Security before we share!
 

Hey All!
Many of you have already worked from home and some are still doing it,
Working From Home is a tough ask for the companies who have never adopted this culture in years, but due to this pandemic they have to adopt it for self existence and to compete.
This WFH have led to many security concerns and to let us to think over the security measures that are necessary to take.
But above all the most crucial part is how to avoid leaking of the documents, pdf and zip files that we share on the platforms like skype or zoom.
Because these platforms are much vulnerable to hackers and confidential documents can ever land to their hands.
so is their a way to avoid such risks?
As most of the companies are not security centric and they don't know much about the security protocols and sops to follow while working from home.

So anybody out their who is currently working from home and have adopted some standards of work please share.

Thanks in advance

I'm working from home and the first thing I did was delete my Instagram account. Wait a sec, that can't be right, I've never had an Instagram account. But if I did I would delete it.

The company should invest in a VPN that uses 2FA ( Microsoft authenticator and Cisco AnyConnect if you have Azure AD) and host documentation on prem. Force people to use RDP after connecting to VPN to get to their workstations that are still on-site. That way, transfer of documents is still internal and anyone who needs access will need 2FA and VPN access. Block VPN access using security groups and mac ID if there aren't a lot of you.

Well i forgot to mention that I am already using dedicated servers provided by my office to access office resources and yes we have also placed different SOPs for communication over such platforms.
As communication is not encrypted but files can, so we place passwords on documents and folders before sharing them, so if they get leaked, then it might not harm us as decryption of those keys is quite a difficult procedure and only professionals can access them.
Plus we are also using Lastpass for password sharing, so passwords can't be leaked.
But I am bit worried about the zip files, as there are certain files and folders that takes more spaces so we share them by converting them to zip files and password protect them, but are these only methods reliable?
Or is there any other alternative way to send big data encrypted?
Reference:
https://www.lastpass.com
https://www.purevpn.com/internet-pri...ect-a-zip-file

I still can't put my finger on why you're on this forum

Be careful. He will say you're assaulting him through the internet.

Processed meat in a can.

I happen to like that. Thinly sliced, fried in a pan.

Is he wrong? At least I didn't try to convince him that next gen 86 will be turbo

Go read his post history.

Haha I know. I'm saying I did assault him.

I reported him because.....WTF

Once it hatches processed meat exists outside of a can as well.

i figured out what i'm having for supper later!

I thought I was one of the few!

add a slice of velveeta, serve with bacon.

:drool:
https://encrypted-tbn0.gstatic.com/i...IS-ww&usqp=CAU

Dude he drives a Corolla that's automatic OG status in AE86 FT86 GT86 [emoji289]

Sent from my SM-G975U using Tapatalk

He put his finger in a corolla..............quote blending is fun

A Corolla put his finger in a dude?

Come on now guys, don't ruin his thread.

:D

Stop.

but if we stop, the hackers WIN!

and they kill BABY SEALS!

Plot twist!

the hackers ARE BABY SEALS! :eyebulge:

Ffs, first it was the bush fires, then the hail storm, then coronavirus and now we've got to deal with the f*cking baby seals.

THAT is SICK!- :barf:

Not if they're over the age of consent.

When did the Navy start recruiting infants.......and to be seals too


Actually that makes sense..............


Their the Infant Tree..

The key to securely working from home is to never reveal the strategies you use to keep things safe while working from home. Keep the bad guys in the dark as much as possible.

Gotta be super crispy

At first I used to like eating it as a kid. Then as I grew older I found the taste to be utterly repugnant.

I prefer Vienna sausages.

My oh, my, your taste has become quite refined - :thumbsup:

:D

I suddenly feel a whole lot better for any one-off security related posts I've ever made on this forum.

Also no, Baby Seal isn't a hacker group. Dynamite Panda and Refined Kitten totally are, though. Friggen Crowdstrike, man.

https://www.crowdstrike.com/blog/meet-the-adversaries/

But what's more relevant is where is the OP? I'm thinking he should be fairly secure at home if he follows our advice.