In light of the COVID-19 pandemic, organisations are developing strategies to protect staff and vulnerable members of our community.
The Australian Signals Directorate (ASD) would like to remind you to incorporate cyber security into your contingency planning. As more staff may work from home, and the use of remote access technology increases, adversaries may attempt to take advantage. ASD's Australian Cyber Security Centre (ACSC) encourages Australians to remain vigilant and ensure sound cyber security practices.
Ensuring good cyber security measures now is the best way to address the cyber threat.
Consider incorporating the following proactive strategies:
- Review your business continuity plans and procedures.
- Ensure that your systems, including Virtual Private Networks and firewalls, are up to date with the most recent security patches (see guidance for Windows and Apple products).
- Increase your cyber security measures in anticipation of the higher demand on remote access technologies, and test them ahead of time.
- If you use a remote desktop client, ensure it is secure.
- Ensure your work devices, such as laptops and mobile phones, are secure.
- Implement multi-factor authentication for remote access systems and resources (including cloud services).
- Ensure that you are protected against Denial of Service (DoS) threats.
- Ensure that your staff and stakeholders are informed and educated in cyber security practices, such as detecting socially-engineered messages.
- Ensure that staff working from home have physical security measures in place. This minimises the risk that information may be accessed, used, modified or removed from the premises without authorisation.
Together we can ensure Australia is the safest place to work online.