The rule of thumb in cybersecurity is that the more sensitive a system is, the less it wants to be exposed to the Internet. However, as the U.S. government has severely limited the popularity of Covid-19, cybersecurity measures have posed daunting technical challenges to critical infrastructure, intelligence agencies, and other employees with high-security networks working remotely. In some cases, not working from home at all.
Companies with particularly sensitive data or operations often restrict remote connections, segment networks to limit access after hackers enter, and sometimes even disconnect the most important computers completely from the Internet. Late last week, the U.S. government's Cybersecurity and Infrastructure Security Agency issued an advisory report to important infrastructure companies for the remote work scenario when Covid-19 spread ready. This means checking its virtual private network for patches, implementing multi-factor authentication, and testing remote access scenarios.
But cybersecurity consultants who actually work with high-risk customers, including power companies, oil and gas companies, and manufacturing companies, say it's not always easy. For many of the most critical customers, and even for intelligence agencies, remote work and security are not mixed up.