doc or OneDrive file.

“It’s therefore essential to remember if you don’t recognise the sender do not click on the link.”

He said that there are several online tools to enable you to check links, including VirusTotal, sitecheck.sucuri.net or virusdesk.kaspersky.com He said the mantra was no different to that from the pre-coronavirus days.

“But at the moment firms are and will continue to see an increase in Covid-19 related phishing emails or weaponised websites,” added Holmes.

“Finally, the business community needs to remember that opening on your phone rather than your laptop or PC is not an answer, phones or tablets are just as susceptible as your computer.”

Scotland in lockdown. Shops are closing and newspaper sales are falling fast. It’s no exaggeration to say that the future of The National is at stake. Please consider supporting us through this with a digital subscription from just £2 for 2 months by following this link: http://www.thenational.scot/subscribe. Thanks – and stay safe.