As telework surges in the public sector, IT leaders are warning users that disruption of normal work processes has created wide avenues for malicious third parties to access and exploit government systems through web conferencing vulnerabilities.
Agencies like the National Institute of Standards and Technology have raced to develop updated guidance to agencies and the private sector for how to conduct their work safely in a remote environment.
A note posted last month by Jeff Greene, director of NIST’s National Cybersecurity Center of Excellence, warned users to immediately report "unusual web meeting requests" to their IT managers and get confirmation over the phone or other means before accepting invitations.
Greene said his agency quickly flagged virtual meeting security as a top concern going into the lockdown. Whether using video teleconferencing or phone meetings, groups should examine their default settings around recordings or cloud storage, login information and attendee access to ensure their choices are deliberate and use one-time identification numbers for high-sensitivity discussions, he advised.
Read more at: GCN