Remote workers warned of cyberattacks after hours

As cyber threats rise, Filipino online workers are urged to stay vigilant.

As cyber threats grow more sophisticated, stronger cybersecurity measures are needed to keep the country’s online job market safe, a tech expert warned.

Speaking at the 51st Philippine Business Conference and Expo at SMX Manila last week, SonicWall Philippines solutions engineer Angelo Nomer Fontecilla said Filipino remote workers often get the short end of the stick when cyberattacks exploit network “weak points” as quickly as 48 hours after discovery.

“Some of the most heavily targeted in cyberattacks are the identities of our hybrid workforce and remote users,” he said. When their identities are exposed, cybercriminals can commit fraud, such as opening credit lines under their names or selling their data on the dark web.

According to data from the Department of Information and Communications Technology (DICT), the Philippines recorded a 62.44 percent rise in cyber incidents in 2023 compared to the previous year, with phishing and ransomware among the most common threats. 

Industry analysts say the continued expansion of remote and hybrid work setups may have increased potential exposure to these risks, as more professionals use personal devices and third-party networks to access company systems.

Cyberattacks spike during holiday season

These attacks, often triggered when users unknowingly download malware—malicious programs that corrupt files or open access to computer systems—expose online workers to financial losses and psychological distress. These breaches also drain company resources by compromising intellectual property and disrupting operations, often leading to reputational damage and legal penalties.

“We noticed that most of the threat actors or organizations attack during the critical hours of 3am to 6am when most IT employees are no longer in the office,” he said. “That means no one ‘guards the store’ anymore, so that’s when they often attack.”

Aside from this, cyberattacks spike during the holiday season when most employees are on vacation, leaving sensitive company information with insufficient protection.

Attacks through public networks

Online workers who use public Wi-Fi in cafés, hotels, and coworking spaces are prime targets during hacking sprees because they are most vulnerable to data breaches. They become prey to phishing links and risk exposing their devices to infected networks.

Cyberattackers can even create fake Wi-Fi hotspots that mimic legitimate ones to trick users into connecting. Some go further, setting up fake login screens that steal usernames and passwords before giving access to the internet.

It gets more sophisticated when “man-in-the-middle” attacks occur—when a malicious network connects to legitimate public hotspots to “spy” on and intercept the data of other users on the same signal. File sharing among online workers can be compromised and become subject to ransomware attacks.

“Ransomware still exists,” Fontecilla said, referring to software used to extort money from victims whose files were stolen, blocked, or encrypted until a sum of money is paid. “Last year, the healthcare industry in the US was affected. Patients cannot access certain healthcare services, and medical care is delayed.”

Adopting a ‘breach mindset’

“Here in the Philippines, most organizations, especially small- to medium-sized organizations, don’t have enough cybersecurity skills when it comes to their IT employees. We have what we call a cyber skill shortage,” he said.

Adding that the COVID-19 pandemic distributed the workforce, online workers are isolated in dealing with cyber threats. “Not all organizations have their own security operations center that can monitor their infrastructure 24/7. Even if it’s difficult, we should protect [online workers] because they are not within the bounds of our network security,” he said.

He urged companies to adopt a ‘breach mindset’ to safeguard employees and the sensitive data they handle. This can be done, he said, with simple yet efficient security measures.

Monitoring network behavior could flag unusual digital activities. If a remote user suddenly accesses corporate resources they don’t usually use, a breach might be imminent.

Regular patch management to keep systems updated should go hand in hand with a solid backup strategy, ensuring data recovery even after sophisticated attacks.

Most importantly, Fontecilla said, regular cybersecurity awareness training is essential.

Shared responsibility

“Cybersecurity is a shared responsibility. We need to transfer the knowledge to our users,” he said.

In today’s hyperconnected world—where even smartphones and smart TVs can be compromised—Fontecilla urged caution.

“Let’s have remote solutions to protect our remote users and online workers,” he said.

As more Filipinos turn to online work—from freelance work and virtual assistants to digital professionals—the DICT has been working with various organizations to strengthen cybersecurity awareness across sectors. The agency has launched training programs and partnerships aimed at helping individuals and businesses recognize and respond to online threats. Experts say such efforts are essential as the country’s digital workforce continues to grow.

As the Philippines deepens its shift toward digital work, experts say investing in stronger cybersecurity systems is no longer optional—it’s vital to protecting the country’s growing online workforce.

READ: