Remote and flexible working policies are increasingly popular, but put companies at huge risk when it comes to cyber security. If starting your own business, these pointers could be useful.
IF YOURE A MODERN, PROGRESSIVE COMPANY, ITS highly likely youve got some sort of flexible remote working policy. Unfortunately, with this greater freedom comes greater risk, and remote workers are often the brittle link in a businesss security chain. Employees in general, according to beleaguered IT professionals, are lackadaisical about security software, lackluster about the Wi-Fi they use, and apathetic about their physical security too; writing their passwords on Post It notes and sticking them blatantly on their laptops.
And cyber security is not something to be ignored.
Cyber-attacks are increasing exponentially, explains Lukas van der Merwe, a specialist sales executive for security at T-Systems South Africa. Working globally, T-Systems picked up a peak of four million cyber-attacks in 2017. In 2019, this number was a breath-taking 53 million. Every IT security expert interviewed for this article viewed a cyber breach as a matter of when, not if, for most companies.
Remote work is also on the rise. Says Johnny Kromer, a technology executive at Nashua Communications: We have definitely seen an increase in remote workers, almost all customer solutions today have to be installed with a different percent of mobile access.
So, how do remote workers open you up to ransomware, phishing, hacking and general cyber security lawlessness?
There are two broad divisions to be made here: digital and physical.
Remote workers make you vulnerable simply by taking their devices out of the safe online space your IT department has set up in the office, and recklessly using the free Wi-Fi available at most coffee shops. Nothing thats free is really free, as they say, and the cost of using free Wi-Fi to access your email, client information and more means you open the fence and share your online picnic blanket with a bunch of randoms who might have their eyes on your data. Since public Wi-Fi is unencrypted, its easy for hackers to target the individuals using it.
Remote workers are also at a risk of falling for email phishing scams, as generally most of their communication is done via email with their company.
Van der Merwe has helped clients recover from cleverly crafted phishing mails that made it all the way to the CFO for sign-offs on large amounts of money, authentically copying documents and even signatures from the inboxes they had access to. One client lost R1 million ($69,000) to such a scam.
There are some simple things that companies and individuals can do to reduce hacking risks a) setting up a VPN, or virtual private network, which allows workers to safely access the internet from any Wi-Fi connection; b) Ensuring workers have adequate anti-virus software. This is a bit of a pain point as many remote workers use their own devices and are reluctant to give their companies access to their computers, but this should be a non-negotiable requirement. c) Password documents that list every login are a huge no-no with most corporates not realizing that these documents are available to anyone on the internet (if saved incorrectly on the Cloud). It is recommended you rather use an online password program that is encrypted; d) 2-factor authentication for logins is one of the easiest ways to secure access, and you can set it for most online programs through their security settings (including social media like Facebook); e) Set up BYOD (bring your own device) policies with strict rules around security measures and the ability to remotely wipe a device, whether a phone or laptop.
The other risk is taken far less seriously, with most companies focusing on their digital perimeter rather than any physical one. Some physical risks include:
a) Open laptops when heading to the loo: best practice is to enable auto-locking after a certain period of inactivity; b) Over-the-shoulder hacks: dont, for example, work on vulnerable files in a public space like the Gautrain (rail service in Johannesburg) where people can peer over your shoulder;
c) Eavesdropping: ever said your ID number or password out loud in a coffee shop? Yeah, dont do that; d) Unshredded documents: you could have your identity stolen through unshredded documents this is a real risk; e) Passwords physically written down: the Post It note password on your laptop is a terrible idea.
Train staff, then train them some more! Most companies could do more security training and still be unprepared, says Jon Tullett, a senior research manager for IT services sub-Saharan Africa, at IDC South Africa. An employee who sees security as an impediment is on the side of the attacker, since theyre likely to circumvent safeguards in the name of productivity. Businesses need to make security a priority with clear policies in place, and regular training of staff. Overall, internet security is something companies should take far more seriously. Every expert interviewed was horrified at the belligerent indifference most businesses take to their vulnerabilities, and everyone viewed breaches and security scares as a certainty in the next few years. South Africa has already had its taste of this,
with government departments, newspapers and ISPs (internet service providers) alike all coming under fire in 2019 alone. As Van der Merwe says, Most people trade off convenience for security. But be one of those people at your own risk.
Vera Nagtegaal, executive head of Hippo.co.za, says that your insurance should look at the following aspects:
REPLACEMENT COST: Insure your tech items for the value of replacement and not necessarily what you paid for it.
WHATS INCLUDED IN COVER: Should you insure your laptop, enquire whether there will be cover provided for software as well, as this can be quite costly, and find out what kind of damage is covered.
CLAIMS TURN-AROUND TIME: Some providers can authorize and/or pay out a claim within two to 24 hours, others take a few days and some could take even longer.
REPLACEMENT PROVIDERS: Enquire about the service providers they use to replace your cell phone and research reviews to ensure they are reputable and have good warranties on new devices.
-by Samantha Steele
Read the original here:
REMOTE WORKING: PROGRESS AND PERILS - Forbes Africa
- Cyber security and the Internet of Things - Lexology - November 16th, 2020
- Save over $6,400 off this Complete InfoSec & Business Continuity Bundle - Neowin - November 16th, 2020
- Official Government Cybersecurity Guidance Offers Six Focus Areas for Banks of All Sizes - Lexology - November 16th, 2020
- Internet Security Audit Market is Expected to Exhibit an Upward Growth Trend Across Widespread Verticals | Affluence - The Think Curiouser - November 16th, 2020
- Internet Of Things Security Market 2020: Global Opportunities, Regional Overview, Top Leaders, Size, Revenue and Forecast up to 2020 2026 - The Daily... - November 16th, 2020
- Internet of Things (IoT) Security Technology Market Size 2020 | Opportunities, Regional Overview, Top Leaders, Revenue and Forecast to 2027 -... - November 16th, 2020
- 6 security shortcomings that COVID-19 exposed - CSO Online - November 16th, 2020
- iboss Named Finalist for Best Network Security Solution in the 2020 ASTORS Homeland Security Awards - PR Web - November 16th, 2020
- Microsoft: Move Away From Phone-based Multi-factor Authentication - TechDecisions - November 16th, 2020
- Global Cable Operator Markets, 2020-2025 by Technology, Residential Services (Wireless, Internet, Entertainment, Security, Home Automation, and IoT... - November 16th, 2020
- Why fintech security must never be an afterthought Wall Street Call - Reported Times - November 16th, 2020
- Global Internet Security Market Share, Quantitative Analysis, Drivers & Restraints, Future Trends and Forecast Research Report 2026 by Global... - November 10th, 2020
- Internet Security Software Market Size, Share, Types, Products, Trends, Growth, Applications and Forecast 2020 to 2027 - TechnoWeekly - November 10th, 2020
- How the Internet of Things Security Infrastructure in India can be improved? - Analytics Insight - November 10th, 2020
- Global Internet of Things Security Market 2025 Potential Scope for Growth in This Pandamic: Check Point Security Software Technologies, Cisco Systems,... - November 10th, 2020
- What is a RAT? How remote access Trojans became a major threat - CSO Online - November 10th, 2020
- China's largest hackathon sees Windows 10, iOS 14, Chrome, and more hacked - TechSpot - November 10th, 2020
- How governments, companies can address evolving needs of increasing tech-savvy Filipinos - Philstar.com - November 10th, 2020
- Global IT Security Market 2020 Growth Potential, Production, Revenue And COVID-19 Impact Analysis 2025 - The Think Curiouser - November 10th, 2020
- Internet of Things (IoT) Security Market Will Generate Massive Revenue In Future A Comprehensive Study On Key Players - TechnoWeekly - November 10th, 2020
- Global Internet Security Market 2020 | Know the Companies List Could Potentially Benefit or Loose out From the Impact of COVID-19 | Top Companies:... - November 8th, 2020
- Misinformation, not vote tampering, is our most critical election threat - SecurityInfoWatch - November 8th, 2020
- Top 7 Ways to Hide Your IP Address in 2021 - Techstory - November 8th, 2020
- Internet Security Software Market Current and Future Trends, Leading Players, Industry Segments and Regional Forecast By 2029 - Eurowire - November 6th, 2020
- Know Your Role: You Are Part of the Security Team - ClearanceJobs - ClearanceJobs - November 6th, 2020
- 'This is how it was all supposed to work': The EI-ISAC readies for Election Day - StateScoop - November 6th, 2020
- Two reasons your Wi-Fi is slow, and how to fix them - CNET - November 6th, 2020
- Keeping Yourself Safe on the Internet at University - TechBullion - November 6th, 2020
- IT Security Spending in Government Market Expected to Flourish By 2025 with Top Key Players- IT Security Spending in Government are: Check Point... - November 6th, 2020
- Arson, water damage: Paper ballots are fragile. But there's a reason we don't vote online - CNET - November 6th, 2020
- Live News Streaming Figures for #Election2020 Highlight Misinformation Threat - Infosecurity Magazine - November 6th, 2020
- Florida Invests in Security Controls Ahead of #Election2020 - Infosecurity Magazine - November 6th, 2020
- How to Organize Employees to Cooperate in Threat Mitigation - Infosecurity Magazine - November 6th, 2020
- The best antivirus protection for Windows 10 in 2020 - CNET - November 2nd, 2020
- Internet Security Firewall Market to Reap Excessive Revenues by 2020-2029 - Eurowire - November 2nd, 2020
- Global Internet Security Market Expected to reach highest CAGR in forecast period :HPE, IBM, Intel, Symantec, AlienVault - TechnoWeekly - November 2nd, 2020
- Poll shows that many feel more vulnerable to online threats during the pandemic - Wiltshire 999s - November 2nd, 2020
- Internet of Things (IoT) Security Market To Witness Significant Growth By 2020-2028 - TechnoWeekly - November 2nd, 2020
- Post-2020 election, Covid vaccine is biggest disinformation threat on the internet: Former Facebook security chief - CNBC - November 2nd, 2020
- Internet of Things (IoT) Security Market Demand (2020-2026) | Covering Products, Financial Information, Developments, Swot Analysis And Strategies |... - November 2nd, 2020
- Career in cybersecurity or ethical hacking: Where to study, starting salary and job interview questions - India Today - November 2nd, 2020
- Internet Of Everything (IoE) Market Status and Trend: Top Key Players, Industry Dynamics, And Regional Scope 2020 - Aerospace Journal - November 2nd, 2020
- Security Pros Have Role in Combatting Disinformation - Infosecurity Magazine - November 2nd, 2020
- How Safe Is the US Election from Hacking? - The New York Review of Books - November 2nd, 2020
- Internet watchdog warns of rise in scammers' activity - New Zealand Herald - November 2nd, 2020
- Homeland Security notified after hackers leak names of local residents who reportedly submitted invalid ballots - iFIBER One News - November 2nd, 2020
- Global Internet of Things Security Market Expected to reach highest CAGR in forecast period :Check Point Security Software Technologies, Cisco... - November 2nd, 2020
- Network Security: Don't Trust And Verify - IT Jungle - October 23rd, 2020
- Akamai Reveals State of Internet: Threats to Retailers - Solutions Review - October 23rd, 2020
- Verisign Reports Third Quarter 2020 Results | Business | The Daily News - Galveston County Daily News - October 23rd, 2020
- Global Internet Security Software Market Analysis, Drivers, Restraints, Opportunities, Threats, Trends, Applications, And Growth Forecast To (2026). -... - October 23rd, 2020
- Nokia Threat Intelligence Report warns of rising cyberattacks on internet-connected devices - GlobeNewswire - October 23rd, 2020
- Cybersecurity and a potential Biden White House: Past tech priorities resurrected - SC Magazine - October 23rd, 2020
- Virgin Media has an important new feature, but switching it on will cost you - Express - October 23rd, 2020
- WISeKey and OpSec Security Partnership Establishes Trust Between Brands and their Customers through Improved Customer Engagement - GlobeNewswire - October 23rd, 2020
- Internet Of Things Iot Security Market Economic Perspective And Forecast To 2027 - PRnews Leader - October 23rd, 2020
- Why cybercriminals have 'Gone Vishing' during the COVID-19 Pandemic - Bdaily - October 23rd, 2020
- Insights on the Digital Security Control Global Market to 2027 - Strategic Recommendations for New Entrants - GlobeNewswire - October 17th, 2020
- More than 25% of Cypriots concerned about internet security - Cyprus Mail - October 17th, 2020
- 5 things you can do to secure your home office without hiring an expert - We Live Security - October 17th, 2020
- Beyond Speed and Reliability: Security Is a New Differentiator - Security Boulevard - October 17th, 2020
- Nationwide and Generali Global Assistance Partner to Enhance Identity Theft Protection - Insurance News Net - October 17th, 2020
- Global Internet of Things (IoT) Security Product Market 2020 Impact of COVID-19, Future Growth Analysis and Challenges | Cisco Systems, Inc, IBM... - October 17th, 2020
- Is BlackBerry (TSX:BB) Stock a Buy on the Latest News? - The Motley Fool Canada - October 17th, 2020
- Global Internet of Things or IoT Security Market to Reach $22 Billion+ Valuation by 2027, Largely Due to Blockchain Adoption - Crowdfund Insider - October 17th, 2020
- Internet Security Market with COVID-19 Recovery Analysis 2020 | Rapid Adoption of BYOD Policy to Boost Market Growth | Technavio - Business Wire - October 8th, 2020
- Tenable and the CIS Enter Partnership to Bolster Cyber Hygiene - AiThority - October 8th, 2020
- How to Build Smart Banks that Connect Customers with Modern DX - AiThority - October 8th, 2020
- #NCSAM: Is Connected Ever Going to be Protected? - Infosecurity Magazine - October 8th, 2020
- Cyber Security Awareness Month is here! - We Live Security - October 2nd, 2020
- Internet security Market Potential Growth, Size, Share, Demand and Analysis of Key Players Research Forecasts to 2027 - The Daily Chronicle - October 2nd, 2020
- Latest Report on Global Internet of Things (IoT) Security Market Analysis, Growth, Opportunity and Regional Insights 2026 - The Daily Chronicle - October 2nd, 2020
- Remarks by Henrietta Fore, UNICEF Executive Director, at Security Council meeting on universal connectivity & access to digital technology in... - October 2nd, 2020
- Lessons learned from firsthand experience on how to avoid internet fraud and other forms of cyberattacks (opinion) - Inside Higher Ed - October 2nd, 2020
- COVID-19 Update: Global Internet Security Audit Market is Expected to Grow at a Healthy CAGR with Top players: Symantec, Intel Security, IBM, Cisco,... - October 2nd, 2020
- Internet Security Market 2020: Potential growth, attractive valuation make it is a long-term investment | Know the COVID19 Impact | Top Players: HPE,... - September 30th, 2020
- The Top Internet of Things (IoT) Authentication Methods and Options - Security Boulevard - September 30th, 2020
- How Trusted Internet Connections Is Focusing Telework with TIC 3.0 - FedTech Magazine - September 30th, 2020
- Is your business looking for an extra layer of security - here's why a VPN may be the answer - TechRadar - September 30th, 2020
- A business connected to the cloud needs cloud-ready security, connectivity - Techgoondu - September 30th, 2020