The Australian Government has issued a media release identifying Russia as responsible for targeting commercially available routers around the world in 2017. While Australian organisations were affected by this targeting, there is no indication that Australian information was compromised. Businesses are reminded to be vigilant and take all steps to keep your information safe. Small businesses can keep their information safe by:
- Using a firewall to keep out unwanted connections and review the firewall logs for unusual activity on your network. For example, you may notice something that suggests an intrusion.
- Restricting access to the minimum services and functions necessary for staff to carry out their role.
- Using strong authentication that requires both a password and token-based or two-factor authentication.
- Deleting remote access privileges for staff once they are not needed. For example, do not let someone who has left the company retain access to your network.
- Using Virtual Private Network (VPN) software to provide a high level of encryption for access to your network remotely.
- If you allow staff to connect to your business network using personal equipment, including home computers and mobile phones, ensure they have installed the latest software updates, have up-to-date security software and have received security awareness training.
For technical advice on how to strengthen vulnerable devices and prevent malicious cyber activity, visit the Australian Cyber Security Centre website. For more information, please visit: www.staysmartonline.gov.au