Essential checklist for a secure remote workforce
Due to COVID-19 and the safety measures put in place for employees to work from home, you may have rushed round to give your staff the correct tools to enable them to do so quickly and not impact business activity. However some essential cybersecurity steps such as VPN access and general cybersecurity training could have been missed. Here are 5 essential cybersecurity tips you need to be aware of.
- Use work computers.
It can sometimes be very tempting to check emails or make a quick edit to a presentation before bed or at the weekend. If you are doing that through a work computer, then chances are it has suitable firewalls and VPNs in place to provide a good level of security. As long as your company’s IT department or service provider have taken the correct steps. However, if you opt to use your personal device and transfer the data across, then there is a increased risk of information being leaked or accessed through malware and viruses. Be safe and keep all work-related data safe and secure on a company computer.
2. Physical Security
Often overlooked and forgotten about. Burglary is a scary thought and unfortunately thieves are still active, and it happens more than you think. Consider taking extra steps to keep your work material safe. You may have had to set up a quick office in your front room to cater for remote working, but ask yourself how visible this is to the outside world? Try to keep your work computer out of sight from passersby’s, burglars take chances and if they see an opportunity they will be tempted. If you are sharing a house of multiple occupancy, then make sure your computer and room is locked before heading out.
3. WiFi and network access
This ties in with the first point. Make sure you are connected to your company’s VPN when required. It’s an extra line of defense that’s designed to keep data safe and secure.
Chances are when your internet service provider installed your router you looked at the passcode on the back and connected your devices. However, you probably didn’t change the password and log in details used to access the routers admin portal. The standard login details are very easy to guess and if the password isn’t changed, any individual who comes into signal range can gain access and lock you out or potentially access any device on the network. If you are unsure of how to do change these details, then check your router’s handbook or contact you ISP.
4. Never use unvetted USB devices
Got a random USB stick from that event you went to a few years back? Don’t use it, you should treat all USB devices as if they have malware on them. If you need to use a USB device, then make sure you contact your IT department or your company’s IT service provider. If that USB contains any sort of malware then even just plugging it in can cause some serious issues. This also goes without saying but if you are out in public with your laptop then make sure no one plugs anything into your laptop. Although rare, hackers have been known to ask if they can charge a device through a victim’s laptop, once they are plugged in then it’s easy to install malware.
5. Phishing Emails
Phishing emails are becoming more and more sophisticated. They are one of the most common and easiest ways for the internet criminals to infiltrate your computers & network, and then steal your data, or install malicious software. Be wary of any unsolicited emails that pretend to know you. Some may be a few lines asking you to see the attached ‘file’ or ‘invoice.’ If you see more of these than normal or are experiencing pop ups then report it your IT admin straight away.
If you feel your company security is at risk or would like us the assess possible flaws in your companies’ network, then get in contact with us here or call 01707 607100.
Minerva works with you and your budget to ensure you get the best tools for the job.