Working remotely has become the default mode for many businesses since the COVID-19 pandemic. While this allows companies to continue operations while reducing their employees’ chances of getting sick it also opens up the company to new cyber risks.
Working from home requires access to Wi-Fi that may be insecure despite thinking otherwise. In the case of home networks, they are usually set up in default mode that permits devices to connect without passwords.
This even includes Wi-Fi-enabled appliances, monitors, door locks surveillance cameras, speakers and more. Your corporate mobile device may be using this Wi-Fi network also. And even if you are able to use a VPN and private servers, this does not mean your confidential data is not exposed to grave cyber threats.
The multiple variables of all your employees’ home network means that your IT department has to cover more computers. In addition, there will be some employees who don’t completely understand the probability of a data breach with an unsecured network – especially if they access work through public Wi-Fi like coffee shops for instance.
What can companies do to reduce the risk of cyberattacks while working at home?
> Reinforce the use of VPNs for all remote staff
> Teach employees to scan devices before allowing them to connect with access by unauthorized software or hardware
> Double-check and lock remote devices wherever necessary to help reduce the possibility of cyber attacks without negatively affecting user experience.
> Disable split tunneling for VPN profiles to ensure that virtual employees won’t be able to access Wi-Fi networks directly without going through the corporate network first.
> Companies should also practice scheduled analysis of work-issued devices’ log data to improve detection of cyber incidents.
More importantly, companies should also update their cyber breach response strategies for the entire remote staff and practice plans through exercises with IT and security staff, along with officers and directors.
Many companies in Asia have been able to restructure operations and adapt to virtual offices. They are calling the remote workforce ‘the new normal’. Companies need to anticipate similar incidents like this pandemic – some may even pose more challenges.
For now, what’s needed are immediate measures to tighten online security of remote workers and revisit liability insurance policies that may not yet cover cybercrime-related claims.