Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Application Security

2/22/2019
12:30 PM

6 Tips for Getting the Most from Your VPN

VPNs are critical for information security. But simply having these cozy security tunnels in the toolkit isn't enough to keep an organization's data safe.
2 of 7

VPN Everywhere
It seems almost too obvious to state, but best practices are like that: If a device doesn't have a VPN client installed, it won't be protected by a VPN. If you want to protect all of your network communications, install VPNs on all your devices.
Most IT teams understand that laptop computers that leave the office should have a VPN installed, but does that understanding extend to desktop computers? If they're using Wi-Fi for their network connections, then they should definitely have a VPN in place. And so should the devices that connect via cellular network.
It's true that it's illegal to eavesdrop on a cellular connection. It's also true that cellular networks are encrypted. But neither mean it's impossible to hack a cellular connection. VPN clients are available for every smartphone platform, so use them. Make it a policy to have a VPN on every network interface, and it will simplify the decision-making process for where it should be installed.
(Image: Evgeny - Adobe Stock )

VPN Everywhere

It seems almost too obvious to state, but best practices are like that: If a device doesn't have a VPN client installed, it won't be protected by a VPN. If you want to protect all of your network communications, install VPNs on all your devices.

Most IT teams understand that laptop computers that leave the office should have a VPN installed, but does that understanding extend to desktop computers? If they're using Wi-Fi for their network connections, then they should definitely have a VPN in place. And so should the devices that connect via cellular network.

It's true that it's illegal to eavesdrop on a cellular connection. It's also true that cellular networks are encrypted. But neither mean it's impossible to hack a cellular connection. VPN clients are available for every smartphone platform, so use them. Make it a policy to have a VPN on every network interface, and it will simplify the decision-making process for where it should be installed.

(Image: Evgeny Adobe Stock )

2 of 7
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
nikan70
50%
50%
nikan70,
User Rank: Apprentice
3/18/2019 | 3:15:56 AM
Re: VPN on your router
Love what you're doing here guys, keep it up!
TerazTVSeriale
50%
50%
TerazTVSeriale,
User Rank: Apprentice
3/16/2019 | 8:52:46 AM
Re: VPN on your router
Great tips. Thank you very much!

 

------------

rajstopy do małej  czarnej
DanielN212
50%
50%
DanielN212,
User Rank: Apprentice
2/27/2019 | 9:49:54 AM
Re: VPN on your router
VeePN definitely has an option for routers
Mtony
50%
50%
Mtony,
User Rank: Strategist
2/22/2019 | 7:57:32 PM
VPN on your router
Legit, I think the best thing you can do is install a VPN on your router. I know from experience that ExpressVPN has their own router apps, I think Nord may also.
Firms Improve Threat Detection but Face Increasingly Disruptive Attacks
Robert Lemos, Contributing Writer,  2/20/2020
Ransomware Damage Hit $11.5B in 2019
Dark Reading Staff 2/20/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-18238
PUBLISHED: 2020-02-26
Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility ioLogik 2500 series firmware, Version 3.0 or lower IOxpress configuration utility, Version 2.3.0 or lower. Sensitive information is stored in configuration files without encryption, which may allow an attacker to a...
CVE-2019-17274
PUBLISHED: 2020-02-26
NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC) firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access.
CVE-2019-17275
PUBLISHED: 2020-02-26
OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to arbitrary code execution by remote attackers.
CVE-2020-3169
PUBLISHED: 2020-02-26
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with a privilege level of root on an affected device. The vulnerability is due to insufficient validation of arguments passed to a spe...
CVE-2020-3170
PUBLISHED: 2020-02-26
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could expl...