CYBERSECURITY IN THE MANIFESTATIONS OF RISKS DURING THE PANDEMIC PERIOD: CONDITION AND GENESIS
DOI:
https://doi.org/10.24025/2306-4412.3.2020.214774Keywords:
cybersecurity, risk, risk assessment, uncertainty, pandemic, COVID-19Abstract
The coronavirus pandemic has created an unprecedented global emergency related to risks, including cyber-risks, which threaten cybersecurity at both local and global levels. An analysis of the information carried out by the US and EU special institutions confirms that with the appearance of COVID-19 (coronavirus) as a result of a pandemic serious risky economic and political problems are expected with a high percentage of probability. Additional problems are created by the unprecedented transition to online work, when continuous activity during a pandemic occurs mainly using remote operations. Definitions of specific risks are contained in many standards of various sectors of the economy and equipment. However, there is an international standard ISO 31000, which is used for general risk assessment. To implement the risk management process in the current conditions in cybersecurity, it must be integrated with the components of risk management in particular and in general, including the exchange of information and consulting; establishing the context (environment); general risk assessment (its identification, analysis and evaluation); processing and summarizing the results of the selected type of risk; monitoring and critical analysis, as well as dealing with unforeseen threats. It is shown that in the context of a fundamental increase in teleconferences (during the pandemic), the number of cyber risks significantly increases. It is noted that risks are consistent interrelated procedures that are included in the management process and require a more planned systematic approach, given that risk assessment involves studying the state, situation (scenarios) with existing signs of danger, uncertainty and/or randomness. An effective method of its implementation is to provide a legal basis and multi-factor design or forecasting. However, in the first part, the legislative decision almost always comes late. Previously, at the stage of technical risk assessment, a risk management strategy is formed, and since it is impossible to completely avoid risks in most cases, it is important to solve the issue of admissibility (acceptability, justification) of risk, which requires further research and justification. Risk assessment used in technical systems is considered as a process of identifying information resources of the system and threats to these resources, as well as possible losses, based on an assessment of the frequency of events and the amount of damage. Risk analysis is revealed as the process of identifying risks, determining their magnitude, and identifying areas that require protection. Consequently, the COVID-19 pandemic has created and continues to create social and technical problems that are expressed in the emergence of new risks, new cyber risks. Risks become even more consistent and interconnected processes, inherently entering the management system. In this case it becomes more appropriate to make periodical checks of key premises to identify the use of technical means of hidden information retrieval and periodically conduct online seminars with security officers.References
2019 Internet Crime Report. FBI’s Internet Crime Complaint Center, 2020. [Online]. Available: https://pdf.ic3.gov/2019_IC3Report.pdf. Ac-cessed on: Oct. 18, 2020.
M. D. Vasilenko, O. B. Kozin, M. A. Kozina, and V. A. Rachuk, "Cyberrisks in the municipal economy during the pandemic: losses and the fight for cybersecurity", Komunalne hospodarstvo mist. Seriia: tekhnichni nauky ta arkhitektura: sci.-tech. coll., iss. 3 (156), pp. 80-87, Kharkiv, 2020. [in Ukrainian].
V. V. Indeeva, "To the question of the defi-nition of the "risk" notion". Sbornik zaochnykh elektronnykh konferentsiy. Moscow: Ros. akad. estestvoznaniya, 2009. [Online]. Available: http:www.rae.ru/ arj/2007/02/Indeeva.pdf
C. M. Williams, R. Chaturvedi, and K. Chakravarthy, "Cybersecurity risks in a pandemic", Journal of Medical Internet Re-search, vol. 22, no. 9, 2020. [Online]. Available: https://www.jmir.org/2020/9/ e23692/pdf
T. Weil, and S. Murugesan, "IT risk and resilience – cybersecurity response to COVID-19," in IT Professional, vol. 22, no. 3, pp. 4-10, 1 May-June 2020, doi: 10.1109/MITP.2020.2988330.
R. O. Andrade, I. Ortiz-Garcés, and M. Cazares, "Cybersecurity attacks on Smart Home during Covid-19 pandemic," in 2020 Fourth World Conf. on Smart Trends in Sys-tems, Security and Sustainability (WorldS4), London, United Kingdom, 2020, pp. 398-404, doi: 10.1109/WorldS450073.2020.9210363.
Tabrez Ahmad, Corona Virus (COVID-19) pandemic and work from home: Challenges of cybercrimes and cybersecurity, April 5, 2020. [Online]. Available: http://dx.doi.org/ 10.2139/ssrn.3568830
M. D. Vasilenko, "Law in the theory of risks: the genesis of risks from legal to informational components (institutional ap-proach)", Yurydychnyi visnyk, no. 4, pp. 43-51. Odessa: VD "Helvetika", 2019. [in Ukrainian].
B. N. Malinovsky, Academician Viktor Glushkov. Golden milestones of history and technology of Ukraine. Kyiv, Ukraine: VMURoL, 2003. [in Russian].
International standard ISO 31000. Risk management: manual. 2nd ed. Transl. ANO DPO "ISAR", 2018. [in Russian].
P. Wagenseil, "Zoom security issues: Here's everything that's gone wrong (so far)", Toms Guide, 1-3. [Online]. Available: https://www.tomsguide.com/news/zoom-security-privacy-woes. Accessed on: May 19, 2014.
K. Okereafor, and O. Adebola, "Tackling the cybersecurity impacts of the coronavirus outbreak as a challenge to internet safety", Journal Homepage, vol. 8, no. 2, 2020. [Online]. Available: http://ijmr. net. in
Group-IB: spyware prigrams lead the way in mailings that parasitize on the topic of coronavirus – Group-IB Media center. [Online] Available: https://www.group-ib.ru/media/covid-phishing-campaings/. Accessed on: Oct. 18, 2020.
Ya. D. Vishnyakov, and N. N. Radaev, General theory of risks: textbook. Moscow, Rus-sia: Academy, 2008. [in Russian].
Downloads
Published
How to Cite
Issue
Section
URN
License
Copyright (c) 2020 Валерія Миколаївна Слатвінська, Микола Дмитрович Василенко, Вячеслав Пантелеєвич Новіков, Валерій Олександрович Рачук The authors who publish in this journal agree to the following terms:The authors reserve the right to authorship of their work and give the journal the right to first publish this work under the terms of the Creative Commons Attribution License CC BY-NC, which allows other persons to freely distribute published work with a mandatory reference to authors of the original work and the first publication of the work in this journal.
Authors have the right to conclude separate additional agreements for the non-exclusive distribution of the paper in the form in which it was published by this journal (for example, posting work in electronic repository or publishing as part of a monograph), provided that the link to the first publication in this journal is maintained.
The journal policy allows and encourages authors to post on the Internet (for example, in repositories of institutions or on personal websites) the manuscript of work, both before the submission of this manuscript to the editorial staff, and during its editorial work, as it contributes to the emergence of productive scientific discussion and positively affects the efficiency and dynamics of published work citation (see The Effect of Open Access).
