Work from home is being opted by countries and companies as one of the measures to combat the current Pandemic. Employee safety is the priority of the employers during the crisis and at the same time, there are malicious actors who are trying to exploit the current situation for their benefit. Therefore, it is of utmost importance to have safety measures in place to protect us against Cyber threats.
1. Beware of Phishing Attacks masquerading as information related to Pandemic
In recent times there’s been a barrage of phishing attempts and several State sponsored campaigns have been launched to take advantage of the situation. Be cautious of any email you receive with Covid-19 related information (especially for the ones containing attachments and/or clickable links) and avoid opening suspicious emails with attachments/links with Covid-19 themed information. Phishing emails are the number one attack vector and based on latest research roughly 91% of all breaches start from a malicious email.
2. Implement Security Solutions to protect again Cyber Security Threats:
Make sure security protection is installed, updated and active on devices that will be used for work (Complete Endpoint Protection not limited to AV, Firewall and Encryption). Make sure operating system is updated with the latest patches.
Be vigilant and set up Multi Factor Authentication (MFA) wherever possible. Re-set passwords frequently and follow good password etiquettes i.e., don’t share accounts/passwords, use complex passwords for all accounts, implement strong password policy for applications, etc.
4. Acceptable use of official resources
- Use official devices only for official purpose and continue to follow the acceptable use policy guidelines.
- Use VPN solutions to securely access internal applications.
- Secure internet access of users on the office laptops with Cloud based proxy to prevent access to malicious websites.
5. Reset default Wi-Fi router passwords
Secure home routers should become a priority. You do not want your information being subjected to man in the middle, data sniffing or any other form of attack.
6. Mandatory backups
Beware of Ransomware attack due to the current rise in Cyber threats, and any hardware failures that could result in data loss in these trying times where the luxury of the IT team’s support is limited. So, it is extremely important to backup data on weekly or even daily bases to avoid complete data loss in case of an attack.