Top 5 Steps to Securely Work from Home

Here are a few steps from IT Services to help you adjust and secure your new remote environment. Use these five simple steps to work more securely from home. The best part is all of these steps not only help secure your work, but they will make you and your family far more safe as you create a cyber secure home.

You

 

First and foremost, technology alone cannot fully protect you – you are the best defense. Attackers have learned that the easiest way to get what they want is to target you, rather than your computer or other devices. If they want your password, work data or control of your computer, they’ll attempt to trick you into giving it to them, often by creating a sense of urgency. For example, if attackers are targeting your data and/or password they may call you pretending to be Microsoft “technical support” and claim that your computer is infected. Another way of gaining your information is sending you an email warning that a package could not be delivered, fooling you into clicking on a malicious link. 

 

The most common indicators of a social engineering attack include:

o   Urgency: Someone creating a tremendous sense of urgency, often through fear, intimidation, a crisis or an important deadline. Cyber attackers are good at creating convincing messages that appear to come from trusted organizations, such as banks, government or international organizations.

o   Policies: Pressure to bypass or ignore security policies or procedures, or an offer too good to be true (no, you did not win the lottery!)

o   Contacts: A message from a friend or co-worker in which the signature, tone of voice or wording does not sound like them.
 

Ultimately, you are the best defense against these attacks.

 

Home Network

 

Almost every home network starts with a wireless (often called Wi-Fi) network. Wi-Fi is what enables all of your devices to connect to the Internet. Most home wireless networks are controlled by either your Internet router or a separate, dedicated wireless access point. Both setups work in similar ways - by broadcasting wireless signals to which home devices connect. This means securing your wireless network is a key part of protecting your home. IT Services recommend the following steps to secure your home workspace: 

 

o   Change the default administrator password:  The administrator account is what allows you to configure the settings for your wireless network. Customize your own password, an attacker can easily discover the default manufacturer password that often comes with the device.

o   Allow only people that you trust: Do this by enabling strong security so that only people you trust can connect to your wireless network. Strong security will require a password for anyone to connect to your wireless network. It will encrypt their activity once they are connected. 

o   Make passwords strong: The passwords people use to connect to your wireless network must be strong and different from the administrator password. Remember, you only need to enter the password once for each of your devices, as they store and remember the password.

 

Not sure how to do these steps? Ask your Internet Service Provider (ISP), check their website, check the documentation that came with your wireless access point, or refer to the vendor’s website. 

 

Passwords

 

When a site asks you to create a password: create a strong password, the more characters it has, the stronger it is. Using a passphrase is one of the simplest ways to ensure that you have a strong password. A passphrase is nothing more than a password made up of multiple words, such as “bee honey bourbon.” Using a unique passphrase means using a different one for each of your devices or online accounts. This way if one passphrase is compromised, all of your other accounts and devices are still safe. Can’t remember all those passphrases? 

 

o     Use a password manager, which is a specialized program that securely stores all your passphrases in an encrypted format (and has lots of other great features, too!). Saint Mary’s College will soon provide LastPass free of charge as a password management solution for all Faculty, Staff, and Students. Coming Summer 2020

o     Finally, enable two-step verification (also called two-factor or multi-factor authentication) whenever possible. It uses your password, but also adds a second step, such as a code sent to your smartphone or an app that generates the code for you. Two-step verification is probably the most important step you can take to protect your online accounts and it’s much easier than you may think.

 

Updates

 

Make sure that the software on your computers, mobile devices, programs and applications are running the latest version. Cyber attackers are constantly looking for new vulnerabilities in the software your devices use. Meanwhile, the companies that created the software for these devices are hard at work fixing them by releasing updates. By ensuring your computers and mobile devices install these updates promptly, you make it much harder for someone to hack you. To stay current, simply enable automatic updating whenever possible. This rule applies to almost any technology connected to a network, including not only your work devices but Internet-connected TV’s, baby monitors, security cameras, home routers, gaming consoles or even your car. 

 

Kids & Guests

 

Something you most likely don’t have to worry about at the office is children, guests or other family members using your work laptop or other work devices. Make sure family and friends understand they cannot use your work devices, as they can accidentally erase or modify information, or, perhaps even worse, accidentally infect the device.