EN 
ES 
“Remote work has made security - which previously seemed to be concentrated mainly in the office - move to workstations”.
What are the principal risks that teleworking has implied in terms of cybersecurity? What do we face daily? How does a company like the Depósito Central de Valores (DCV) work to mitigate these risks? We invite you to learn more about all these topics in this interview with our expert in the field.
1. Currently, what are the biggest threats in cybersecurity?
Today we are faced with new threats every day. Technological advances, in addition to notorious benefits, also bring security breaches that are used by cybercriminals to generate wrongful acts.
Although there are constant cyberattack attempts, the pandemic effect has generated a significant increase in scams by some who seek to take advantage of the need for information and access to services offered on the internet. These scam techniques, called in the cybersecurity field as “Social Engineering”, have been one of the most frequent threats to people, especially through fraudulent emails or information theft (being the gateway for other cyber-attacks of greater magnitude).
Another type of threat, which has been a constant in recent times, is the malware (type of virus) called “Ransomware”, whose objective is to charge for the ransom of the data registered on the devices that are attacked, hijacking them through the encryption of files and generally requesting payment for the release of the information or extortion for the non-publication of confidential or compromising information over the internet. The impact of these types of attacks on companies and organizations has been relevant, since it also drags in problems related to the operational continuity of services, reputational damage, loss of profits, among others.
2. Does remote work imply greater cybersecurity risks?
My perception is that remote work does not present greater risks than those already known, but it transforms the possibilities and risks of businesses in the sense that it moves borders closer to people and collaborators. In effect, companies must specially focus on them regarding cybersecurity. With this, remote work makes security, which previously seemed to be concentrated mainly in the office, to move to the workstations and to the communication channels that interconnect collaborators in the respective organization. In this regard, considering it a high priority issue, each employee must responsibly comply and with precaution cybersecurity matters.
3. How does a company like DCV manage to mitigate or control these risks?
“At a global level, remote work is a reality that is here to stay and, due to this contingency, companies have had to adapt to assume the required work continuity”.
Fernando Poblete Cybersecurity Officer
Depósito Cenrtal de Valores (DCV).
DCV is not oblivious to this reality and has incorporated this way of working while keeping in mind the need to control cybersecurity risks to continue providing its services within the established framework of good practices. Thus, work has been done to mitigate or control the risks associated with remote work, incorporating technological protection mechanisms. Similarly, maturity at work has been required, which the company has been building throughout its history, where, among many factors, the ability of employees to adapt to changes has been essential.
From the point of view of the specialists who work in cybersecurity, we try to constantly review the threats that affect our environment, with a permanent focus on the development of initiatives and projects that permit us to address them. Also, constantly reviewing vulnerabilities and problems on our systems, analyzing new defense trends to design and implement solutions and strengthen the processes required to continue offering our services.
4. What advice or lines of action does DCV provide to its collaborators?
We are constantly releasing capsules and informational bulletins, reminding them that the principal types of attacks to which they may be exposed involve fraud attempts associated with Phishing (fake emails), Vishing (phone calls) and Smishing (through SMS text messages).
Therefore, we urge you to remain alert and act as the first line of defense, following the following tips:
| 01 | In emails: check that the domain of the sender’s address is known and never open attachments that seem suspicious. | |
| 02 | Do not enter by clicking on links contained in emails or SMS. It is always better to copy the link and paste it directly into the browser. | |
| 03 | Check that the web pages have the padlock next to the HTTPS in the URL, which are considered safe pages. | |
| 04 | Avoid answering calls from “unknown” numbers, where the caller’s phone ID is not visible. | |
| 05 | Avoid giving personal or company information to strangers, through forms on web pages, emails or calls from unknown persons. | |
| 06 | In case of alerts or suspected viruses, remain calm, do not turn off or unplug the equipment from the electrical network, or disconnect it from the network or put the Wi-Fi in airplane mode; do not continue using the device or platform and report to the Cybersecurity area immediately. | |
We always remind you that the best way to
take care of ourselves is to remain
vigilant and cautious.
News Center
