August 28, 2020

How to know if remote access is secure at your company

Employers have transferred employees to remote work to protect them from the coronavirus. But not all companies have taken care of their own protection, although remote access – VPN, DaaS, RDP, etc. – is a type of connection that requires a change in the monitoring focus and special measures to protect against cyber attacks. These measures are somewhat different from traditional ones when employees (and their work devices) are inside the corporate security perimeter. There is a whole list of reasons for this – from vulnerabilities in protocols and technologies of remote access, to the fact that employees connect to the internal network from personal devices that are not even protected by antivirus. To conduct a quick and comprehensive assessment of the security level of remote access, the best option is to organize a penetration test. The essence of the method is as follows. The company turns to a third-party organization – experts in information security (IS), who simulate various options for cyberattacks. Using special software and manual hacking methods, experts identify all kinds of risks, errors, and “holes” in the information system, including those critical for remote access. After that, the customer receives a detailed report with a description […]