Corona Virus | COVID-19 | nCov-19 Makes internet vulnerable

Published Date: 2021/11/14 by: DaVieS

Corona Virus | COVID-19 | nCov-19 Makes internet vulnerable
Corona Virus | COVID-19 | nCov-19 Makes internet vulnerable

Making people work from home has a big security threat.

No Question dreams comes true to all hacker or cyber criminals.
Starting from human stupidity that thousands of webpages still have their .git repository on the root, now imagine if all people suddenly wants to work home.

Most of companies never prepared for this.

What to do or not?

Using VPN.

Yes VPN is secure but not all the case, for example what Windows provide by default PPTP or L2TP is not secure at all.
Instead like openVPN would be a great choice, but config does matter, strongly recommended to require peer certificate and also a password for.

But honestly, so many changes so many stress so less time, what will the users do? writing their credentials into a paper or a text file in the Desktop. So therefore why VPN? why anything if users do these kind of errors..

Using Remote Desktop

Now at this point the resource is outsourced with a local 'safe' machine which can be remotely used as Desktop for every user.

Now maybe time to buy some Microsoft stocks if they have for sale. This could be safe or safer than VPN for a normal 'Windows' user, but the companies have enough license? no, just crack -it <- another security issue by modifying Windows binaries or installing some unknown third-party software which makes deep system changes to hack out the RDP sessions. 

So .. is there any option left? Okay SOPHOS & Active Directory & VPN combo, but this infrastructure if you dont have, you wont have enough time to deploy asap.

 

Okay smartass, then WHAT?

Question is what is the critical data to users have to keep their work?

  • Really need that past 5 years of documents?
  • Really need all the folders?

So in home office the users can work with limited resource, why dont just give their minimal DATA to keep their work at home? Why would you want to give them the whole DATA you have risking a leak or even-worse a trojan into the server over RDP, or a yummy ransomware.

Give them an enviroment whatever you choose with minimal data and focus the security as a CEO you should feel bad yourself over-time while they are working through the whole internet.

Make backup more frerquently and teach them.
This is a keyword, teach the users what they have to care over. 



If you like the article then don't forget to share!


nPulse.net going dark (again)

Back in time the most of the websites were DARK, specially the tech ones and forums. Then people started to use more slick, curved and light..


sysAdmin ToolBox v2.3.0

We just uploaded the very new release of this application.We added new function called: WiFi Discovery I'm sure everyone will love that, so..


New Software (PFR)

Our new Software released under Open Source license. PFR is a cross-platform easy-to-use powerfull tool to recover broken files that caused HDD..


BVCP for FreeBSD Bhyve Released today!

I'm happily announce that, one of our greatest product just released for the public! BVCP is a Webcontrol interface for FreeBSD Bhyve aka..


Upgrade into FreeBSD Bhyve was successfull

As I told before we were started to migrate our infrastructure from Linux/KVM (FreeBSD) into FreeBSD/Bhyve (FreeBSD). I announce that we..


Hello Bhyve, Im moving in ...

We are performing an update at this weekend, there will be some interrupts in our services. Please be patient! ..


Launched BVCP Today!

FreeBSD Bhyve Web Control Panel launched today as planned as pre-release.Project started at 2021.05 month and yet ready for production use..


bhyve webadmin, web control panel

FreeBSD uses bhyve as hypervisor! So.. no questions we are using FreeBSD for web, mailing, devel, for everything.Now we would like to drop KVM /..


Side Quest, BVCP WebUI for FreeBSD Bhyve

Okay, so we are in middle to upgrade and realign our infrastructure and happened days ago with a random facebook talk, someone hinted FreeBSD..


Corrupted innoDB on linux ext4, data recovery

I could say I saw a everthing but not, here is the case: There is a VM Host with ZFS Storage, direct attached, and there is a Linux VPS with ext4..

All rights reserved nPulse.net 2009 - 2021
Powered by: MVCP 2.0-RC / BVCP / ASPF-MILTER / PHP 7.4 / NGINX / FreeBSD