- S2 Grupo has stressed that after the current health crisis, teleworking will continue to grow in our country and it is essential that both companies and employees strengthen their security measures to avoid becoming victims of cybercriminals.
- Experts from the cybersecurity company recommend, among other measures, changing router passwords, learning to distinguish social engineering attacks or configuring computer equipment with a session aimed exclusively at the work environment.
Valencia, June 18, 2020 – Since the state of alarm was declared, we have experienced a rapid growth of teleworking in Spain. In this context, S2 Grupo has highlighted that this is a trend that will be more installed in our country from now on and, therefore, it is essential that both companies and employees are become aware of this and implement measures that cyber-protect companies in developing their business.
“Everything we have experienced has shown how cyber-criminals are on the prowl to take advantage of any situation that allows them to make money which, in the end, is their objective. More people teleworking means more people and companies with juicy information on the net and, therefore, a greater number of possible candidates to become victims of these criminal networks”, explained José Rosell, managing partner of S2 Grupo.
“However, we have to take into account that teleworking can have many advantages and that it is a trend that is going to be increasingly installed in our labor system. Therefore, it is necessary for companies to implement measures that protect the continuity of their business, taking into account all the points where a cyber-criminal could enter and, of course, that employees become aware and know how to protect themselves against their actions,” emphasized Miguel A. Juan, managing partner of S2 Grupo.
While the implementation of VPN systems or similar software is one of the most important measures to be implemented by company IT teams, there are also some very important measures that employees can take to make their home a cyber-secure workplace.
First of all, the Internet connection must be protected. Since S2 Grupo has insisted that although the password that appears on the router is long and seems complex, it is very insecure because it can be easily found out. Therefore, it is essential to change the default password for Internet access.
On the other hand, we must prepare our computer equipment for teleworking. If the personal computer is used by the whole family, it is advisable to create a user exclusively for work. This will allow us to protect ourselves with a password and the information it contains will not be affected by the action of another member of the family, since by mistake it can be manipulated, deleted, consulted, etc. In addition, it is recommended that this user we have created does not have administrator permissions. This way, it will have limited functionality and this will protect us from unwanted installations, which serves to stop the action of malware, for example, because when trying to install the software, it will not be able to do so without the password of a user with administrator permission.
Thirdly, it is essential to install an antivirus and keep it updated. At the same time, the operating system and installed programs must be kept up to date to protect us from possible security failures.
As a fourth measure, we must learn to recognize social engineering attacks. We must bear in mind that cyber-criminals take advantage of specific situations to trick us into taking action. The most common examples are confirming bank details, entering a password to certify a service, filling out a form, etc. These cause malware to be downloaded when you click on a link. This is a social engineering attack and during this health crisis we have seen many examples of it (example: e-mails alerting us of our next shipment, from Netflix, about the tax return, discounts in supermarkets, invoice returns, etc.).
In order not to fall into these traps it is very important to recognize a false website and this will be evident because it will not start its URL by https or we will not be able to see a closed padlock next to it. The best way to be cautious is to write the address we want to visit in the browser instead of clicking on the link.