Seven important cybersecurity measures for remote workers

Is part (or all) of your team working remotely? Here are seven important cybersecurity measures you need to be aware of.

While remote working has gained a significant popularity boost during the pandemic, the associated security concerns and corresponding preventive measures aren’t discussed enough.

In reality, this can be devastating for companies whose employees aren’t aware of the everyday dangers. The following seven tips discuss some of the best security methods associated with remote working.

1) Cloud-based apps

While you might think that storing data on the cloud is more dangerous than on-site, that’s not the case. Companies that offer these services make significant investments towards user safety, and everything is monitored 24/7 so that the providers can shut down certain parts in case any breach is detected.

GuidePoint Security states that IT workloads are moving to the cloud faster than ever and in order to lead your organization to a secure cloud, your security practices must be ready to address this shift. It’s important to note that every organization’s cybersecurity ecosystem requires a custom approach to the threat landscape. That’s why it’s important to work with a cybersecurity partner who can analyze, compare, and recommend best-fit app security solutions on a tailored basis.

Cloud apps also use robust encryption methods, such as SSL protocols and AES-256 (256-bit Advanced Encryption Standard). Furthermore, some platforms (such as MEGA) even let users keep full control by storing encryption functions locally inside the user’s app.

2) Virtual private networks

If you know anything related to how data travels through the Internet, you’ll find Virtual Private Networks (VPNs) very easy to understand. Instead of the traffic going directly through your router and being traceable to your IP address, VPN reroutes it so that it exits out of the VPN server.

For example, if you’re located in the USA and the VPN server is in Germany, anyone wanting to track you won’t be able to pinpoint the correct location. However, even though it’s a very powerful tool, a VPN alone won’t be able to provide 100% protection.

It is also a good idea to think about providing VPN access for your business. However, if you do, someone could steal or gain access even to your VPN password.

That’s why you should consider several security measures, such as multi-factor authentication. This is a simple method that helps prevent unauthorized access to the network. When you try to log into the Fortinet VPN that your company uses, using Fortinet multi factor authentication, your access will be more secure.

3) Password managers

With the computing power almost doubling every 18 months, the importance of strong passwords increases accordingly. This is because it’s becoming easier to brute-force simpler combinations, with some taking as little as a couple of minutes. U

Unfortunately, multiple complex passwords can be difficult to remember, which is where a password manager like Psono can come in handy. You can use a password manager for teams that locks your credentials in an encrypted file and only you and your team can access your data. Psono provides a number of features to manage data and access passwords easier than ever before with its open source password manager.

4) Avoid scams with Spokeo

While working remotely, you’re bound to receive countless emails and phone calls related to your job. You probably won’t even double-check whether they come from a reputable source, but this gives hackers the perfect opportunity to invade your data.

Scam calls/emails will try to get you to give up certain valuable information, such as customer data, which can ruin the company that you’re working for. In order to avoid becoming a victim, you can take advantage of Spokeo – a phone number search and email lookup tool.

In order to use it, all you have to do is enter the sender’s email address or the phone number from which the call came. Spokeo will run a cross-reference through its database in an attempt to find a match. If successful, you’ll receive a detailed report containing the person’s name, criminal history, and other information. This way, you’ll know whether you’re facing a scam or a legitimate business inquiry.

5) Say no to public WiFi

Nowadays, you can find WiFi hotspots virtually everywhere. You’re probably connecting to them without even thinking about the possible security issues. However, once connected, you’re visible to everyone on the network and extremely vulnerable to eavesdropping and malicious attacks.

Ideally, you want to avoid using these hotspots as much as possible. If you do connect to them, make sure that you’re at least using the aforementioned VPNs. There’s still a brief window where you’ll be vulnerable between connecting and turning the VPN on, but it’s still a lot safer.

6) The 2FA method

Two-factor authentication (2FA) is one of the multi-factor authentication practices wherein the user is granted access only after presenting two different pieces of evidence of its identity. In most cases, this is a password and a device that the user has such as a mobile phone.

By downloading a 2FA app, the user receives a one-time code that has to be inputted alongside the corresponding password, after which everything is accessible. Some websites (such as banking platforms) require 2FA due to the delicate nature of their business model. Still, it’s a good idea to use it everywhere, since it only adds a couple of seconds to the whole process.

7) Off-site backups

While backups are not a security method per se, they’re arguably more important than any other traditional measure. In a worst-case scenario, you’ll only have to go through the trouble of restoring the data from the backup to the source.

It’s important that these backups are stored in a different place from the originals. If that’s not the case, they’ll likely going to be compromised during the attack. There are many different mediums for backups – cloud storage, external hard drives, flash memories, etc.

Maguire Haigh is a marketing manager for Spokeo. He is interested in the latest technology trends, marketing strategies and business development. He also prefers traveling, exploring the world and meeting new people. Maguire has great experience in creating and editing articles on different topics.

Photo by Brandy Kennedy

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Others".
cookielawinfo-checkbox-performance	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	1 year	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__utma	2 years	This cookie is set by Google Analytics and is used to distinguish users and sessions. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmb	30 minutes	The cookie is set by Google Analytics. The cookie is used to determine new sessions/visits. The cookie is created when the JavaScript library executes and there are no existing __utma cookies. The cookie is updated every time data is sent to Google Analytics.
__utmc	session	The cookie is set by Google Analytics and is deleted when the user closes the browser. The cookie is not used by ga.js. The cookie is used to enable interoperability with urchin.js which is an older version of Google analytics and used in conjunction with the __utmb cookie to determine new sessions/visits.
__utmt	10 minutes	The cookie is set by Google Analytics and is used to throttle request rate.
__utmz	6 months	This cookie is set by Google analytics and is used to store the traffic source or campaign through which the visitor reached your site.

Cookie	Duration	Description
CONSENT	16 years 5 months 19 days 13 hours 20 minutes	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_39226696_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
_omappvp	11 years	The cookie is set to identify new vs returning users. The cookie is used in conjunction with _omappvs cookie to determine whether a user is new or returning.
_omappvs	20 minutes	The cookie is used to in conjunction with the _omappvp cookies. If the cookies are set, the user is a returning user. If neither of the cookies are set, the user is a new user.

Cookie	Duration	Description
centerVisitorId	7978 years 5 months 19 days 13 hours 11 minutes	This is a HTTP cookie used to track the individual sessions on the website. It helps the website to compile statistical data from multiple visits. This data is used for lead generation as a part of marketing purpose.
fr	3 months	The cookie is set by Facebook to show relevant advertisments to the users and measure and improve the advertisements. The cookie also tracks the behavior of the user across the web on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
NID	6 months	This cookie is used to a profile based on user's interest and display personalized ads to the users.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.
_fbp	3 months	This cookie is set by Facebook to deliver advertisement when they are on Facebook or a digital platform powered by Facebook advertising after visiting this website.

Cookie	Duration	Description
cookielawinfo-checkbox-functional	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
view.ga79y7i4H2VjMus2eRJYqN.4ewaiz7cYMLxo2Fdorod4k	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.5659118702428160	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.5kjS2nejq2YcnYdvBnXie6	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.6M3TmeJYUdaXk4bFFoEsPB	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.AcqHN2Jx4LPTHTaVuvgpj7	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.az9ENbabTdjyzXZhvGZLsH	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.BfndspJeShXfBzLLV9vgf6	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.dExRyANhGorUfWBK88b8He	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.DLQVxHBCjsB8dSGzMQHEG8	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.ecCiQ7LhtWkSkJ7TaZBNeg	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.FQVDyuAXgSZP6EjzQVc8vZ	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.gm24Y7zkcqfXLnVYsG45ua	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.Jngw8VouAHPooyWULt96v8	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.JUp6DgKPEh2GnAKP6Hic9a	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.oXoiDpd347fYcUzoEogUp3	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.PxByyBFy44UYvo87EnhdAT	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.pXcNDvRdAUByFqYPw6mShD	1 day	No description
view.ga79y7i4H2VjMus2eRJYqN.QdALHubScinNuHaMzo6r4T	1 day	No description
yt-remote-connected-devices	never	No description available.
yt-remote-device-id	never	No description available.
_drip_client_6898597	2 years	No description
_drip_visitor_6898597	2 years	No description