Remote Working Pre- and Post-COVID-19: An Analysis of New Threats and Risks to Security and Privacy

TL;DR

The paper critically analyzes the new security and privacy threats arising from the widespread shift to remote work during COVID-19, highlighting risks, organizational responses, and ethical concerns.

Contribution

It identifies emerging cyber risks and privacy issues associated with remote working during the pandemic, emphasizing the tension between security measures and privacy rights.

Findings

Increased cyber risks due to lack of training and rushed technology deployment.

Widespread adoption of surveillance tools raises privacy and ethical concerns.

Remote work environment introduces new vulnerabilities and privacy challenges.

Abstract

COVID-19 has radically changed society as we know it. To reduce the spread of the virus, millions across the globe have been forced to work remotely, often in make-shift home offices, and using a plethora of new, unfamiliar digital technologies. In this article, we critically analyse cyber security and privacy concerns arising due to remote working during the coronavirus pandemic. Through our work, we discover a series of security risks emerging because of the realities of this period. For instance, lack of remote-working security training, heightened stress and anxiety, rushed technology deployment, and the presence of untrusted individuals in a remote-working environment (e.g., in flatshares), can result in new cyber-risk. Simultaneously, we find that as organisations look to manage these and other risks posed by their remote workforces, employee's privacy (including personal information and activities) is often compromised. This is apparent in the significant adoption of remote workplace monitoring, management and surveillance technologies. Such technologies raise several privacy and ethical questions, and further highlight the tension between security and privacy going forward.