{"id":93776,"date":"2021-06-15T09:00:23","date_gmt":"2021-06-15T16:00:23","guid":{"rendered":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/?p=93776"},"modified":"2023-05-15T22:58:05","modified_gmt":"2023-05-16T05:58:05","slug":"afternoon-cyber-tea-microsofts-cybersecurity-response-to-covid-19","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2021\/06\/15\/afternoon-cyber-tea-microsofts-cybersecurity-response-to-covid-19\/","title":{"rendered":"Afternoon Cyber Tea: Microsoft\u2019s cybersecurity response to COVID-19"},"content":{"rendered":"

On February 25, 2020, Microsoft Chief Information Security Officer (CISO) Bret Arsenault was attending the RSA Conference in San Francisco when the city declared a state of emergency because of COVID-19. Shortly after flying back to Seattle, Bret learned of the first death from the coronavirus in Washington state. He and other members of Microsoft\u2019s Risk Management Council worked on the company\u2019s crisis response. To kick off National Cybersecurity Awareness Month, I spoke with\u00a0Bret Arsenault on a recent episode of Afternoon Cyber Tea with Ann Johnson<\/a>.<\/p>\n

As CISO, Bret is responsible for disaster recovery at the enterprise level. He is the chair of Microsoft\u2019s Risk Management Council and has directed Microsoft\u2019s crisis management in the wake of COVID-19. It responds to 30 crises a year, with life safety the highest priority, followed by customers and Microsoft. The council focuses on preparation for four types of disaster and crisis recovery: planned acts (such as weather storms), unplanned acts (such as natural disasters), illegal attacks, and pandemics. Cyberattacks typically fall under illegal attacks. Certain events, such as the Olympics and elections, tend to draw out opportunistic bad actors more than others because people are more vulnerable to social engineering attacks.<\/p>\n

Similarly, the pandemic and the social unrest in the United States have made people more susceptible to phishing scams and other cyberattacks. Before the pandemic, cybersecurity incidences had doubled every year for five years. During the pandemic, opportunistic campaigns, including a huge increase in human-operated ransomware attacks, have emerged because of people\u2019s social engineering vulnerability. The number of phishing scams hasn\u2019t changed much, however, the approach has shifted to mimicking health information sites and other pandemic-related schemes. Because more people are working from home, there\u2019s been a big increase in bad actor campaigns targeting desktop protocol.<\/p>\n

During our conversation, we also spoke about how to build a disaster recovery program and how moving to a Zero Trust<\/a> security model helped Microsoft respond more agilely to the new security threats created by the pandemic. Over the past year, that approach has meant making sure all devices are managed, requiring multifactor authentication, figuring out how productivity apps work in a distributed way, and moving all meetings to Microsoft Teams. Microsoft also prioritized service monitoring and user identity and access.<\/p>\n

Despite all the planning, there have been surprises, such as realizing that eight-hour all-hands meetings aren\u2019t effective when online and that moving all meetings online creates a level playing field for employees. To learn what cybersecurity steps to take when your entire workforce is remote, listen to Afternoon Cyber Tea with Ann Johnson: Working Through It: Operational Resilience in the Face of Disaster<\/em> on Apple Podcasts<\/a> or PodcastOne<\/a>.<\/p>\n

What\u2019s next<\/h2>\n

A new season of Afternoon Cyber Tea with Ann Johnson launches today featuring Admiral (RET) Mike Rogers, Former Head of United States Cyber Command, discussing the recent cyberattacks on the US supply chain and what we can do to stop them! Check out\u00a0new episodes<\/a>\u00a0every Tuesday. In this important cyber series, Ann will talk with cybersecurity influencers about trends shaping the threat landscape and explore the risk and promise of systems powered by AI, IoT, and other emerging tech.<\/p>\n

\u201cIt isn’t just about technology. Never forget the human dynamic in all this. Again, I used to say this to our nation’s leadership, “Sir, you can write the biggest check in the world and it still won’t be enough. We can’t solve this by just throwing money at the problem.” Put another way, we can have the greatest technology with the highest level of investment, but if we don’t have a smart user community, that makes smart choices, that’s part of our strategy…. It’ll be totally undermined everyday by bad choices that our users are making.\u201d \u2013 Admiral (RET) Michael Rogers,<\/em> Former Head of United States Cyber Command <\/em><\/p><\/blockquote>\n

You can listen to Afternoon Cyber Tea with Ann Johnson on:<\/h2>\n