In these challenging times, it’s sad to learn that cyber criminals are only increasing their activity as they look to capitalise on the Covid-19 crisis, writes Isabel Thompson, commercial director at cyber security and resilience firm Warner McCall Resilience.
With the NCSC (National Cyber Security Centre) issuing warnings of such activity on a daily basis, it’s important that we all work to protect our businesses from the damage of cybercrime.
As many of us are now working from home, the opportunity for cyberattacks has only increased. So it’s vital that we work together with our IT colleagues and providers, to adopt good cyber health practices:
Only work on secure networks
If you are working from home, you should only be using a VPN (Virtual Private Network) or a secure home network with strong end-to-end encryption, e.g. Office 365 SSL session. Don’t be tempted to use public wi-fi, as hackers can position themselves between you and the access point.
Beware Phishing emails
Phishing is a disguised email, that aims to hook the recipient into clicking a link or attachment that enables a cyberattack to take place. Attackers masquerade as a trusted entity of some kind, so it’s important to be extra vigilant by following these guidelines:
- Don’t click on links in emails from people that you don’t know.
- Don’t open emails purporting to contain important updates from your organisation, especially those that ask you to validate your credentials or install additional software to permit remote connectivity.
- Check the grammar, punctuation and spelling of the email – in many cases, these are clear signs of a phishing email.
- Don’t open emails relating to Covid-19, purporting to be from bodies such as HMRC or the World Health Organisation as these are known phishing tactics.
If you are at all in doubt, then the advice is to call the sender to verify the details.
Implement multi-factor authentication (MFA)
Weak security credentials are easy targets for cyber criminals, so if you have not yet set-up multi-factor authentication for access to your organisation’s systems, then now is the time to do so.
Make personal devices secure
If your organisation has sanctioned the use of personal devices, then it’s important that you implement anti-virus software and make sure that any software and operating systems that you are using are up-to-date. Outdated software is easy for cyber criminals to exploit.
Adopt secure working practices
Don’t be tempted to make life easier by forwarding information to personal accounts or cloud storage accounts, which are more vulnerable to cyberattack. Locking your computer when it’s not in use ensures that other family members don’t accidentally open your device to malware or phishing attempts.
To learn more about building resilience to cyber threats during these uncertain times, contact Isabel Thompson at Isabel.thompson@wmr.co.uk or on 07824 498 591.
Isabel Thompson has more than 20 years’ experience helping clients to evolve, adapt and grow their businesses, both in the UK and internationally. She has a background in ‘Big Four’ management consultancy, where she specialised in technology-led organisational change and business development. Her experience spans a number of sectors including aerospace and defence, manufacturing, retail, financial services and the public sector.
In January Bristol Law Society (BLS) appointed Warner McCall Resilience to help its members tackle the evolving cyber threat.