Preventing Cyber attacks on Remote Employees

The COVID-19 pandemic has solidified remote work as a new operational standard. Employers should expect this trend to only grow in the future. In fact, many major companies, such as Twitter and Microsoft, have indicated that remote work will be an indefinite option for their employees.

While this is exciting in many ways, remote work also comes with unique challenges—namely, cyber-security. This article discusses some cyber-security risks that remote employees face and offers potential solutions.

Cyber attach threats to Monitor

Hackers have been assaulting businesses since the first computer was invented, always trying new methods of gaining critical information. Depending on the size of the organisation, it may receive dozens or thousands of hacking attempts each day. These attempts are typically brushed aside by IT security teams and firewalls. However, with employees working from home, those protections aren’t as guaranteed.

The following are some of the most common cyber-threats facing individuals:

  • Phishing and vishing: Phishing is an attempt to gain personal information, such as computer passwords or other data. Hackers and scammers will impersonate a legitimate company and send fake emails to solicit this information, typically with a phoney threat.

Vishing, or voice phishing, takes this process a step further. This is when a scammer spoofs a legitimate phone number (from within the organisation or otherwise) and poses as an IT help desk, using that alias to solicit personal information. These calls may even be routed to personal mobile phones, making it harder for organisations to catch. Vishing attempts are a recent trend, but are increasingly prevalent. Employers should review existing cyber-security policies to directly address vishing.

  • Malware: Malware is a type of computer virus that is typically disguised as an innocuous program, email attachment or link. These viruses infect computers and can do any number of tasks, typically hidden to the user. For instance, they might store password data, track website activity or download personal files.
  • Brute force attacks: Brute force attacks are when hackers try logging into someone’s account many, many times. These attempts work most often when individuals reuse usernames and passwords across different accounts.

A hacker may expose the information to one account, then use those credentials everywhere else they can think of, eventually gaining access.

These cyber-threats are made worse when employees are working from home, especially if they conduct business on personal devices or don’t connect to a secure network. That’s why it’s important for employers to proactively address cyber-threats with their remote employees.

Protecting Remote Employees

There is no single solution to avoiding cyber-security threats. But there are key steps organisations can take to protect their employees and critical data. Below are some of them.

  • Behavioural analytics tracking software: This is software that monitors each individual’s computer habits. Since hackers can impersonate an employee, it’s hard to detect when someone’s credentials have been compromised. With analytics tracking software, the program would be able to spot when a user is displaying abnormal computer usage. This will depend on the individual, but it may include accessing certain files or transferring large chunks of data.
  • Automated threat detection software: This software is like antivirus programs found on many computers by default. It can scan files and detect malicious programs automatically. Automated threat detection software often pairs with other efforts, such as behavioural analytics.
  • Comprehensive work-from-home guidelines: Using personal devices to conduct business is an easy way to compromise usernames and passwords. Employers should set clear guidelines regarding acceptable technology to use (often a work-provided laptop) and work locations. For instance, cafes may be off-limits because they often have unsecured networks.
  • Employee education: Education and training are perhaps the best protections against cyber-threats. Employees should know basic cyber-security tactics, such as how to spot a phishing email, how to recognise a scam caller and how to report a potential security breach. They should also be instructed to not reuse login credentials, especially between work accounts and personal accounts.

Employee education is especially important, as hackers and scammers become more sophisticated each week. Employers should keep an eye out for new scams and alert employees as needed.

As with any successful initiative, cyber-security protocols must be observed by all stakeholders within an organisation. That means educating everyone, from the top down, about how to protect themselves and their workplace from cyber-threats. If even a few individuals go without proper training, the entire organisation could be compromised.

Commercial Crime and Fraud Exposure Calculator

As a leader within your organisation, you want to trust your employees and the people you do business with. However, the sad reality is that no organisation is immune to the threat of crime and fraud. Indeed, some experts estimate that the private sector, including both SMEs and large enterprises, loses a total of £144 billion per year due to fraud. Making matters worse, the average time before organisations discover that fraud has occurred is 18 months, long after the damage has been done.

Unfortunately, the need for commercial crime insurance is often overlooked, with many organisations assuming that they have little to no risk at all. And, while maintaining strong internal controls should be a priority for any organisation, crime insurance provides an important safeguard against the actions of dishonest individuals. With crime insurance, organisations can protect themselves against financial loss arising out of dishonest and fraudulent acts committed by their employees as well as the actions of non-employees.

To help organisations understand the level of risk they face on a daily basis, Business Insurance Service has developed the Crime and Fraud Exposure Calculator which can be accessed below.

As the business world becomes more connected, cyber-threats will get more sophisticated and commonplace.

Start educating employees about cyber-security today to better protect your organisation.

A fully accredited service delivered by professional brokers

Contact us today for more cyber-tips and other workplace guidance on 01273 789 979

Email us at hello@businessinsuranceservice.co.uk

Use our Get In Touch form to request a call-back.

For a quick, no-obligation and free quote, use our Online Quote & Buy service for instant cover.

Business Insurance Service. The business specialists.

Get in touch

    This web from is protected by Google reCAPTCHA and the Google Privacy Policy and Terms of Service apply.