The NSA’s cybersecurity info sheet contains cybersecurity recommendations and specific security tips for remote workers, organizations, and all internet users. It includes tips like implementing network segmentation, securing WiFi routers, and using remote access VPN solutions. The NSA also highlights general best practices like covering up webcams and microphones, regularly rebooting devices to clear any malicious software, addressing email phishing threats, and more. In the aftermath of the COVID-19 pandemic, a large percentage of the world’s workforce has shifted to a remote or hybrid work model. Many feel this is a more efficient work model, and statistics show that two-thirds of workers would look for another job if their ability to work from home is curtailed. “In the age of telework, your home network can be used as an access point for nation-state actors and cybercriminals to steal sensitive information,” Neal Ziring, NSA Cybersecurity Technical Director, said in a press release. “We can minimize this risk by securing our devices and networks, and through safe online behavior.”
Key Takeaways from the NSA’s Info Sheet
The NSA recommends regularly upgrading and updating all equipment, including WiFi routers, and setting up WiFi Protected Access (WPA) via the router’s configuration page. The agency also suggests backing up all data on offline external drives, disconnecting internet-enabled equipment when not in use, and separating WiFi into at least three networks — a primary, guest, and internet of things (IoT) network. Network segmentation like this is vital as IoT devices are vulnerable to hacking. The NSA recommends creating a separate user account on the operating system — which should be set to automatically update itself — for everyday activities and using the default admin account only for installations, maintenance, and updates. Furthermore, the NSA urges remote workers to use a virtual private network (VPN) to connect to their internal corporate network and ensure they only interact with websites that display a lock symbol in the address bar. “This provides an added layer of security,” the agency said. You can refer to the NSA’s Remote Access VPN Solutions CSI for further information. Another security tip is to ditch the default ISP-provided router and purchase a personal VPN router, such as an ASUS RT-AX86U. When configuring WPA 2 (or preferably WPA 3) on a router, the agency said users must change their router’s default password to one at least twenty characters long and set the WiFi network’s name to something unique. “If your ISP supports IPv6, ensure your router supports IPv6 firewall capabilities,” the NSA added. Since most remote workers use an office collaboration tool such as Microsoft Teams and Slack, the agency recommends reading its guide to using these platforms safely.
Suggested Internet Best Practices
In general, all internet users need to beef up their cyber awareness to avoid risks like interacting with malicious email attachments and malicious ads or becoming a victim of spearphishing, which can lead to malware infections and account hijacking. To address this, the NSA recommends the following;
Avoid opening attachments in emails from an unknown or suspicious sender. Avoid repeating the same password on more than one account. Configure your email client to use Secure IMAP or secure POP 3. Upgrade to a secure and private browser (such as Brave or Firefox). Avoid oversharing personal info and media on social media. Use multi-factor authentication across accounts. Use a password manager instead of storing passwords on a web browser. Use a VPN on public Wi-Fi, or better yet, opt for a cellular network in this case. Ask your workplace to give you a device to use for work instead of using your device. Opt out of tracking and personal information collection wherever possible and reject cookies.
For more information on how to stay safe online, check out our cyber hygiene tips.