Today, there is an increase in the number of cyberattacks on computers, equipment, and unprotected home networks of company employees who have switched to a remote mode of operation. There are basic tips on increasing video-conferencing cybersecurity.
Security aspects in the online format
During a pandemic, video-meeting services provide a coordinated process for teams, staff from a variety of firms, and teachers and students. The high diversity of such programs is the reason for competition, continuous improvement, and the struggle for secure communication. Like any information system, a video communication system can be compromised: leaks during negotiations, hacking attacks, vandalism or user affiliation, inappropriate behavior to destabilize the meeting or accidental actions by users or administrators.
For companies, this can pose a number of challenges, not only in terms of the way they work but also in terms of data protection. We see companies striving to meet the often very urgent needs of their employees for remote work solutions while ensuring the security of such IT solutions.
How to organize secure remote work online: basic tips
There are top 8 recommendations to organize a secure video-conference:
- Install access control
Most video meeting platforms allow you to create user groups or restrict access through an Internet domain, so only a limited number of people can join the call. For additional video conferencing security, set a password. The initiator of the conference can also have complete control over who joins the conversation, leaving users in standby mode.
- Configure secure file transfer
Many applications encrypt video by default. Some services only encrypt chat by default, so you need to set up video encryption yourself. Sometimes applications also allow you to set limits on the types of files that members can send. For example, you can prevent sending .exe executables.
- Manage participant engagement
Most platforms also allow you to control who and when joined the call. You can track which of the registered members has joined, or the list of participants that can be downloaded after the call. The list of participants also often has information on the time of connection and disconnection of users – so you can check whether the user was present during the call.
- Restrict screen access
Restrict the screen sharing for the host or the person who chooses the host. This will avoid the risk of data leakage. When sharing the screen, distribute only the necessary programs, not the entire desktop. Because even the icon or file name on the desktop can contain sensitive information.
- Use VPN
Check all services and equipment used for remote access for updated firmware and security patches. Another option is to access these services only through a VPN protected by two-factor authentication.
- Terminal remote access
When working from home computers, it is recommended to use not direct, but terminal remote access to the network to a virtual workstation with all installed information security tools.
- Choose a reliable software
Do not use third-party services to access the corporate network that connects through intermediate servers and independently conduct authorization and authentication. Choose only trusted services like board portals for organizing online board meetings. Make sure the video conferencing software provides encryption of data sent (transmitted) on the network and preferably end-to-end encryption;
- Waiting rooms
IT administrators can force lounges to be enabled at the account, group, or user level. Lounges can be activated for all members or limited to guests who do not belong to your account.