Connect with us

Strategies

Tips for staying secure while working from home

Because many devices attached to home networks don’t get patched or updated as frequently as corporate devices, the most common exploits detected so far in 2020 have targeted older systems. Nearly two-thirds of attacks targeted vulnerabilities disclosed in 2018, and a quarter targeted vulnerabilities from 2004.

Published

on

Due to the global pandemic, nearly two-thirds of companies have moved half or more of their employees to telework. Sixty-two percent of employed Americans, for example, say they have worked from home during the crisis, with the number of remote employees doubling between March 13 and April 2 of 2020, and this is not just a temporary change. Nearly a third of all organizations with remote workers expect that half or more will continue working from home after the pandemic. 

The security implications of such a dramatic transition in such a short period of time cannot be overstated. Under normal circumstances, moving an entire workforce from secure IT environments to home networks with very little cybersecurity would take long-term planning and preparation. But that was not an option in 2020. As a result, 32% of respondents to Fortinet’s 2020 Securing Remote Work Survey found that setting up and managing secure connectivity to be the most challenging aspect of switching to telework.  

Part of the problem was that the devices at the company’s core network were not designed to manage the volume of VPN connections required. As a result, many connections were not secure. Or even if they were encrypted, existing firewalls were incapable of inspecting VPN tunnels to ensure they weren’t being used to deliver malware – at least not without significantly slowing down connections. 

But the other part of the challenge is that many home networks were not setup to support the bandwidth requirements of VPN, let alone bandwidth-hungry business applications such as video conferencing. In addition, end user devices (many workers began working from home using a personal device) were often unpatched and unsecured as were other devices connected to the home network. These challenges made home networks an ideal target for cybercriminals. 

Cybercriminals Are Targeting Remote Workers 

And as one might expect, threat researchers saw a significant shift in the behavior of cybercriminals. According to the latest Threat Landscape Report from FortiGuard Labs, global sensors detected that the top attack targets identified in the first half of 2020 switched from targeting corporate devices and applications to things like consumer-grade routers and devices such as DVRs normally attached to home networks.  

There was also a significant increase in attacks targeting end users that used concerns about the coronavirus to lure them into clicking on malicious web links or open attachments infected with ransomware or other malware.

Part of the problem was that the devices at the company’s core network were not designed to manage the volume of VPN connections required. As a result, many connections were not secure.

The FortiGuard Labs team saw an average of about 600 new phishing campaigns per day during the spring. And because home users were no longer protected by corporate security devices, web-based malware became the most common attack vehicle, outranking email as the primary delivery vector used by cybercriminals for the first time in years.  

And because many devices attached to home networks don’t get patched or updated as frequently as corporate devices, the most common exploits detected so far in 2020 have targeted older systems. Nearly two-thirds of attacks targeted vulnerabilities disclosed in 2018, and a quarter targeted vulnerabilities from 2004. 

Seven Recommendations for Remote Workers 

During the last several months, IT teams have been scrambling to close the security gaps in their remote worker strategy. But while 92% of organizations report budget investments to address teleworker security, end users are still the front line of any security strategy – and never more so than now. Here are a few suggestions of what they can do to reduce risks. 

  1. Learn to Spot Attacks: Many organizations are sponsoring training programs to help their workers identify suspicious emails, websites, text messages, etc. In addition, there are free programs available online to provide end users with essential security training and information. And make sure everyone at home using the network, from roommates to children, get cybersecurity training as well. 
  2. Harden Passwords: Another easy step is to simply make passwords harder to guess, and also use different passwords for different accounts. To manage these passwords, use a secure password management system that can remember passwords. Then all anyone needs to remember is the login information for that one application. 
  3. Use Multi-Factor Authentication (MFA): Also known as two-factor authentication, MFA combines something a user knows, such as a password, with something they have, such as a fingerprint or a security token. MFA should especially be used when accessing financial information or logging onto the company network. 
  4. Patch Home Devices: Have users look at all of their devices at home and make sure they are running the latest versions of their operating systems. Even gaming and entertainment systems have options that let users check to see if they are running the latest version. 
  5. Secure Home Networks: This is probably a good time to consider adding or upgrading a security application to protect the home network and devices from attacks. In addition, many home routers now include gateway security which should also be enabled. Some cable operators and internet service providers also provide free security. Remote workers should make sure that logging onto the home WiFi requires a password. They should consider an email gateway that can detect and filter out malicious email attachment and links. 
  6. Improve Device Security: New advanced endpoint security solutions, known as endpoint detection and recovery (EDR), not only provides better threat detection, but also prevents infections that manage to get onto your device from executing their malware. EDR solutions should not only be applied to remote worker devices, but also on other endpoint devices in the home.   
  7. Upgrade Internet Connections: Remote workers should consider upgrading their internet service so they can run business-critical applications even when others are streaming movies or playing online games. Companies should consider providing funds to help offset the cost of a bandwidth upgrade. 

Enhance Your Remote Work Security Now 

Cybercriminals will continue to target remote workers, with no signs of letting up. Adding these seven steps to any corporate security strategy is the right way to begin protecting today’s distributed networks that include remote workers. 

Strategies

‘Ugh, not that song!’ Background music impacts employees

When background music at a workplace is out of sync with what workers need to do their jobs, it can affect their energy, mood – and even performance.

Published

on

Have you ever gone to a store or a restaurant where the music was so annoying that you walked right out? Now imagine what it must be like for the employees.

In a study, researchers found that when background music at a workplace is out of sync with what workers need to do their jobs, it can affect their energy, mood – and even performance.

“Music that doesn’t fit what an employee needs to feel energized, manage emotions, and focus on task can have a real negative impact,” said Kathleen Keeler, co-lead author of the study and assistant professor of management and human resources at The Ohio State University’s Fisher College of Business. “We found that a music misfit can lead employees to feel more fatigued, have trouble focusing, and not really enjoy being at work. And that in turns prompts them to engage in behaviors that can harm the organization.”

The problem is worse for people who have difficulty screening out background noise from their environment, the study found.

It is an understudied issue, Keeler said.  About 13.5 million people work in occupations where background music is common. But the music is often chosen with only customers in mind.

“It is a mistake for managers to assume that music doesn’t affect employees,” Keeler said.

The study was published online in the Journal of Applied Psychology.

Study in focus

The researchers conducted two studies. One study involved 166 full-time workers who participated online. Before they began, participants rated how much they needed four features of music: volume, speed, complexity and emotional intensity. The participants then listened to one of two playlists while they conducted a creativity task.

One playlist was upbeat, happy pop music with moderate complexity. The other was slower, more somber music played at a lower volume.

After completing the task, participants rated how much the music they heard fit their needs for volume, speed, complexity and emotional intensity.

Results in focus

The findings showed participants experienced a negative impact if the characteristics of the playlist they listened to was out of sync with what they said they needed. Those who had a music misfit showed a decrease in pleasant feelings and emotions and also more cognitive depletion – a feeling of mental exhaustion, Keeler said.

The problem was particularly acute for people referred to as non-screeners. “Stimulus screening” is the ability to focus on one sensory input at a time. Non-screeners have difficulty doing that and – in this case – were unable to ignore the music in the background while they concentrated on their task.

“The bad effects of music misfit are worse for those who are non-screeners,” Keeler said. “They have difficulty blocking out the music and so they feel less positive emotion and feel more depleted after listening to the music that was out of sync with what they needed.”

The second study was a real-world sample of 68 workers in health care offices, retail stores and dining halls where background music was a feature of their everyday work life. Participants completed three email surveys every day for three weeks about their musical needs, the music they heard, their moods, cognitive depletion and various actions at work.

The findings confirmed results of the first study and added another wrinkle: Music misfit had an impact on job performance.  Participants were more likely to act in ways that hurt the company – and less likely to do positive things – on days when they felt out of sync with the music they heard.

Music affects actions

Negative actions could include working more slowly, talking negatively about the workplace with other employees, and pilfering office supplies. Positive actions included helping a fellow worker on a project that was outside their direct responsibilities.

“It can affect the bottom line of companies if their employees are not being productive because they are being drained and distracted by the music they hear all day,” Keeler said. “Their performance suffers.”

The results suggest that employers need to take into consideration the musical wants and needs of their employees.

“Employers should try to strike a balance between making sure their music appeals to both customers and employees, because this is not a trivial matter,” Keeler said.  “If their employees aren’t happy, that is not going to be good for the business.”

Employers can also ensure there are places in the workplace where employees can escape the music during their breaks. In addition, they could invest in earbuds using smart technology that allows wearers to hear conversations from customers while screening out some background noises, including music.

And while this was not a focus of this study, the results also suggest that workers may be happier and more productive if they are allowed to listen to their own music when appropriate.

Let them listen to their music

“I know some managers are reluctant to allow employees to listen to their own music, but our research suggests that there are a lot of benefits, including productivity, engagement and well-being,” she said.

Harshad Puranik of the University of Illinois-Chicago was co-lead author.  Other co-authors were Yue Wang of the University of Illinois-Chicago, and Jingfeng Yin of The Hong Kong, Polytechnic University.

Continue Reading

Strategies

Crucial electrical safety advice for customers 

Before getting started on outdoor projects, it is important to be aware of the electrical safety hazards you may encounter.

Published

on

Spring is about to arrive, and the longer days will inspire business owners to get outdoor projects underway. But before getting started, it is important to be aware of the electrical safety hazards you may encounter.

“Starting on outdoor projects is a great way to welcome the warmer weather, but it’s crucial to be aware of potential electrical hazards at home,” said Tim Frankenberg, fire safety engineer for the St. Louis-based Ameren Corporation. “A little prevention goes a long way in keeping your family safe.”

The St. Louis-based Ameren Corporation recommended four electrical safety hazards to avoid this spring:

Electric equipment near water

Water and electricity don’t mix, so a great rule of thumb is to keep electric equipment at least 10 feet away from wet areas. You should also plug into ground fault circuit interrupters (GFCIs), which are designed to shut off the power as needed to prevent a shock. These are typically found in kitchens, bathrooms, garages and outdoors. It is highly encouraged that GFCIs are tested monthly. 

Underground utilities

You can disrupt utility service, including electric, natural gas and more, and even put your life in danger by failing to have underground utility lines clearly marked before digging. Plan the simple do-it-yourself projects that may seem small, including planting trees or installing a mailbox.

Overhead power lines

Stay clear of power lines and wires when trimming vegetation, raising ladders and performing outdoor home maintenance. Always assess your surroundings while trimming or working in your yard or simply call a certified professional to safely handle the work. Remain at least 10 feet away from any overhead power line near your home. 

Indoor electrical cords and electronics for outdoors

Before plugging into an exterior electrical socket, double-check that your cords, lights or fans are rated for outdoor use. Look for labels on packaging that clearly mark them as suitable for outdoor use. Also, avoid running cords through door or window openings where they can be damaged, and pair them with GFCIs instead. 

Continue Reading

Strategies

How your business can cut costs related to plumbing

Business owners should take proactive measures to identify and fix plumbing leaks heading into the warmer months.

Published

on

Business owners should take proactive measures to identify and fix plumbing leaks heading into the warmer months.

“Warmer temperatures are headed our way as spring begins to take hold,” Levi Torres of High 5 Plumbing, Heating, Cooling & Electric said. “Pretty soon, air conditioners will stay on a little longer and energy bills will begin to rise. One of the best ways to offset those costs is to check your plumbing for any leaks that could be increasing water usage.”

According to the EPA, people wastes nearly 10,000 gallons of water every year due to unknown leaks in the home, offices, et cetera. In addition, 10% of establishments waste 90 gallons or more per day.

To help your business cut costs related to plumbing, the experts at High 5 recommend the following tips to help recognize plumbing leaks:

  • Check the flapper in the toilet periodically to ensure it isn’t old or worn out. This can cause the toilet to silently leak thousands of gallons of water a year or cause it to flush on its own. Replacing the flapper can be an easy, cost-effective way to prevent toilet leaks.
  • Inspect the washers and gaskets on your faucets. Old washers can be a primary culprit for leaky faucets, causing a home to waste more than 3,000 gallons per year.
  • Check the showerhead for frequent dripping after usage. A showerhead that drips 10 times per minute can waste over 500 gallons per year. Simply tightening the connection or replacing the showerhead can be a cheap option to prevent leaks.

“While some simple leaks can be prevented by replacing small parts, it’s always important to call a licensed plumber if you suspect you have major leaks inside your home,” said Torres. “Leaks behind a wall or with a water heater can be much more complicated and need professional attention. If left untreated, they can cause thousands of dollars worth of damage. Never leave a leak left untreated.”

Continue Reading
Advertisement
Advertisement

Like us on Facebook

Trending