Cyber Defense eMagazine July 2020 Edition

More documents

Recommendations

Info

premises. In the home environment, extra care should be taken to secure customer and organizational data. Protection should be in place to avoid unauthorized access or disclosure of the information stored and processed by the equipment. No other person should be able to access the equipment or view information on the screen, and you should guard against eavesdropping. Do not openly discuss confidential or Payment Card Information where you may be overheard. Create Strong Passwords Ensuring a strong and robust password protection policy might sound like common sense, however, the weakest point of security on a corporate network is the end-user. Enforcing system-wide, managed password policies can help to create a hardened perimeter on the network. Support teams may have to do a little extra work to unlock and reset user accounts if the password is forgotten, but instilling a complex password policy, and a regular, enforced password expiration date will help to give the best protection to the remote workforce. Introducing multi-factor authentication (MFA) for home workers can add extra security for business assets. Using MFA to access cloud storage such as Onedrive, or when accessing Exchange email systems and collaboration tools such as Slack, Teams, or Skype for Business, will add an extra layer of security when out of the office. Communication and the Training of Homeworkers Lots of people have worked from home in the past, but for many, COVID-19 has forced employees to use technology and work from home for the first time. For many, this change is extremely difficult to adapt to. Not only at a technical level, but adapting to online meetings and working on your own. This introduces many security risks. Employees may not remember all the rules of home working. They may bring their device or they may unintentionally share confidential information on social media. Clear and concise communication channels from senior management or HR should communicate a consistent message defining what the expectations of the employee are. The messaging should describe how the business intends to function during a lockdown and what the company priorities are. Combine that with training sessions, online classes, or one-on-one training about how to use collaboration tools, cloud productivity tools, and how working from home affects access to everyday user applications. Engaging with employees regularly is a great way to promote wellbeing at work, and keep productivity and engagement throughout the business. This benefits morale, and importantly creates a greater understanding of how to use computer systems securely. Cyber Defense eMagazine –July 2020 Edition 34 Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.
System Updates / Antivirus Security updates to operating systems and applications have never been more important than during the COVID-19 crisis. System administrators have the responsibility of ensuring that the mobile workforce information technology is up to date and has the latest security updates. When an employee's laptop connects to a corporate network, it will typically check in with a centralized administration portal, such as Microsoft System Center (SCCM). Toolsets like this manage the update schedule of thousands of laptops, computers, and mobile devices over a VPN or standard Internet connection. Administrators can force updates out on demand to keep antivirus, antimalware, and system updates at the latest level. This creates the best line of defense against malware and ransomware attacks. Software Protections The software on the portable equipment must comply with the organizational standards to ensure it is supportable. As mentioned earlier, up-to-date antivirus detection software is installed to protect local systems. No unauthorized software should be loaded on to company assets, no matter how trivial. Software should not be tampered with to circumvent security measures put in place, such as disabling antivirus system scans. Any tampering of the software should be considered a disciplinary offense, and the antivirus suite should be configured to audit user behavior. When used to access the Internet, the user’s device should utilize a proxy server where the activity is logged and monitored. About the Author Marty Puranik co-founded Atlantic.Net from his dorm room at the University of Florida in 1994. As CEO and President of Atlantic.Net, one of the first Internet Service Providers in America, Marty grew the company from a small ISP to a large regional player in the region, while observing America's regulatory environment limit competition and increase prices on consumers. To keep pace with a changing industry, over the years he has led Atlantic.Net through the acquisition of 16 Internet companies, tripling the company's revenues and establishing customer relationships in more than 100 countries. Providing cutting-edge cloud hosting before the mainstream did, Atlantic.Net has expanded to seven data centers in three countries. Cyber Defense eMagazine –July 2020 Edition 35 Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Security, Convenience & Privacy: A
Page 3 and 4: IOT Security Embedded in Memory Car
Page 5 and 6: @MILIEFSKY From the Publisher… Ne
Page 7 and 8: Welcome to CDM’s July 2020 Issue
Page 9 and 10: Cyber Defense eMagazine -July 2020
Page 17 and 18: Your website could be vulnerable to
Page 25 and 26: Industry giants have chosen to appr
Page 27 and 28: emotely is governed correctly via u
Page 29 and 30: 3 Practices to Avoid Security Risk
Page 31 and 32: Simplifying personal endpoint devic
Page 33: What can you do to protect your wor
Page 37 and 38: access to remote employees, and thi
Page 39 and 40: Organizations: It’s Time to Rethi
Page 41 and 42: While newer technologies, such as a
Page 43 and 44: database included 3,000+ email addr
Page 45 and 46: It is impossible to know whether Jo
Page 47 and 48: to prioritize higher-risk employees
Page 49 and 50: About the Author David Sanders is D
Page 51 and 52: On the other hand, buying a SOC sol
Page 53 and 54: In 2020, SOCs Are Understaffed Yet
Page 55 and 56: Figure 2: SOC leaders believe that
Page 57 and 58: it will create a team that is respo
Page 59 and 60: Figure 6: SOC managers drive metric
Page 61 and 62: • By then, our global cities may
Page 63 and 64: Managing Small Business Cybersecuri
Page 65 and 66: There are multiple risks when emplo
Page 67 and 68: Security in memory card format Swis
Page 69 and 70: About the Author Hubertus Grobbel i
Page 71 and 72: More variants: 439,000 new malware
Page 73 and 74: About the Author Lt. Commander (Ret
Page 75 and 76: What Are the Different Types of Thr
Page 77 and 78: Even though DHS recommends using tw
Page 79 and 80: To make matters even more complicat
Page 81 and 82: Should We Be Worried About Vehicle
Page 83 and 84: Still, with these cases attracting
Page 85 and 86:
Cyber Attacks at Sea: Blinding Wars
Page 87 and 88:
North Korean hackers.5 Later this y
Page 89 and 90:
200-300 million for Q3 2017.17 More
Page 91 and 92:
About the Author Julien Chesaux is
Page 93 and 94:
Why not just keep using a jailbreak
Page 95 and 96:
Conclusion Jailbreak-free acquisiti
Page 97 and 98:
ut the case is if such a behavior i
Page 99 and 100:
How Bad Guys Could Take Advantage o
Page 101 and 102:
How it Works Whenever you sign in t
Page 103 and 104:
Understanding the Types of Single S
Page 105 and 106:
About the Author Ayman is founder o
Page 107 and 108:
According to research conducted by
Page 109 and 110:
Source: Apple Insider It is also im
Page 111 and 112:
Post COVID-19: Cloud, Remote Work a
Page 113 and 114:
The Rise of COVID-19 Phishing Attac
Page 115 and 116:
Donation Solicitations - The Most D
Page 117 and 118:
Post COVID-19: Password Extinction
Page 119 and 120:
The Future Of Security - Prediction
Page 121 and 122:
Post COVID-19 Cybersecurity and Fut
Page 123 and 124:
picture of access in the cloud and
Page 125 and 126:
connectivity? To ensure comprehensi
Page 127 and 128:
About the Author Stan Lowe,Global C
Page 129 and 130:
For many organizations, the Securit
Page 131 and 132:
Fig 1: AI Meme This article documen
Page 133 and 134:
Fig 3: Screengrab of Crypto’s UI
Page 135 and 136:
hon() Fig 4: Screengrab of Honeypot
Page 137 and 138:
with high-precision and also send k
Page 139 and 140:
References “Security in Computing
Page 141 and 142:
Cyber Defense eMagazine -July 2020
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Meet Our Publisher: Gary S. Miliefs
Page 157 and 158:
Free Monthly Cyber Defense eMagazin
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
show all

Cyber Defense eMagazine July 2020 Edition

Create successful ePaper yourself

Delete template?

Save as template?