As we have all been faced with challenges during the COVID-19 pandemic, the way we do business has changed dramatically, with many of us working from home. This has presented hackers with new tactics, and opportunities to cast a wider net on their attacks. IT security has always been important, and during these times that importance is even greater.
In an ideal world, most companies would have some form of plan or policy on how to securely make the transition from employees working on-site to working from home. Unfortunately, many of us made the transition with little to no time to plan. Now that the dust has settled a bit, although the future is still uncertain when and if we will go back to doing business the way we used to, it is a good time to confirm that employees working remotely are doing so as securely as possible.
Tips on working securely from home
Acceptable Use
Employees should follow the same policies and procedures as if they were working in the office.
Only use company set up email, messaging, storage, etc when doing work for the company.
Home Office
If possible, have a private area set up to work. This space should send a clear signal to you that it’s time to focus. To avoid burnout, try to stay away from your workspace when you’re not working, unless absolutely necessary.
Secure Remote Connection
Connection to the office should only be made using a secure VPN (Virtual Private Network).
Password Security
Passwords used should be unique and no less than 12 characters on all devices being used, the longer the better.
End-Point Protection and Patching
Employees using a personal computer/laptop should make sure there is up to date anti-virus software installed and the operating system is up to date with updates/patches, including 3rd party software, downloaded and installed on regular basis.
Wi-Fi Security
If using a wireless connection, make sure the connection is encrypted and the wireless password is strong.
Confirm that the login and password for the router (usually provided by the ISP, Internet Service Provider) has been changed. Most personal routers still have the default login and password which is not only weak, but also known across the Internet and easily searchable online.
User Awareness
Lock your computer/laptop screen when you walk away or are finished working.
Stay vigilant when it comes to phishing emails. Phishing emails are up 667% and according to Google 81 million phishing emails containing malware are being sent each day. Verify, Verify, verify before providing personal information or doing a financial transaction.
Notify your IT company IMMEDIATELY if you possibly clicked on or downloaded something suspicious. The quicker they can run mitigation the better.
As many of you are aware hacking is big business costing many businesses a ton of money.
Many hackers are employed just like we are. They are given quotas to meet, deadlines, and are expected to perform in order to keep their job.
Let’s make it hard for them to stay employed!
SME is here to assist in any way that we can. If you have any questions about working securely from home or any other IT/security related questions, please give us a call at 703-378-4110 or email info@smeinc.net.
Stay Safe, Healthy, and Sane!