The NSA has some pretty obvious security advice for remote workers
>
The National Security Agency (NSA) has published new advice for home workers to secure their corporate devices and home networks.
In issuing fairly basic and standard advice, it noted that those in telecommunications in particular should ensure their user and network devices are kept up to date to avoid compromises with their own security posture and that of their organization.
It also recommended backing up data regularly and disconnecting online devices from your network whenever possible.
Router security
When it comes to malware, the NSA recommended rebooting your devices — including your routers — on a regular basis, as this can help “remove implants.” This is effective for dealing with less stubborn forms of malware and it is recommended that you do this at least once a week.
Enabling automatic updates was also recommended by the agency, as was using an account on your work device that doesn’t grant you privileged access to the machine.
To protect you from being spied on, it recommended – somewhat ironically given the agency’s track record – that you cover your webcam and disable microphones in case your system has already been breached.
You should also use a personal router rather than one provided by your ISP as they may not provide enough regular updates to keep them secure.
“To minimize vulnerabilities and improve security, the routing devices on your home network should be updated to the latest patches, preferably via automatic updates.”
Users should also be careful not to use them after their end-of-life, as they will no longer receive the critical updates and patches to keep them safe. Legacy devices with unpatched vulnerabilities are one of the main ways threat actors can penetrate your network.
“In the age of telecommuting, your home network can be used as an entry point for national actors and cybercriminals to steal sensitive information,” said Neal Ziring, the agency’s cybersecurity technical director.
“We can minimize this risk by securing our devices and networks, and through safe online behavior.”