COVID-19 has revolutionized the way we work. Approximately 40% of the world’s workforce is now working from home. Which means, they are ONLINE. Unfortunately, the only way to 100% guarantee that a user will never succumb to an attack is by disconnecting, but that is not a feasible option.
The next best thing is training our users by providing awareness and ensuring the tools they are using will provide the protection that is needed. Whether they are using company devices or their own, users are susceptible to malicious attacks.
We must ensure that level of protection is extended to our remote workers through various ways. Such as, multiple authentication methods for Virtual Private Network (VPN) connectivity, screening and monitoring company VPN traffic, and having proper anti-malware software installed. Also important is monitoring other methods of access to the network such as Remote Desk Protocol (RDP) and Public access to internal resources.
Without these mechanisms in place, your users are vulnerable to phishing attacks for personal data, or spyware installed for spying on user’s activity which may eventually lead to a ransomware attack that may render a resource unavailable until the ransom is paid. Let us be proactive in our approach, a step ahead in the game.