Need advice to step up my cyber security due to working remotely - Colleagues have recently been hit with malware and session hijacking
First, this is 100,000% something your work should handle. Their IT team/service should set you up with realtime protection and a dedicated machine.
As for your listed options:
1. 2nd PC: Depending on your router, you should be able to set up a Virtual LAN network which only has that machine on it. Nothing on that machine should be able to be see anything on your main network. I can't really explain how to set up a VLAN because it varies by router (lower end ones sometimes don't even have the option). That isolates your stuff from any nastiness
2. You can run a VM, it's pretty easy in Windows, and no, you wouldn't have to re set up everything every time. You can even hand it an entire independent SSD. I think you could even pass in a VLAN, though you might have to buy a PCIE network card and it does get a bit more complicated, but great learning opportunity
3. App based 2FA should keep the passwords safe unless the computer is infected at which point as soon as you've unlocked the vault they can scrape it in its entirety. As for password complexity goes.... meh, you could have a 4000 character fully random password and still get it hacked. Complexity is to slow down crackers, but they need access to the stored password to even attempt it anyway. It's more of a risk if there is a physical attack vector (someone connects to your wifi)
4. Most antivirus programs are operating off the exact same virus signature database. The next step is an organization wide realtime threat protection which given that yall are being targeted means it should have been implemented a while ago
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now