Leave it to cybercriminals to take a bad situation and make it worse. In recent years, tech-savvy fraudsters have made it a “best practice” to launch their attacks during times of crisis – from natural disasters to economic downturns – purposely preying on confused, anxious or desperate people. Their latest trick is to piggyback on the uncertainty of the COVID-19 pandemic, hoping to dupe distracted victims with phishing scams, malware or ransomware attacks, stealing identities and infiltrating businesses. It’s an especially opportune moment for the bad guys, as the global quarantine and mass migration to working from home has cybersecurity resources spread thin. With individuals and companies at a heightened risk of damaging data breaches, cybersecurity professionals are working overtime to plug holes in their defenses and distinguish friends from foes. For many organizations, their best bet may be a fundamental shift in their security strategy. In short, when you don’t know who to trust, trust no one.