Since the pandemic, working from home has become much more widespread worldwide. Even once the pandemic fades, many predict that remote working will remain prevalent across multiple sectors.
While working from home is convenient and has many benefits, it also exposes both individuals and businesses to a range of cybersecurity risks. That’s why it is essential to give serious consideration to home cybersecurity. By following best practices, you can mitigate most cybersecurity work from home threats quite easily.
How to stay safe when working from home
With the rise in remote working, certain cybersecurity threats – in particular, phishing – have become more prevalent. A key issue is that, in most workplaces, an IT team will take care of cybersecurity within the office. With a distributed workforce working remotely, staff have to pay more attention to cybersecurity threats themselves. Here are the top remote working security tips to ensure you and your staff are working from home safely.
Use antivirus and internet security software at home
One of the most effective security tips for working from home is to invest in a comprehensive antivirus suite for you and your employees.
According to sources, the estimated global damage to businesses due to cybercrime is around $1.5 billion per annum. This figure is only likely to increase as hackers look to exploit people’s home internet networks and business VPNs to gain access to sensitive files.
These attacks could leave you, your business, and your employees open to ransomware attacks, DDoS attacks, malware, spyware, and other types of breaches.
Antivirus suites take the hard work off your hands by offering automatic remote work security against a host of threats, including:
- Zero-day attacks (viruses taking advantage of security flaws before they are patched)
- Malware, spyware, and viruses
- Trojans and worms
- Phishing scams, including those sent via email
Not only can a comprehensive antivirus suite, such as Kaspersky Total Security, fend off up to 100% of online security threats, but it also automatically updates itself to stay on top of new and emerging threats.
It also runs discreetly in the background of your other operations, so you won’t even notice the hard work it’s doing.
Keep family members away from work devices
While you may trust yourself and your tech-savvy employees to keep themselves safe online, it’s worth remembering that working from home means company computers are more likely to be exposed to young children and other members of employees’ families.
Therefore, it’s important to remind staff to keep their devices safe and not allow other household members to access their work laptops, mobiles, and other forms of hardware. It’s also worth reminding them of the importance of password protecting their devices to prevent third parties from accessing sensitive files.
Invest in a sliding webcam cover
Working from home usually means taking part in teleconferences and video calls which require the use of your webcam. Unfortunately, savvy hackers can easily access your webcam without permission, compromising your privacy. Worse still, if you have sensitive documents around your physical workspace, hackers may be able to view these by hijacking your webcam.
If your webcam is separate from your device, you should unplug it whenever you are not using it. If your webcam is built-in, you should take extra measures to protect yourself – there’s no telling when a webcam attack could occur.
Sliding webcam covers are easy to find online in all shapes, sizes, and colors to suit your needs. They are typically easy to install, too, as most come with an adhesive layer that fits around your webcam.
While using videoconferencing software, you may also want to use functions such as the “blur background” feature if your platform has it. This can prevent people in your conferences from spying on objects in the background of your home, which can often include sensitive data about you or your clients.
Use a VPN
Remote working often means connecting your computer to the company’s Virtual Private Network (VPN connection) – but this, in turn, creates new home office safety ‘back doors’ that hackers could potentially expose.
First and foremost, it’s essential to provide employees with work from home security tips and guidance or policies on being a secure remote worker. Companies should look for ways to make their VPN more secure.
VPN security can be enhanced by using the most robust possible authentication method. Many VPNs use a username and password, but you may want to think about upgrading to the use of smart cards. You can also enhance your encryption method for VPN access, for example, by upgrading from a Point-to-Point Tunnelling Protocol to a Layer Two Tunnelling Protocol (L2TP).
Of course, it doesn’t matter how strong your VPN is: if an employee’s password is compromised, it will give hackers an easy way in. So, it’s essential to ensure employees are updating their passwords regularly. You should also remind employees only to use the VPN when they need it, switching it off if they are on their work devices for personal use in the evenings or on weekends.
While working from home, employees will be using their home networks and internet connections. Therefore, it is a good idea to teach employees how to configure their wireless routers and personal firewalls and keep their home networks secure.
And, of course, comprehensive security and antivirus software will also cover your VPN.
Use a centralized storage solution
If your company relies on cloud or server storage, you should make sure all your employees are using this solution. If you feel your employees are not aware or familiar with your storage service, or are continuing to store files locally, communicate with them to ensure they are familiar with the centralized service. That way, if your company is compromised and local files are lost, destroyed, or compromised, you are more likely to have a back-up of necessary documentation. This method also means that important documents are safer, as they will be protected by the firewall attached to your centralized storage solution.
Secure your home Wi-Fi
One of the simplest ways to ensure cybersecurity for remote workers is to strengthen your home Wi-Fi network’s security. You can achieve this through some straightforward steps.
Create a strong, unique password, rather than relying on the automatic password your router came with. You can access your router’s settings page by typing “192.168.1.1” into your browser and change the password there. Make sure to choose a password that would be difficult for anyone to guess. You can also change your SSID, the name of your wireless network, on the same settings page to make it more difficult for third parties to identify and access your home Wi-Fi network. Do not use your name, home address, or anything that could be used to identify you.
Ensure you have enabled network encryption, which can usually be done under the security settings on your wireless configuration page. You will have several security methods to choose from, such as WEP, WPA, and WPA2. The strongest, if you are using newer hardware (more recent than 2006), is WPA2.
You can limit network access to specific MAC addresses for additional security. Every device that connects to your network has a unique MAC address (you can find the address for each device by opening Command Prompt, if you have it, and entering “ipconfig/all”). If you know the addresses of verified devices, you can add these to your wireless router’s settings so that only those devices can connect to your Wi-Fi network.
Finally, ensure you are running the latest version of your firmware by regularly visiting your router setting page. Patches and software updates often address potential security concerns.
Make sure your passwords are strong and secure
One of the simplest yet often overlooked ways to protect yourself when working from home is to strengthen your passwords and ensure that you have maximized password protection across your devices.
The US Federal Trade Commission offers this advice,
“Use passwords on all your devices and apps. Make sure the passwords are long, strong, and unique: at least 12 characters that are a mix of numbers, symbols, and capital and lower-case letters.”
They also recommend adding a password screen every time you access your laptop and other devices so that if your device is breached or falls into the wrong hands, it will be harder for a third-party to access your sensitive files. We recommend using a password manager tool to help keep all your passwords secure.
Source: Cyber Security Risks: Best Practices for Working from Home and Remotely