01 Feb 2021

It’s been almost a year now, since the pandemic seemingly turned our worlds upside-down in what was seemingly an instant.  Many workers who had never worked remotely began doing so on a regular basis.  And while that was immensely helpful in curtailing the spread of the physical virus, e-viruses have flourished, as anyone with even a grain of cybersecurity knowledge accurately predicted.

So, while we tried to warn folks, we knew we’d have our work cut out for us.  So after almost a year, here is our best advice for those wanting to protect your at-home workers, as this trend does not appear to be going anywhere, anytime soon… even after the pandemic (finally!) ends…

1. Start with a Risk Assessment for Every Remote Device

How can you know the best way to protect yourself if you don’t know what you’re up against?

You can’t.  I mean, you might get lucky, but it makes a lot more sense to prepare by fortifying your weaknesses and staying a step ahead by creating a Disaster Plan in case the worst does in fact happen.

If you have an IT Department, they’ll likely be able to handle it, but if you don’t, you can always outsource your cybersecurity, and, in fact, many cyber security firms will include Risk Assessments with other packages, and they aren’t expensive, especially for the amount of information provided.

2. Endpoint Security is Key

Even if you make it a policy not to, the likelihood of your WFH employees pulling double-duty on devices is pretty high.  How many remote employees have been able to completely ignore the call of Facebook or a Discussion Board whilst trapped in the depths of the Zoom call that won’t end, or working on their personal device while lounging in their bed?  Perhaps you weren’t able to afford to supply them with their own work laptop, forcing them to have to use their personal device for work.

It’s an unfortunate reality of today’s workers’ lives that business and pleasure will most likely mix.  Instead of blowing up when it does occur, plan for it with endpoint security.

3. Cyber Security Awareness Training

Along those same lines, the more cyber security awareness training you can give your employees?  The better.  If it weren’t for employees, there would be no breaches; make sure they know how to spot suspicious-looking emails BEFORE they open them, and that they understand password security tips and tricks, and the probability of a successful attack on your business will be significantly reduced.

4. Take Advantage of Your Privileges

Not every employee needs access to every single file, so it only makes sense to limit access to your company’s sensitive information by setting up privileges on your network.  If your employee can access something?  So can the right hacker, but limiting authorization limits just how easily a bad actor can access it.  It’s also important to put roadblocks to access at every single level with additional steps for authentication.

It might seem like a bit of a headache, but it is well worth the minor inconvenience for the increased level of security you gain.

5. Stop Snoozing Your Updates

Yes, you are in the middle of something… But as soon as you aren’t anymore?  Complete that update!  Updates and patches are created to keep users safe from known vulnerabilities, and putting it off for too long can put you at risk.  In fact, Fraunhofer Institute for Communication reported that a whopping NINETY PERCENT of home router breaches were due to manufacturers failing to complete device updates.  So easily avoidable!  And yet, hackers are notorious for using home routers as a gateway into devices that store more sensitive information, like passwords and usernames.

Let me repeat this:  Manufacturers being lazy is a direct cause of cyber home invasions.  Meaning that neither you, nor your employees, should rely on them to complete the updates in a timely fashion, so it’s important to train your employees to do it themselves.

Conclusion

So much of what makes cyberattacks successful?  Is completely avoidable.  While there are attacks that are so highly-sophisticated that even the most notable cybersecurity firms are susceptible (*cough* Sunburst Attack *cough*), most of them are much more simple and avoidable.  If you are stressing about your business’s cyber security (or lack thereof), a great place to start is by implementing the layered defense mechanisms we recommend in our FREE Remote Security Checklist.  While that will really get the ball rolling, for an enterprise-wide strategy, feel free to give us a call at 919-422-2607, or schedule a free online consultation today!

Remember: Hackers have NO shame.  It’s up to you to recognize that, and to figure out what you can do to make your business and your employees more secure from these nefarious criminals.

Schedule an Appointment

Schedule an Appointment

    Our clients are awesome!

    Based on 55 reviews.
    Jeremy Richards
    Jeremy Richards
    2020-03-13
    Petronella provides great advanced digital marketing and automation solutions for my business!
    Kate Swenson
    Kate Swenson
    2020-02-14
    Highly recommended for CMMC certification assistance! Excellent and affordable options for secure data hosting on local infrastructure. 5 stars!
    Tom Matzen
    Tom Matzen
    2020-01-25
    Petronella Technology Group helped us setup our sales and marketing automation, cybersecurity and compliance for our new Blockchain startup. Great to work with! Craig in particular really knows his stuff, can translate into non-tech speak, and has wisdom beyond his years. Highly recommend them.
    Justin Summers
    Justin Summers
    2020-01-14
    Craig is awesome! He is very professional and efficient with his work. I would definitely recommend Petronella Technology to anyone who needs state of the art service.
    Blake Rea
    Blake Rea
    2020-01-14
    Craig is an expert in his field. Impressed by his knowledge, A true pioneer in Cybersecurity. My business is safer thanks to Petronella Tech!
    Robert Friedman
    Robert Friedman
    2020-01-10
    For the last five years Craig has been the Contributing Editor for Cybersecurity for NC Triangle Attorney Law Magazine which I publish. His base of knowledge is always leading edge, pragmatic and early to understand for our readers who are not techies. He is patient and easy to work with.
    Tammy Everett
    Tammy Everett
    2020-01-10
    Craig Petronella, CEO of Petronella Technology Group provided the members of the Defense Alliance of North Carolina expert advice on cybersecurity and NIST compliance. Eye opening experience! Thanks so much!
    Julie Brown
    Julie Brown
    2020-01-09
    Craig and the Petronella Technology Group, Inc. team made HIPAA compliance for my small practice so simple and easy! They helped me with all of my HIPAA training, HIPAA Security Risk Assessment, Penetration Test, and HIPAA secure hosting so I can rest easy.
    Pivot Point
    Pivot Point
    2020-01-03
    Petronella Technology Group helped us with our marketing strategy for our new web startup. Awesome experience!!!!
    Richard Brunet
    Richard Brunet
    2019-12-30

    SCHEDULE AN APPOINTMENT

    Make It Happen Now

    CLIENT SUPPORT

    Don't Feel Stranded

    CONSULTATION

    Get Best Advice

    PAYMENTS

    Make A Payment

    Top