Posts

For almost a year now, many of us have been working from home. With the lockdown still ongoing – though potentially with the end in sight – many are still working remotely. While it might be protecting our health, we can’t forget to protect ourselves from cyber threats, too.

Right now is a great opportunity for cybercriminals. The anxiety around the virus makes people more vulnerable to phishing attacks, while work from home setups tend to have weaker security measures in place than the office. But it is not just cybercriminals causing disruption: 20% of businesses have suffered a breach due to the actions of a remote worker since lockdown began.

It is essential to stay on top of any potential threats or vulnerabilities and ensure employees understand how to stay safe. Here are three security risks you and your staff should look out for when working from home…

Insecure home setups

In an office environment, you probably have an IT manager or someone in control of the security of your network. At home, however, people typically have weaker setups. For example, their Wi-Fi connection might be WEP instead of WPA-2. This may seem unimportant, but weaker setups make it a lot easier to hack into. 

This shift could also mean people are using programs they aren’t familiar with, which can lead to further vulnerabilities. Personal devices like laptops and mobile phones may have fewer security controls, so it is best, if possible, to use work-issued devices. 

Phishing attacks

Phishing attacks are widely recognised as the top cause of data breaches. These attacks can ruin a business. On the surface, they look like normal emails. But they often link to fake websites and downloads that infect your computer. 

Over the course of the pandemic, they’ve become more sophisticated and targeted. But more than that, they’ve become more frequent; HMRC reported a 73% rise in phishing emails. The best way to protect against phishing attacks is training. Make sure all staff know the warning signs of an attempt and to check with IT managers if they aren’t sure.

Weak passwords

If something’s online, there’s a good chance someone else can get into it. It helps to make it as difficult as possible for them. Many companies work online to make work more collaborative. But too often, people reuse login details. 

Using the same login for Zoom, email, and any other online apps or websites you use to stay in contact with your team is dangerous and can result in an attacker gaining access to your accounts. Password managers can help keep track of multiple passwords and help you create stronger ones that are harder to guess.

Cyber threats are a danger to all businesses, especially while we’re working from home. It’s important to back up data, make employees aware of the various attacks and best online practices, and ensure they have the strongest setup possible while they’re working remotely. 

Put your mind at ease by protecting your business today. We pride ourselves on creating the most efficient and effective cyber security solution. For more information, get in touch with us on 01204 706000.

By now, we’re all well aware of how dangerous the online world can be. We know not to send our card details to some Nigerian prince who turns up in our spam folder. And we know we shouldn’t leave our password written on a post-it note stuck to our laptop screen. These are obvious ways to leave yourself vulnerable online.

But some of the biggest mistakes people make are simple ones that you might not realise are important as they are. You and your staff have to be constantly on the ball. Thankfully, these easy mistakes are also very easy to fix. Let’s look at five of the most common errors and how you can change for the better.

Putting off software updates

We get it – it’s annoying when you’re busy working and that little pop-up interrupts you just to tell you it’s time to update your software or OS. You might put it off, telling yourself you’ll get to it later, but later doesn’t come until it’s too late. These software updates are crucial as they often patch up holes in the security, keeping you from being vulnerable online. Not to mention the fact it should give you new features and fix bugs.

It might feel like a pain to constantly update your software – especially if different ones are updating at different times – but it’s essential. To make it easier for you, turn on auto-updates if possible. Or make a habit of checking for updates at the end of your working day and let it do it while you go about the rest of your day.

Posting everything on social media

Social media is a fun place to share updates, talk to friends, or simply tell people what you’re eating. But over sharing can be risky. By sharing too much about your personal life, hackers can piece together your details to figure out passwords.

There are two ways to fix this. First, ensure all your passwords are secure. Don’t make it just one word; combine letters, numbers, and symbols to make it harder to crack. Second, watch what you put online. Be careful about any “fun” Facebook posts that ask you to complete a quiz about yourself or post about your life story. These details are often used in people’s passwords, so you’re just giving away free information. It seems obvious right now, but when you’re bored and scrolling through Facebook, it looks innocent enough.

Using weak passwords that you never change

When it comes to passwords, many people use obvious choices. It might be their child’s name, an anniversary, a pet, or even just a simple “password123”. 

Then they use that same password for months. It’s essential to create strong passwords that you change often. And you should never use the same password twice. If you find it impossible to remember every password, try using a password manager to keep them all in one secure place. 

Using sites that aren’t SSL certified

Have you ever noticed the little padlock at the far left of the search bar? Or maybe a URL that started with “https://”? That “s” and padlock signifies the site is SSL certified. SSL certified means you’re at a much lower risk of having your information stolen, as it’s encrypted. If you plan on making a purchase from a site, ensure that it’s SSL certified as it’s much harder to hack.

Using free public Wi-Fi

Everyone does it so it must be safe right? Not quite. Public Wi-Fi isn’t entirely secure. Any hacker could easily intercept everything your device sends or receives. Not only that, but it isn’t uncommon for cyber criminals to impersonate Wi-Fi services, tricking you into connecting to them where they can then steal your information.

The best course of action is to simply ignore it. It’s easier and safer to use your own data. Even public Wi-Fi that’s password-protected is a risk as you still don’t know who’ll be lurking on the same network.

There are so many ways we can accidentally leave ourselves vulnerable online. Without realising, it’s all too easy to give your private information away. Being aware of dangers and learning how to stay safe will help us develop better online practices and reduce risk.

Nisyst Cyber Security has been at the forefront of the UK tech scene for 30 years. We can conduct a vulnerability assessment to identify any security loopholes. Ready to protect your business? Call us now on 01204 706 000.