Published Date: 2021/11/14 by: DaVieS
No Question dreams comes true to all hacker or cyber criminals.
Starting from human stupidity that thousands of webpages still have their .git repository on the root, now imagine if all people suddenly wants to work home.
Most of companies never prepared for this.
What to do or not?
Yes VPN is secure but not all the case, for example what Windows provide by default PPTP or L2TP is not secure at all.
Instead like openVPN would be a great choice, but config does matter, strongly recommended to require peer certificate and also a password for.
But honestly, so many changes so many stress so less time, what will the users do? writing their credentials into a paper or a text file in the Desktop. So therefore why VPN? why anything if users do these kind of errors..
Now at this point the resource is outsourced with a local 'safe' machine which can be remotely used as Desktop for every user.
Now maybe time to buy some Microsoft stocks if they have for sale. This could be safe or safer than VPN for a normal 'Windows' user, but the companies have enough license? no, just crack -it <- another security issue by modifying Windows binaries or installing some unknown third-party software which makes deep system changes to hack out the RDP sessions.
So .. is there any option left? Okay SOPHOS & Active Directory & VPN combo, but this infrastructure if you dont have, you wont have enough time to deploy asap.
Question is what is the critical data to users have to keep their work?
So in home office the users can work with limited resource, why dont just give their minimal DATA to keep their work at home? Why would you want to give them the whole DATA you have risking a leak or even-worse a trojan into the server over RDP, or a yummy ransomware.
Give them an enviroment whatever you choose with minimal data and focus the security as a CEO you should feel bad yourself over-time while they are working through the whole internet.
Make backup more frerquently and teach them.
This is a keyword, teach the users what they have to care over.
If you like the article then don't forget to share!
|
||
Is Rust better than C/C++ ?
Rust is relatively new programming language which offers full memory management and garbage collection, while C/C++ already has a decent history..
Network Update
Proudly announcing that in the past days we expanded our infrastructure and our services will become more stable and quickier at us west, us..
Windows 10/11 Disable Search and annoyings on start menu
The one of the most irritative feature on windows is a "new" start menu which sends every input into Microsoft related services. Also if you have..
BVCP 2.0.x Released
Our one of the most popular FREE-TO-USE Software BVCP reached the next milestone.Big thanks to the active community, a ton of feedbacks received..
Welcome 2024
We have been busy at 2023. Im personally very happy to see a lot of new technologies especially EV related researches.We continued to support our..
FreeBSD 14 fresh install breaks mc (Midnight Commander) subshell support
We are very happy to announce that - if you did not know already - one of the best Operating System released a new version. FreeBSD 14. This..
ZFS Replication Software
While we are working on BVCP 2.0 just another software made to handle ZFS Replications over multiple nodes. The software yet not released..
Bhyve UEFI drops into EFI shell, Linux wont boot Easy Workaround
EFI works that way that the installer places a file into a FAT32 partition in a regular directory as called "BOOT". The usual full path of..
Nexus Datalogger 2023
We're proudly present that we released out our next version of datalogger software as commerical product. Our first version of Datalogger..