"Security Check Essential During Summer Vacation"...AhnLab Releases Cyber Security Checklist

[Financial News]  AhnLab announced a 'Cyber Security Checklist' on the 14th that organizational members can implement before, during, and after vacation to minimize security blind spots during the summer vacation season.
This checklist includes security rules that organizational security officers and general employees must implement in stages △before △during △after vacation, as security tends to become lax during the summer vacation season due to the absence of internal management personnel and increased remote access.
Before vacation, security officers must pre-check the organization's security system to prepare for potential threats. First, △apply the latest security patches to key infrastructure (servers, networks, operating systems, software, etc.) to block attacks exploiting neglected security vulnerabilities. Also, prepare △emergency contact networks and response manuals to enable rapid response in case of an incident. It is also necessary to check the △backup status of important data and conduct recovery tests to prepare for data loss and business disruption due to incidents.
General employees can contribute to preventing security incidents by simply adhering to basic security rules. Before leaving for vacation, they should △turn off work PCs and laptops and store sensitive documents and memos in drawers to prevent unauthorized access and information leakage. To prepare for data loss due to unexpected incidents, △important files should be stored in the company's official backup system.
In addition, security officers must maintain a security monitoring system that can immediately respond to various threats despite personnel absences during the vacation season. Strengthen △real-time monitoring of major signs (abnormal access, abnormal traffic, security policy bypass attempts, etc.) and constantly check the normal operation of △security solutions (antivirus, firewall, EDR, etc.). Furthermore, check △remote and overseas IP access settings and immediately block unnecessary access.
Employees must remain vigilant to protect themselves from various threats that may occur in external environments during vacation. First, refrain from accessing the company's systems when using △public Wi-Fi. On public Wi-Fi, where many people connect simultaneously, hackers can easily intercept important data, including login information. To prevent information leakage due to device loss at travel destinations, it is recommended to use △separate work and personal devices and apply lock settings. Additionally, phishing attacks using keywords that attract the attention of employees on vacation, such as annual leave and vacation pay, may occur, so △do not open attachments or URLs in unfamiliar emails.
Moreover, after the vacation season ends, security officers must check for abnormal activities that occurred during the vacation period. Analyze △abnormal security logs and account access history and implement follow-up measures if necessary.
Employees should conduct a simple security check upon returning to the office. Even if there are no immediate issues, it is advisable to △conduct antivirus checks on work devices used during vacation and change passwords for accounts used in external environments to enhance security.
Park Tae-hwan, head of the AhnLab Cyber Security Center (ACSC), said, "The summer vacation season is a time when security blind spots are likely to occur due to personnel absences and increased remote access, so it is crucial for companies to prepare in advance for attacks targeting moments when they let their guard down."

psh@fnnews.com Park Seong-hyun Reporter