![](\"https:\/\/blog.antiphish.ru\/pictures\/svoldokhin_new.jpg\")
\r\nSergey Voldohin<\/a>
author
\r\n
![](\"\/pictures\/andrey2.jpg\")
\r\nAndrey Zharkevich<\/a>
editor
\r\n<\/p>\n
— It’s obvious! <\/b>
\nOur tips may seem obvious for advanced users and security professionals.
\n
\nIf you are responsible for security processes, take a look at the end of the article to learn how to set up a regular security awareness process for your employees.<\/p>\n<\/div><\/div>1. Your computer and workplace<\/h2>\n
\r\n 1.1 Ideally, if you have a corporate laptop: only use this laptop. If you have to use a personal device, make sure that only you will use it for the entire period if you choose working remotely.<\/p>\n 1.2 Lock your computer every time you leave your workplace, even if this place is your room.<\/p>\n 1.3 Do not plug in someone else’s flash drives or other USB device to your computer, even if you’re really curious. Curiosity killed the cat, you know.<\/p>\n 1.4 If you have to work in a public place, check your surroundings. This is especially important when working with confidential information or entering a password. Do not let strangers stand behind you.<\/p>\n \r\n 2.1 Learn to choose and set a strong password, even on your personal computer.<\/p>\n 2.2 Use different passwords for different services\/applications. To help you manage your passwords use a password manager.<\/p>\n 2.3 Enable two-factor authentication on all services\/applications that you use.<\/p>\n \r\n 3.1 Do not connect to unfamiliar wireless networks: it’s better to use your mobile phone as a hotspot and connect to the internet that way Internet.<\/p>\n 3.2 Use your corporate VPN whenever possible.<\/p>\n \r\n 4.1 Check that your antivirus, operating system, browser, and other applications are updated regularly.<\/p>\n 4.2 Protect your browser.<\/p>\n 4.3 Do not download or run suspicious files from the Internet, even if they look like updates.<\/p>\n \r\n Check and enable automatic updates on your mobile devices.<\/p>\n \r\n 6.1 Do not install suspicious applications.<\/p>\n 6.2 Do not click unknown links on your smartphone.<\/p>\n \r\n 7.1 Check with your security team who you can call or write to if you suspect something suspicious or an incident.<\/p>\n 7.2 Inform your security team of everything that seems suspicious. If you see something, say something.<\/p>\n \r\n 8.1 Learn to recognize the emotions that scammers try to evoke: fear, greed, curiosity, and others.<\/p>\n 8.2 Remember that these emotions turn off critical thinking. As a result, you can perform an action that you would not normally perform.<\/p>\n 8.3 Report to your security department\/service everything that seems suspicious. \r\n 9.1 The address of any website where you enter a password should begin with HTTPS.<\/p>\n 9.2 If you see an HTTPS error or something suspicious, do not enter your username or password on such a website.<\/p>\n \r\n 10.1 Fraudsters can impersonate your colleagues, partners, and managers. Feel free to call back those people from whom an email or even a message in your messenger supposedly came. When working remotely, you cannot approach a colleague in person, however, you must make sure that it is he or she who writes to you.<\/p>\n 10.2 Learn to distinguish fraudulent emails from real ones.<\/p>\n 10.3 Learn to check links and attached files in emails, on websites, and messaging apps.<\/p>\n Read the article: How to distinguish a phishing email<\/a>.<\/p>\n To organize regular remote learning for your employees, as well as the process of employee security awareness training—fill out the form on the website<\/a> or write to us<\/a> and start the process within the next business day.<\/p>\n",
"date_published": "2020-03-27T16:15:43+03:00",
"date_modified": "2020-07-24T15:48:41+03:00",
"_date_published_rfc2822": "Fri, 27 Mar 2020 16:15:43 +0300",
"_rss_guid_is_permalink": "false",
"_rss_guid": "176",
"_e2_data": {
"is_favourite": false,
"links_required": [],
"og_images": []
}
}
],
"_e2_version": 3820,
"_e2_ua_string": "E2 (v3820; Aegea)"
}![](\"\/pictures\/ENP01-Basics_01.png\")
<\/a><\/p>\n2. Passwords and access<\/h2>\n
![](\"\/pictures\/ENP01-Basics_02.png\")
<\/a><\/p>\n3. Secure Internet access<\/h2>\n
![](\"\/pictures\/ENP03-Mobile_03.png\")
<\/a><\/p>\n4. Software updates<\/h2>\n
![](\"\/pictures\/ENP02-Web_02.png\")
<\/a><\/p>\n5. Updating mobile devices<\/h2>\n
![](\"\/pictures\/ENP03-Mobile_01.png\")
<\/a><\/p>\n6. Applications and messengers<\/h2>\n
![](\"\/pictures\/ENP03-Mobile_02.png\")
<\/a><\/p>\n7. Suspicious situations<\/h2>\n
![](\"\/pictures\/ENP01-Basics_03.png\")
<\/a><\/p>\n8. Countering fraudsters<\/h2>\n
![](\"\/pictures\/ENP02-Web_03.png\")
<\/a><\/p>\n
\nRead the article: What you need to know about phishing.<\/p>\n9. Safe website browsing<\/h2>\n
![](\"\/pictures\/ENP02-Web_01.png\")
<\/a><\/p>\n10. Safe use of email, links, and files<\/h2>\n
![](\"\/pictures\/ENP02-Web_04.png\")
<\/a><\/p>\nTo security teams<\/h2>\n