US government issues guidance for enterprises using VPN software

News
By published

Expect increased phishing attempts and attacks that exploit VPN security flaws

VPN
VPN-tjänster har många olika funktioner - här är de allra viktigaste du ska kolla efter. (Image credit: Shutterstock.com)

With the ongoing coronavirus outbreak leading many organizations to allow employees to work from home, the US government has shared a list of tips on how to properly secure enterprise VPN software.

In its alert on enterprise VPN security, the Cybersecurity and Infrastructure Security Agency (CISA), part of the Department of Homeland Security, has warned organizations to adopt a heightened state of cybersecurity in these uncertain times.

Due to an increased number of employees using services to work remotely, cybercriminals will likely focus their attacks on VPN security flaws. The reason for this is because organizations will be less likely to keep their VPN software regularly updated, especially when employee work schedules will be spread around the clock.

The CISA also warned that cybercriminals may launch additional phishing attacks in an attempt to steal the users credentials of employees working from home and that organizations that haven't implemented multi-factor authentication yet, are the most at risk.

Boosting security while working remotely

The CISA has laid out a number of mitigation measures organizations that are currently allowing their employees to work remotely or considering doing so can take to protect themselves.

However, the most important of which is keeping VPNs, network infrastructure devices and other devices used for remote working up to date by applying the latest patches and security configurations.

The alert also recommends that organizations notify their employees of an expected increase in phishing attempts.

Enabling multi-factor authentication on all VPN connections and requiring employees to use strong passwords are other ways that organizations and employees can stay safe while working remotely.

The next few months will certainly be challenging for all businesses but by taking the necessary steps now, organizations can ensure that their remote workers stay productive and secure.

  • Also check out our complete list of the best VPN services

Via BleepingComputer

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in VPN
A computer file surrounded by red laser beams
Cover your tracks: the risk of sending unencrypted files
Using an Amazon Fire Stick on a Smart TV
How to use a VPN with Fire Stick
Close up of PS5 DualSense controller leaning on a PS5
5 reasons your PS5 needs a VPN
Harry Halpin, CEO and co-founder of Nym Technologies, and Chelsea Manning, Nym Technlogies' security consultant, on stage at the Frontline Club in London during the NymVPN launch on March 13, 2025.
NymVPN is now live – here's everything you need to know
Tor
What is Onion over VPN?
Green background featuring laptop with connect button
I tried the "world's most secure VPN" and while it's not the VPN you'll want, you'll need it sooner than you think
Latest in News
Metroid Prime 4
I reckon the Nintendo Switch 2 could launch with Metroid Prime 4 – here’s why
Samsung Galaxy Z Fold 6
New rumors predict a foldable iPhone will launch next year – and cost almost twice as much as the iPhone 16 Pro Max
Pebble smartwatch countdown
Pebble confirms its smartwatch announcement is just hours away
Logo of YouTube Shorts
Is YouTube auto-playing Shorts when you open the app? Well, you’re not alone - here’s how to fix it
Google DeepMind panel discussion
“More sovereignty and protection” - Google goes all-in on UK AI with data residency, upskilling projects, and startup investments
Nintendo Switch 2
Nintendo Switch 2 expected to have AI upscaling and I can't wait to finally play Tears of the Kingdom with upgraded graphics
More about vpn
A computer file surrounded by red laser beams

Cover your tracks: the risk of sending unencrypted files
Using an Amazon Fire Stick on a Smart TV

How to use a VPN with Fire Stick
Samsung Galaxy Z Fold 6

New rumors predict a foldable iPhone will launch next year – and cost almost twice as much as the iPhone 16 Pro Max
See more latest
Most Popular
Samsung Galaxy Z Fold 6
New rumors predict a foldable iPhone will launch next year – and cost almost twice as much as the iPhone 16 Pro Max
Maxtang SXRL-20 mini pc
This fanless PC looks like a giant heatsink and has one incredible feature: five, yes five, 4K-capable HDMI ports
Aoostar G-flip 370
There's no need for a monitor with this Ryzen AI-powered mini PC
The Ryzen AI Max+ 395 could power the latest generation of powerful mini PCs
This prototype mini PC demonstrates a massive leap forward for integrated graphics in a console form factor
Metroid Prime 4
I reckon the Nintendo Switch 2 could launch with Metroid Prime 4 – here’s why
Minisforum AI X1 mini PC
Tiny Mac Mini rival can power four 8K monitors, and is the first mini PC to receive AMD's powerful Ryzen 7 260 APU
AOOSTAR G-FLIP mini PC
AMD powers the world's fastest all-in-one PC, and yes, I've probably overstretched the definition of AIO PC just a tiny bit
26TB WD Red Pro HDD
Western Digital introduces 26TB WD Red Pro HDDs for RAID and NAS systems at a surprisingly low price
Logo of YouTube Shorts
Is YouTube auto-playing Shorts when you open the app? Well, you’re not alone - here’s how to fix it
Samsung HW-Q990D soundbar, subwoofer and rear speakers
Samsung's best Dolby Atmos soundbar is being bricked by a new update – here's what we know so far