What threats am I exposed to while home-working?
When working from home, individuals will need to connect to their home networks which are more vulnerable to cyber-threats. Home networks lack multi-layered security measures, enjoyed in the office environment. Even with anti-virus and anti-malware software installed, the home wifi is exposed to the world.
Attackers could exploit one of the many devices you have attached to your home wifi. Most of us have a wifi printer, an Amazon Echo or a Google Home, even wifi connected cameras and these wifi devices have vulnerabilities which a hacker could use.
One of these devices could be transformed into a Rogue Access Point or an Evil Twin. This changed device emulates your home router and captures the traffic moving around your network, which gives the attacker more information to get access to your corporate laptop, tablet or phone.
Most businesses that allow their employees to work from home insist on the use of the corporate VPN, which creates an encrypted tunnel between your corporate tablet or laptop and the company’s network. This is ideal for protecting the communication link and any data exchanged while the data is in transit. When you download a file or document to your corporate device it then becomes data at rest and is far more prone to illegal access by would-be attackers.
Cybersecurity is always the combination of people, policies, processes and technologies to protect its infrastructure, data and devices. VPN, Anti Malware, Firewall etc. are just a part of the solution, and of course we always recommend backing up your data, but who is securing the home wifi network?
So, what is the solution? Should you stop using the WiFi?
What you really need is a tool that lets you access your home wireless network securely, monitors the traffic to proactively keep you safe and allows corporate IT to help in the case of an incident.
This solution should be self-provisioned as you do not want to share your home network name (SSID) and logon credentials even with corporate IT staff.
What WifiWall’s Dome for Home offers is protection from cyber-attacks whilst working on your home network by monitoring the traffic over the network, identifying attacks and reporting them to corporate IT thus ensuring your data is safe.
Back to Index
ISO27001 certified – am I compliant home-working?
Some of the requirements highlighted within ISO27001 that WifiWall can help address :
Home and mobile working: It’s important to ensure that all information is kept secure even when an employee is working from home, at client premises or on the move. WifiWall solutions cover all of these instances by ensuring you are protected from cyber-attacks and data theft.
Incident management: following an information security event, organisations must be able to contain an incident and return to business as usual as quickly as possible. These organisations are required by ISO 27001 to include information security within their continuity process.
As a bonus, compliance with the UK/EU General Data Protection Regulation – GDPR is bolstered. WifiWall’s management software enables you to deep-dive into incidents and intelligently apply the correct remediation procedure.
Network security: Wired networks are protected by hordes of security solutions, but wifi networks have somehow missed out on these levels of protection. Knowing and controlling who is on your wifi network and who has access reduces the potential for unauthorised access by individuals and / or devices. WifiWall analyses, identifies and investigates all access points in the vicinity to ensure they are legitimate and do not pose a threat.
Back to Index
WPA3 is here – why would I need your service?
To understand the problem with WPA3, you have to understand 3 things:
- WPA3 was born because the KRACK attack was able to break WPA2 in 90 seconds and will no doubt enjoy the same attention from potential attackers.
- WPA2 was released nearly 16 years ago and did not become widespread until about 10 years later – mainly due to costs involved. So, it is reasonably safe to assume that WPA3 will take a while to be adopted for the same reasons.
- WPA3 will have to be reverse-compatible with WPA2 devices, otherwise no one will adopt it apart from maybe greenfield sites. This exposes the WPA3 devices to being forced to downgrade to WPA2 and thus are vulnerable once more.
WPA3 is indeed more secure than WPA2 and as we understand it, WPA3 routers will accept connections from older (WPA2) devices, and WPA3 devices will be able to connect to older routers.
Does this mean that there is still a window of opportunity for would be attackers to compromise the connections? … sadly yes.
Back to Index
Home-working – are VPNs enough? Is our data safe?
VPNs (Virtual Private Networks) are great at protecting communication with applications and databases where the data is in transit, however as soon the data is on your device then it is no longer protected by the VPN.
If you are working on your home wifi network, then the chances are that you will not have firewalls and other security systems to protect your home network as they do the corporate network. This means that attacks can come from anywhere on your network practically undetected.
They could come from an infected smartphone, a wifi-connected security camera, a wifi printer in fact any connected device, even one connected to the wifi but physically outside the four walls of your home. Until now, the only protection offered data at rest on your device, has come from anti-malware, anti-virus and encryption software installed on your machine and these solutions are not foolproof.
WifiWall’s Dome for Home, analyses wifi control and management traffic, looks for anomalies and reports on them to your corporate IT department. The analysis of the wifi network traffic enables forensics to investigate the anomaly or attack and an informed decision can be made to protect sensitive data.
The Dome for Home can force you off the home network if the attack is severe enough ( Evil Twin AP or Rogue AP) to protect the data on your device.
This additional level of security when coupled with the VPN capabilities goes a long way to proving adequate security provision with regards to GDPR and data protection.
Back to Index
How are the three services licensed?
The WifWall Dome and Dome for Home are both licensed on a two year subscription contract paid quarterly in advance. Three year licensing is available.
The Traveler solution is based upon an annual subscription for up to fifty devices paid in advance. For fifty-one devices and above we are able to offer a two or three year contract again payable quarterly in advance.
The subscription facilitates support and software updates throughout the term.
Back to Index