Here are some top tips for working more securely from home.
Beware of incoming scams
One of the main risks of working from home is targeted cybercrime.
Criminals see crisis as an opportunity and businesses transitioning to working from home is an attractive target.
The recent pandemic was used by cybercriminals as an opportunity to scam people. When working from home, always:
- Be vigilance when receiving phone calls, text messages and emails.
- Exercise caution when opening messages, attachments, or clicking links from unknown senders.
- If in doubt, check with your IT.
Secure your remote access
Always use a secure method to access company networks and resources, such as;
- A secure, encrypted VPN
- Splashtop or similar software (that incorporates 2FA)
Start using a security checklist
Once you’re using a secure way to work, follow these tips to work from securely from home;
☐ Check the physical environment is secure and screens are not viewable to anyone but you.
☐ Ensure company data remains on company owned computers or cloud platforms. Never copy, save or download data to personal devices.
☐ Make sure business devices or services are set to log out when devices are not being used.
☐ Ensure a secure and adequate firewall router is in place, with up to date firmware and no open ports.
☐ If wireless is used, make sure it’s configured with the latest security and uses a protected password.
☐ Public wireless should not be used to access work systems, even if the work systems are cloud hosted.
☐ Default usernames and passwords on all network devices have been changed.
☐ The firmware on all network devices is up to date.
☐ Multi-Factor Authentication has been enabled wherever possible.
☐ Strong passwords or passphrases are being used.
If personal devices are used for work we recommend applying these policies:
☐ Devices are personally owned by the employee and not public, shared or borrowed.
☐ Operating system and all installed software must be up to date, supported and appropriately licensed.
☐ Computer manufacturer firmware, BIOS and drivers are up to date.
☐ Adequate anti-virus software is up to date.
☐ Use of ‘Standard’ user accounts with complex passwords that are not shared (Administrator accounts should not be used on personal devices when working from home).
☐ Have a screen lock policy with password after a period of inactivity (5-15 minutes is great, 5 minutes ideal but not suitable for everyone).
☐ If using a VPN, implement full hard drive encryption (ideally Microsoft’s Bitlocker)
We hope these tips for working more securely from home go some way in helping to protect you and your business.
If you have any questions or would like further guidance, please contact the Fentons IT helpdesk on 01903 786287.