How office networks have changed under lockdown

by Mike Campfield, VP, GM International and Global Security Programs at ExtraHop

Due to lockdowns, companies have implemented remote work arrangements leaving many offices empty for months. As organisations wait for onsite and office-based activities to resume, offices have been largely dormant, but this does not mean businesses are at all quiet.

In March, ExtraHop analysed four petabytes of data from more than 15 million devices and workloads across cloud, data centre and remote site deployments. This data provides insights into how office networks have changed under the quarantine. With remote and hybrid work arrangements becoming a vital part of business continuity strategies, these insights offer businesses valuable direction on how to handle future disruptions.

What the numbers are telling us

The most obvious insight that can be drawn from Extrahop's data is the overall decline in the use of devices, which confirms the mass migration of employees toward remote working. With computers and laptops turned off and devices disconnected from office networks, smartphone connections were down by 69%, laptop connections decreased by 64%, and the use of digital assistants was reduced by over 70%.

However, these numbers do not take into account the number of people remotely connecting to office networks through virtual private networks (VPNs) or accessing their office desktop using their home computers through virtual desktop infrastructure (VDI). Also, many companies are utilising cloud infrastructure and services, which do not require a VPN for connection.

What is perhaps more interesting is the enduring increase in the activity of other devices within the network. For example, despite shutdown of offices, voice over Internet protocol (VoIP) phone connections went down by only 7.5% and printers are down by only half a percentage point. Meanwhile, the increase in presence of Internet Protocol (IP) cameras by almost 50% is understandable. As workforces have gone home, enterprises would want to keep an eye on their offices by turning on their cameras to bolster their physical security.

While most employees have been working remotely, devices that were left on and still connected to the office network such as IP cameras, VoIP and printers stand as potential entry points for cybercriminals. According to Interpol's Cybercrime: COVID-19 Impact report, the lack of cybersecurity awareness and ‘hygiene’ among businesses and organisations is listed as one of the main challenges in Asia and South Pacific region. With the increasing number of cyberattacks amid the health crisis, defences on all fronts should be strengthened.

How enterprises should respond

Enterprises have largely shifted their security efforts to remote working. However, this should not mean that office network security can be overlooked. Instead, enterprises need to establish strong visibility over both their remote workforce and the office.

The first step is to revisit the IoT device procurement process of the business. According to IDC, despite the COVID-19 crisis, IoT adoption in Asia Pacific (APAC) will continue to grow as the region's communication infrastructure and coverage improve. The potential applications and promises of the Internet of Things (IoT) cannot be easily refused. However, the risks that IoT devices pose on enterprise security also cannot be ignored.

For enterprises to get the most of the clear benefits of IoT like IP cameras and VoIP phones, they need to seriously inspect their security pre-purchase. IT departments should always configure IoT devices before deploying them and not trust the default settings to provide proper security.

Remote working is going to be part of the future of the enterprise and the current public health crisis has only accelerated that upward trajectory. Based on a study conducted by Deloitte, up to 47.8 million people in Southeast Asia could shift to remote working over the next few years. As traditional enterprise endpoints and devices are used less, and employee-owned devices are used more, enterprises have to be smart about how they manage security and access for remote workers.

Employees working remotely need to know how to protect themselves and the enterprise while using their own devices. They need to be aware of the unique threats that they face such as phishing or insecure local networks while outside of the office and without the protection of enterprise controls.

Fundamentally, without appropriate security measures in place, IoT devices in the office can expand the cyberattack surface. Moreover, control over a remote workforce must be maintained despite limited visibility over employee-managed devices. With employees accessing the enterprise network remotely, IT teams need to recalibrate security protocols in place. Enterprises should be able to monitor odd IP addresses of connecting employees or failed login attempts which may indicate an attack attempt. For traffic inside the local network, IT teams should focus their attention on account activity and how users access sensitive data.

Many organisations were forced to adopt remote working arrangements as an emergency measure to continue operating. Given the benefits remote work has to offer to both the business and the employees, organisations may have to look at remote work as a permanent fixture moving forward. However, conditions and processes need to be improved to capture the most value out of remote work. Improving network security is the best place to start.

Comments

Post a Comment

Popular posts from this blog

Fortinet enhances FortiRecon to align with CTEM framework

Fortinet, the global cybersecurity provider driving the convergence of networking and security, has turned the FortiRecon platform into a comprehensive solution aligned with the continuous threat exposure management (CTEM) framework. The latest release introduces expanded internal attack surface monitoring, adversary-centric dark web intelligence, and security orchestration, all in a unified platform. These enhancements help organisations proactively identify and prioritise real-world exposures, validate risks like an attacker would, and accelerate response. “CISOs and security teams are overwhelmed by growing attack surfaces and an endless stream of unprioritised alerts,” said Nirav Shah, Senior VP of Products and Solutions at Fortinet. “With the latest enhancements to FortiRecon , we’re giving organisations an attacker’s eye view of their internal and external exposures, backed by AI-powered threat intelligence from FortiGuard Labs, real-world validation, and automated response...
Read more

SentinelOne recognised as a 2025 Gartner Peer Insights Customers’ Choice for XDR

SentinelOne, a global provider of AI-powered security, has been named a Customers’ Choice in the 2025 Gartner Peer Insights ‘Voice of the Customer’ for Extended Detection and Response (XDR) report* – one of only two companies with this distinction. A hundred and forty-four users reviewed SentinelOne's Singularity Platform, and 97% said they would recommend the solution to respond to threats across endpoints with AI-powered security, while 97% rated the solution four stars or better.** “With the growing complexity of cyberthreats, organisations need more than siloed security—they need AI-powered, autonomous protection that delivers real-time detection and response across their entire attack surface. Customers have made it clear that SentinelOne’s XDR provides the intelligence, automation, and efficiency they need to stay ahead of threats and secure their environments with confidence,” said Ely Kahn, VP, Product Management, SentinelOne. Gartner defines extended detection and ...
Read more

AWS: AI adoption grows 20% in Singapore

Image
Amazon Web Services (AWS), an Amazon.com company, has found* that AI adoption continues to accelerate in Singapore. In the past year alone, 27,000 1 Singapore businesses adopted AI for the first time—equivalent to over three new adopters every hour. In sum, nearly 170,000 (48%) of businesses in Singapore have adopted AI 2 , up from approximately 143,000 (40%) a year ago. This represents a 20% year-over-year growth rate, AWS said. AI adoption is the strongest in the financial services industry (71%), followed by the technology sector ( software developers, data analytics firms, cloud service providers, and digital startups) at 70%, and healthcare at 63%. Among Singapore’s businesses that have adopted AI, 82% reported an increase in revenue, at an average increase of 19%, while 90% report significant productivity improvements. A large majority (85%) of those who have adopted AI say the technology is likely to increase their growth in the next year, and 89% expect an average of 17%...
Read more