Online Security: 6 Tips for Working from Home
By Christina Foggia
In recent months, it seems as though COVID-19 has taken over the world. These unprecedented circumstances have forced employees and employers to adapt in ways that many businesses were perhaps not prepared. With so many people having to make the switch to working from home, our new environment and shift in daily routine poses a number of new challenges, among them cybersecurity.
Working at the office and working from home are completely different experiences for a variety of reasons. One core difference, rarely considered, is cybersecurity. At work, companies will normally take precautions to protect office computers and other electronics from security threats. However, at home, there is a good chance employees are not set up for fool-proof online safety, despite what they may think. As many workers are being introduced to new online tools such as Zoom, and time spent online has increased dramatically, it is important to ensure that we are prepared and protected while navigating this change.
LD Human Resources has identified 6 simple ways to help employees remain secure online. Carefully considering these tips will not only help protect companies against online security threats, but provide the extra peace-of-mind we could all use, especially now:
1. Use strong passwords on all devices
This one seems obvious. Password-protecting devices including one’s laptop, smartphone and tablet is the simplest way to ensure cybersecurity is maintained. Be sure to use a different password for each device so that if a hacker were to guess one, the others remain protected. Do not make the password easy to guess, for example by using the name of a spouse, child or pet. The Federal Trade Commission suggests using at least 12 characters, as well as a mix of numbers, symbols, upper and lowercase letters to strengthen the password.
2. Lock unattended devices
This tip is important if family members, especially young children are in the home during working hours. Before walking away to grab that cup of coffee or use the washroom, be sure to lock all devices. A little one pressing send on an unfinished email to a client, boss or vendor, or worse accidently sharing corporate information with the wrong party could be detrimental.
3. Ensure a secure home network
It is essential to configure Wi-Fi with an encryption on one’s home network. According to Kaspersky Daily, if an attacker were to intercept the router, they would have access to everything including passwords, private emails and much more. Turning on encryption will scramble the information for outsiders. Either WPA2 or WPA3 are deemed safe and updated options to use by tech experts. The company IT department or local internet provider can usually provide remote assistance with this as well.
4. Tighten the security settings of video conferencing tools
Many businesses are using tools such as Zoom to connect with colleagues for daily or weekly check-ins. According to Cami Levy, a director at Info-Tech Research Group, what many do not know is that Zoom's default settings are not 100% secure. The new term “Zoom-bombed” has now been coined to refer to hackers who use the screen-sharing feature to takeover the display and release disturbing content to unknowing meeting participants. Avoid getting Zoom-hacked by implementing a password and tweaking the settings so that screen-sharing is limited to just the host. Keep meeting links and IDs private and lock the meeting five minutes after it has started to prevent intruders, and to protect the privacy of participants.
5. Beware of malicious intent from email phishing
Sometimes a malicious e-mail can find its way into the corporate mailbox. These e-mails which sometimes claim to sell “COVID-19 kits” are illegitimate and solely intended to hack a device and access someone’s personal information. If an email is perceived to be suspicious, legitimate or not, it is best to not open it on a smartphone or tablet. Wait until there is access to a computer. That way, it’s possible to hover the mouse over the link inside the e-mail, and a URL will pop up. If the URL does not seem legitimate or point to a real corporate resource, do not to click the link, but rather delete the email to be safe. When all else fails, check the address to see whether the office of the emailer is legitimate. Google mapping the location, checking the person’s name and company on LinkedIn, and a phone call to the commercial property manager where the business is located will also confirm whether the business actually exists! This may see extreme, but fake names and fraudulent businesses are unfortunately all too common.
6. Take precautions on social media
For many employees, working from home is a completely new terrain. Some people enjoy sharing their experience on social media using the #WorkFromHome hashtag on their public posts, featuring their workspace setup and family members. Although this may seem harmless, they can actually expose themselves and their company to a variety of security risks. For example, social media stories with the home-address stamped on an Amazon package could make one’s location known. Similarly, posts that share family members and pet names can give hints to hackers about account passwords.
Our hope is these tips will leave employers and employees better equipped to protect themselves, while working from home. At a time when so many of us are dealing with the heightened stress and the anxiety of living through a global pandemic, knowing we are doing everything we can to keep safe online can help reduce feelings of fear and worry.
The team at LD Human Resources is here to support employers and help them navigate through COVID-19, and beyond. We welcome you to reach out to us at any time for a complimentary consultation.
About the Author
Christina is a recent graduate of the Schulich School of Business, specializing in Organizational Studies. She plans to pursue a full-time career in Human Resources, and obtain a CHRP designation.
She is highly motivated, hard working and eager to learn and gain experience in the field of Human Resources. Her growth mindset, wide range of work and volunteer experience in financial services, customer service, law and education provide her with a vast array of transferable skills in her current role as HR Administrator. She also manages the social media pages for LD Human Resources and lends an aesthetic design eye to everything she touches.