Join | Member Login
Arlington (VA) Chamber of Commerce | Arlington, VA 22201
  • Membership
    • Membership Benefits
    • Join Now!
    • Chamber Assisted Grand Openings
    • Chamber Member Retirement Program
    • ShopChamber
    • Advertising >
      • Website Ads
      • E-Newsletter Ads
      • Print Ads
    • Committees
    • LeadShare
    • Annual Corporate Sponsors
    • Member Login
  • Business Directory
  • Events
    • Chamber Calendar
    • Community Calendar >
      • Submit a Community Event
    • Networking Events >
      • Chamber 101
      • Breakfast Connection
      • Business After Business
    • Signature Events >
      • Arlington Business Gala
      • Hospitality Awards
      • Legislative Breakfast
      • Arlington Chamber Volunteer Day
      • AWE Women in Business Summit
      • Best Business Awards
      • State of the County & Public Safety Awards
      • Annual Meeting
    • Educational Events
    • Women in Business
    • Travel
    • Online Learning Center
    • COVID-19 Event Policy
  • Community
    • Arlington Restaurant Week
    • Small Business Accelerator
    • Early Childhood Financial Resiliency Accelerator
    • Coronavirus Resources
    • Coupons
    • Job Board
    • Scholarship Fund
    • About Arlington >
      • Business Resources
      • Map of the Area
      • Visiting Arlington
  • Business Advocacy
    • Public Policy Positions
    • Arlington Advocacy >
      • Budget & Taxes
      • Planning
      • Project Support
      • Economic Development
      • Processes
      • Retail & Signage
      • Transportation
    • Virginia Advocacy >
      • Budget & Taxes
      • Transportation
      • Economic Development
      • Other Topics
    • Recent Advocacy
  • About the Chamber
    • Board of Directors
    • Staff Directory
    • Chamber in the News
    • Strategic Plan
    • FAQs
    • Blog
    • Publications >
      • Arlingtonian Archives
      • Arlingtonian Archives
    • Press Releases
    • Contact Us
  • Membership
    • Membership Benefits
    • Join Now!
    • Chamber Assisted Grand Openings
    • Chamber Member Retirement Program
    • ShopChamber
    • Advertising >
      • Website Ads
      • E-Newsletter Ads
      • Print Ads
    • Committees
    • LeadShare
    • Annual Corporate Sponsors
    • Member Login
  • Business Directory
  • Events
    • Chamber Calendar
    • Community Calendar >
      • Submit a Community Event
    • Networking Events >
      • Chamber 101
      • Breakfast Connection
      • Business After Business
    • Signature Events >
      • Arlington Business Gala
      • Hospitality Awards
      • Legislative Breakfast
      • Arlington Chamber Volunteer Day
      • AWE Women in Business Summit
      • Best Business Awards
      • State of the County & Public Safety Awards
      • Annual Meeting
    • Educational Events
    • Women in Business
    • Travel
    • Online Learning Center
    • COVID-19 Event Policy
  • Community
    • Arlington Restaurant Week
    • Small Business Accelerator
    • Early Childhood Financial Resiliency Accelerator
    • Coronavirus Resources
    • Coupons
    • Job Board
    • Scholarship Fund
    • About Arlington >
      • Business Resources
      • Map of the Area
      • Visiting Arlington
  • Business Advocacy
    • Public Policy Positions
    • Arlington Advocacy >
      • Budget & Taxes
      • Planning
      • Project Support
      • Economic Development
      • Processes
      • Retail & Signage
      • Transportation
    • Virginia Advocacy >
      • Budget & Taxes
      • Transportation
      • Economic Development
      • Other Topics
    • Recent Advocacy
  • About the Chamber
    • Board of Directors
    • Staff Directory
    • Chamber in the News
    • Strategic Plan
    • FAQs
    • Blog
    • Publications >
      • Arlingtonian Archives
      • Arlingtonian Archives
    • Press Releases
    • Contact Us

ChAmber Blog

Securing Your Remote Work

4/29/2020

0 Comments

 
By Alexander Chamandy, ​Envescent
Picture
Businesses are adapting to a new world, where working remotely is a necessity for safety and continuing to stay productive. Remote work has major implications for security, both because home networks and systems tend to be less secure, and because the threats targeting remote workers are significantly on the rise.
 
In the last couple of months, since the coronavirus pandemic began to hit, we’ve observed, and other researchers have documented, a 667% increase in attacks. These attacks include phishing, malware, remote hacking efforts and related threats.

  • Phishing attacks are targeting email, instant and text messaging to exfiltrate data, take over accounts, inject malware and induce fund transfers. Many are COVID-19 themed, or may appear to come from a colleague, client, vendor or other entity where a relationship exists.

  • Malware threats are largely focused on ransomware right now, which can both hold your information hostage with the goal of extorting funds for its return as well as exfiltration of the same data to unknown malicious parties. Paying the ransom is rarely a good idea and often you won’t get data back.

  • Social engineering is another problem on the rise. Malicious parties can potentially spoof a caller ID, making it look like they’re calling from your bank, or your office or another trusted party in an attempt to gain access to information that is privileged or otherwise manipulate you in to doing something harmful to your company.

  • Malicious hackers are also directing automated attacks against Internet-connected devices more and more. These attacks largely target vulnerable systems, where there is a weak password in place, an unpatched problem, or other exposure that allows them to gain access and exfiltrate data or setup a staging area to launch other similar attacks.

As a result, more robust security measures are warranted to increase resilience against malicious attacks.
 
  • We recommend that all security initiatives begin with improvements to company policy. Many companies either do not have cybersecurity policies or they are out of date. Having an up-to-date and robust cybersecurity policy that meets or exceeds any industry regulatory requirements, defines how security is handled, how potential incidents are responded to and what expectations there are of employees, vendors, contractors and the like when it comes to handling data.

  • Patching software and firmware is fundamental, whether it is a server, computer, phone, network-connected device or otherwise it is crucial that these devices are patched regularly as updates are made available to reduce the chance of attack. Most updates are security fixes that announce what’s wrong and give hackers insight in to how to potentially exploit it. How patching occurs and with what frequency should be determined by the company’s cybersecurity/IT policy.

  • Routine training is important as 50% of data breaches happen due to human errors that may be prevented by filling knowledge and awareness gaps. Training can be offered remotely for groups, to ensure that such measures can be taken even during this period of safety-driven isolation.

  • Passwords are important to keep safe and vary across different accounts. We strongly suggest using a password management tool, such as LastPass, OnePass or KeePass, to manage your passwords. Change them every six months or so, but ensure that unique and strong passwords are used with each account. Not just variations of previous passwords.

  • Remote management of systems being used by remote workers is an important tool. These management technologies can allow monitoring of status (if there’s suspected malware, updates not installed, software/hardware problems and more). Examples include Microsoft Azure AD + InTune, TeamViewer w/ITBrain, SolarWinds and other solutions. They also allow a more rapid response when something may go awry, even if it isn’t security-related.

  • Endpoint protection is very important, as many home computers are using lower grades of protection that doesn’t meet the needs of a commercial environment. Anti-virus software targeted at home users typically does not have sufficient security mechanisms in place to guard against and mitigate more sophisticated attacks.

  • When on-premises resources are shared from the company to remote workers it’s important to do so using a VPN, rather than just a port forward on the network. A VPN provides strong authentication, encryption and better end-to-end security as a result.

  • Backups of all important data should be completed regularly, tested (with a restoration of data) and encrypted.

  • It’s helpful to consider upgrading home routers to commercial grade firewalls for anyone handling sensitive data and working from home for an extended duration. Like anti-virus software, there’s a big difference between the home router and the commercial firewall insofar as protection is concerned.

  • Web browsers should be secured using a plug-in like uBlock Origin, which can block known malware sites, advertising (which can link to malware) and more.

  • The less apps, the better. Remove anything not actively used or not important on one’s computer and phone.

  • It is helpful to have an independent third party that has expertise in security assist with evaluation of your company’s posture and where there is room for improvement on a regular basis. This is often referred to as a cybersecurity audit and remmediation, or vulnerability management.

  • Finally, a DNS blacklisting service, like Quad9, can help to mitigate risk by blocking access to known bad hostnames and domains (including websites).
​
In summary, consider security an investment. Good security pays in dividends of trade secrets and customer data staying safe, increased stability of systems and networks, as well as significantly reduced risk of reputational, financial and legal liabilities. 80% of attacks can be prevented by having and adhering to a robust security strategy, such as what this article has discussed.
0 Comments

Your comment will be posted after it is approved.


Leave a Reply.

    The mission of the Arlington Chamber of Commerce is to strengthen businesses and the economic environment for those who work, live and do business in Arlington.
    Picture
    Contribute to the blog!
    Educate the Chamber membership and Arlington business community by writing a post for our blog! To get started download the blog guidelines and blog template. For questions and more information, contact the Communications Manager.

    Archives

    March 2023
    February 2023
    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    August 2022
    July 2022
    June 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    December 2021
    November 2021
    October 2021
    September 2021
    August 2021
    July 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    December 2019
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017
    July 2017
    June 2017
    May 2017
    April 2017
    March 2017
    February 2017
    January 2017
    December 2016
    November 2016
    October 2016
    September 2016
    August 2016
    July 2016
    June 2016
    May 2016
    April 2016
    March 2016
    February 2016
    January 2016
    December 2015
    November 2015
    October 2015
    September 2015
    August 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015
    February 2015
    January 2015
    December 2014
    November 2014
    October 2014
    September 2014
    August 2014
    July 2014
    June 2014
    May 2014
    April 2014
    March 2014
    February 2014
    January 2014
    December 2013
    November 2013
    October 2013
    September 2013
    August 2013
    July 2013
    June 2013
    May 2013
    April 2013

    RSS Feed

© Copyright 2023 Arlington Chamber of Commerce. All rights reserved.
2009 14th Street, North  | Suite 100 | Arlington, VA 22201 | Directions
Tel (703) 525-2400 | chamber@arlingtonchamber.org
MemberClicks
Subscribe to This Week At Your Chamber
For Email Marketing you can trust.
Home | ​Join Now | Site Map