As businesses globally accommodate to the Work From Home (WFH) model at scale amid the Covid19 outbreak, cybersecurity continues to be the biggest concern. The threat actors are actively exploiting any possible opportunity to penetrate into corporate networks through the vulnerabilities that WFH presents.
ReBIT or Reserve Bank Information Technology Pvt. Ltd., which takes care of the IT and cybersecurity requirements of Reserve Bank of India and its regulated entities, recently came up with top 10 tips for employees to follow to keep cyber threats at bay while working from home.
Here are the tips for secure WFH:
Tip 1: Secure Your Internet Connectivity
- Avoid using untrusted Wi-Fi networks.
- Ensure your Wi-Fi router is configured for secure passwords and WPA2-PSK (AES) or higher encryption.
Tip 2: Telework using VPN
- Use procedures and technology approved by the organization to connect to the corporate network for accessing email, file-shares and other services.
Tip 3: Use Secure Remote Access Services
- Avoid using unapproved software or websites which offer remote access to share desktop screens and presentations for web conference.
- Instead, raise a request with the IT and other relevant teams to help you identify and use secure alternatives.
Tip 4: Beware of Phishing Scams and Avoid Hoax Calls and Messages
- Ensure all communication from the IT team, HR and other support functions is genuine by contacting them on registered numbers\email IDs and verifying the same.
- Avoid clicking on links in unsolicited emails and be wary of attachments to prevent phishing attacks, especially if the subject or the theme of email is Coronavirus or Covid-19.
- Make sure you open attachments only from known and verified sender.
Tip 5: Keep Confidential Information Safe
- While working from home, take care of the confidentiality of valuable transactions and sensitive financial documents.
- Maintain the confidentiality of your work-related data when in presence of other persons.
- Avoid sending work related documents to your personal email address.
- Verify email address before sending any email from your system/mobile.
Tip 6: Keep Your Official Communications Private and Secure
- Make sure to participate in any call or video conference in a secure space within the confines of your home.
- When participating in web conference sessions, take care to avoid accidentally sharing your screen or turning on the webcam\microphone unless required, and if you do, remember to turn if off after the session ends.
- Ensure all web conference sessions have a password, their joining details are shared securely and lock them once all participants are present.
Tip 7: Verify Before Making Transactions
- In case of financial approvals/dispatch of payments, please cross-verify with the concerned person before you authorize any payments, especially if it involves changes to account details.
Tip 8: Stay Safe from Malware
- Ensure your system is running the updated versions of anti-virus, anti-malware and other security tools.
- To verify this you could request IT to guide you in routinely checking for updates in security tools.
Tip 9: Protect Your Computer from Damage
- Make sure your Laptop is stationed securely and take adequate care to protect it from coming in contact with liquid or food items, which may accidentally spill over if not handled carefully.
Tip 10: Find Something Suspicious? Report it
- If during your remote working, you notice something suspicious with respect to your computer behaviour, documents or online activity such as unknown changes made in applications, suspicious emails or messages, report it by raising an incident on the appropriate platform and communicating details to the relevant email IDs within the organization.
(Image Courtesy: www.entrepreneur.com)