The pandemic has created a COVID-19 increased awareness of the importance of cybersecurity a scenario such as the current one, in which many organizations, institutions and professionals conducted the bulk of his professional and personal remotely.
Telecommuting is widespread, as did the use of tools and applications that allow à distance, to give continuity to the roles and responsibilities that many professionals assigned to it. Among these tools, there are applications that allow the organization of virtual meetings and video calls .
The response to security incidents of Cryptologic, Centre National (CCN-CERT), conscious of the use increasingly accentuated this type of technologies, has published a series of recommendations of the security council that, at a broader level, would improve the safety of this type of communications. Among the recommendations, is the Only download the applications of markets records, such as Apple Store or Play Store, the constant updating of applications for their security or the implementation of various measures to carry out a proper configuration of the virtual meetings.
All these aspects are reflected in the
infographics published by the CCN-CERT
, which aims to help organisations to increase the security of communications are maintained through virtual meetings and through the use of applications to facilitate such calls.
Safe configuration video call and virtual meetings
The meetings and videoconferencing applications are poorly protected a magnificent vector for cyber attack. For this reason, it is fundamental to respect a minimum requirements of security in the configuration of virtual meetings and carry out
good practices
in order to minimise the risks associated with the use of information and communication.
To this end, the CCN-CERT has made available to users two documents detailing the procedure for certain applications configuration of widespread use to carry out virtual meetings and shows some of the safety guidelines for the configuration of those meetings. It is also taught visually the procedure for implementing those recommendations.
In the abstract “
The use of Zoom and its implications for security and privacy. Recommendations and good practices
” are some of the safety guidelines for the configuration of virtual meetings and is also taught the procedure for implementing those recommendations.
Similarly, the document
CCN-STIC 885-D safe configuration guide Microsoft Teams
, elaborates procedures to improve communication and collaboration of the task teams, to strengthen collaborative functions of this platform in the cloud.
Further efforts to ensure telecommuting safe and promote a culture of cybersecurity
Under the circumstances generated by the pandemic of COVID-19 CCN-CERT, has been strengthening all its capabilities for the defence of cyberspace english and, in particular, public sector and the strategic sectors. This has created the section ‘
CiberCOVID19
’ in its website, which provides information of interest to prevent the cyber threats during the crisis the coronavirus. This section includes a total of six sections:
- Awareness-raising , which allows access to the recommendations and advice of the security council to the awareness of malware, and which are also published in social networks with NoTeinfectesConElMail hashtags # and # CiberCOVID19.
-
Teleworking
with respect to the report of good practices CCN-CERT BP/18 safety recommendations for strengthening telecommuting and monitoring
.
- Alerts and warnings (which reported the detection of malware campaigns that use issues and narrative related to the pandemic of Coronavirus/COVID-19.
- Indicators of commitment where are compiled in three black lists indicators to the detection and blocking of many of the campaigns run COVID-19 situation.
- Training section, which contains all educational activities, carried out by this agency, in the area of good practices and/or tools that can contribute to work safely.
- Reports (in the availability of documentation developed by the NCC to address, from the point of view of the cybersecurity, some of the highlights generated in this crisis.
