The holiday season, from Thanksgiving to New Year’s, is a prime time for cyberattacks. Cybercriminals exploit increased workloads, reduced staffing, and heightened stress, with government reports confirming a surge in threats during this period. This article highlights how organizations can prepare for these risks.
The Consequences of Failing to Prepare
In 2023, website attacks soared from 15 million in early November to 60 million on Black Friday. Over half of retailers face higher risks during the holiday shopping season. A ransomware attack on Stop & Shop and Hannaford grocery stores before Thanksgiving left shelves empty, showcasing the consequences of seasonal cyberattacks.
Why Threats Increase During the Holidays
Holiday business activity spikes during November and December, accounting for up to 34% of total retail sales in some sectors. While retail and e-commerce platforms are primary targets, logistics, finance, and even healthcare also face increased risks. Reduced IT staffing, heavy traffic, and employee stress create ideal conditions for attackers.
The Most Common Holiday Threats
- Ransomware: Attackers encrypt files and demand ransom, knowing businesses are more likely to pay during critical periods.
- Phishing: High volumes of holiday shopping and promotional emails make phishing attempts more effective.
- Social Engineering: Attackers exploit emotional vulnerability during the holidays to manipulate victims.
Preparing for the Holiday Crunch
Organizations must strengthen security measures, educate users, and plan for reduced staffing.
Cover the Basics
- Patching: Ensure security patches are up-to-date.
- User Authentication: Address compromised passwords and implement multifactor authentication (MFA).
- Least Privilege: Limit user access to essential functions using modern privileged access management (PAM).
- Automated Monitoring: Use tools to detect and respond to abnormal activity quickly, for example, Netwrix Auditor.
- Incident Response Plan (IRP): Rehearse IRP and consider third-party support for emergencies.
- Backups: Store backups securely and test recovery processes.
Educate Users
Train employees to identify phishing and social engineering threats. Tailor guidance to specific departmental risks and promote awareness campaigns during the holiday season.
Plan for Reduced Staffing
Evaluate staffing needs, cover critical expertise, and establish backup plans. Clear communication channels are essential for rapid coordination and minimizing delays during incidents. Have external investigators on standby for immediate support.
Conclusion
By proactively addressing risks, organizations can minimize holiday cyberthreats, protect critical systems, and maintain operations during this high-risk period.
