With the increase in teleworking, cybercriminals will seek to take advantage of companies and organizations’ possible disorganization and confusion and the resulting dematerialization of procedures to intensify their attacks.
The primary cyber attacks that we can consider are:
- Phishing (phishing): messages (email, SMS, chat …) to steal confidential information (passwords, personal or banking information) by impersonating a trusted third party.
- Ransomware: THIS type of attack is increasingly accompanied by the theft of data and the destruction of backups beforehand.
- Data theft: Attack which consists of breaking into the company’s network, or its external hosting (cloud), to steal data from it to blackmail it, or to resell it, or even to diffuse them to harm him.
- False transfer orders (FOVI / BEC): Fraud carried out, sometimes following the hacking of an email account, by message and even telephone, by usurping the identity of a manager or one of his agents, d” a supplier or service provider, or even an employee, to request an exceptional and confidential transfer or a change in payment details (RIB) of an invoice or salary
LET’S SEE CYBER SAFETY RECOMMENDATIONS FOR REMOTE WORKING
To keep your business as safe as possible, use the following methods:
If you have professional equipment, separate your uses Separate your professional and personal uses well at the risk of confusing them and generating security faults that could be detrimental to your business. The professional activity must be done on your professional means and only on your professional means, and the personal activity must be done only on your means.
Strictly apply your company’s security guidelines
These security measures aim to protect your business, and therefore your activity. If you are having difficulty using the prescribed measures, feedback the information and seek advice from your company, but do not bypass them on your own, as you are probably not able to appreciate the extent of the risks involved. you could take and make your business take
Do not do teleworking what you would not do in the office
A fortiori on your professional equipment if you have it. If you use your means by teleworking, be aware that your activities can also put your business at risk, so be extra careful.
Beware of unexpected messages
Whether by messaging ( email, SMS, chat, etc.) in the event of an unexpected or alarmist message, always ask the sender for confirmation by another means. It can be attacked by phishing to steal your confidential information (passwords), sending a virus through an email attachment or a link that you draw on a site trapped, or an attempt to scam false transfer orders (see threats above). You can also use Double VPN services to ensure the safety of your data from cyber-attacks.
Install your applications only in an “official” setting and avoid suspicious sites
On your professional equipment, install new applications only after the agreement of your IT support. On your equipment used for teleworking, install applications only from the official websites or stores of the publishers to limit the risks of installing a tricked application to hack your equipment. Likewise, avoid suspicious or fraudulent websites, which could also trap your equipment.
You are confined and must resort to telecommuting to maintain your activity. You sometimes do not have professional equipment for teleworking and must do so with your personal IT resources (computer, tablet, telephone, email accounts, etc.).