Faced with the corona virus, just like during a strike, more and more companies are encouraging working from home every day in order to slow down the risks of spread. However, this practice raises a number of security issues, which must be kept in mind. Companies must be particularly attentive to the measures put in place to secure remote access of employees to their workstations. They must ensure that these teleworkers exercise caution and are aware of the risks that can result from modes of action that do not comply with IT security.

Be careful, malicious files!

Cybercriminals are using the coronavirus threat to hide malicious files in documents purporting to provide information about the disease. These files contain, for example, instructions on how to protect yourself from the virus, encrypted information on the threat, or even procedures for detecting the coronavirus. This opportunistic approach of cyber attackers, associated with changes in the working habits of employees, makes it necessary for companies to be particularly vigilant at this time.

Working from home means being able to access your company’s servers remotely. But not only that: once computers and mobile terminals are out of the company’s network infrastructure and connected to a new Wi-Fi network, the risk of hacking corporate data increases.

Below are five simple steps employers and employees can take to reduce the cyber risks associated with working from home:

1. Provide a VPN to employees (Virtual Private Network, a virtual computer network dedicated to a structure), so that they can connect securely to the corporate network when they are remotely.
2. Ensure that the company’s devices – laptops, phones or tablets – are protected by appropriate security software (allowing, for example, to erase data from devices declared lost or stolen or limiting applications that can be installed).
3. Ensure proper installation of operating system and application updates. In addition to improving performance, they also guarantee regular correction of potential security vulnerabilities.
4. Restrict the access rights of people who can connect to the corporate network.
5. Educate teams not to respond to suspicious messages and not to open attachments that may be there.

By observing these cyber-hygiene, companies are able secure their workforce while still remaining productive.

Stay vigilant – cybersecurity is not immune to COVID-19.