Corona diary: Cybersecurity tests strongly recommended

More IT security for companies: TÜV Rheinland’s cyber security experts have developed a new method for testing IT systems easily, reliably and remotely. This is made possible by TÜV Rheinland’s new hack box, which makes it possible to do this without on-site appointments.

Many companies underestimate the danger

Especially in times like these, when many employees dial into the company network from their home office, it is important to know the weak points in the IT system in order to protect the company from hacker attacks. With the typical approach of an attacker, our specialists try to gain access to the internal systems of a company by means of the hack box. The device can then be used – without personal contact – to carry out a series of test scenarios.

What happens if unauthorized persons succeed in connecting to a company network from the outside and access data? There is a real threat behind this for every company – be it a dental practice, financial institution or energy supplier. Criminal hackers can penetrate organizations via security holes in the network, IT systems, applications or mobile devices and manipulate or steal sensitive business and customer data. In our experience, no company is too small or insignificant for a potential attack. Yet many organizations underestimate the danger.

Penetration tests reveal weaknesses

The problem: Many companies do not even know where their weak points lie. So-called penetration tests, which simulate a cyber attack from the hacker’s point of view, help here. With the knowledge gained, countermeasures can be introduced to better protect the company network and connected systems from attacks. Due to the Corona crisis, the daily work routine of many people has changed significantly and people are increasingly working from their home office. This poses technical risks for IT security, as there is no secure IT environment when working from a home laptop, for example. Hackers are exploiting the current situation to carry out extensive cyber attacks.

Specially configured mini-computer

TÜV Rheinland has developed the Hack-Box so that companies do not lose sight of their IT security in these times. This is a specially configured and protected computer. The eleven by eight centimetre small box is sent to the companies by delivery service and can be connected to the network in just a few steps without any special previous knowledge. Subsequently, our cybersecurity experts will dial in. They can now start penetration tests remotely. The results are transmitted digitally in the form of a report after the tests are completed.

Do not do without cybersecurity

Sensitive data is regularly stolen, encrypted or manipulated. Often entire systems are also paralysed. Until now, it was necessary to have experts on site to analyse IT infrastructures. With the Hack-Box it is now possible to do without trips to the companies. This allows us to carry out a precise security analysis remotely and then take the next steps to close security gaps.