防止sql注入的几种方法
Cybercrime is not just happening in high rise office buildings. It’s happening in your home as well, and as more people work from home, cybercrime is continuing to be a growing threat as home offices become more targeted.
网络犯罪不仅发生在高层办公大楼中。 家庭中也正在发生这种情况,随着越来越多的人在家中工作,随着家庭办公室变得更具针对性,网络犯罪继续成为越来越大的威胁。
With so many people working from home these days, there has never been a greater need for awareness of security risks and how to counter them.
如今,由于有如此多的人在家工作,因此对安全风险以及如何应对这些风险的需求从未像现在这样迫切。
为什么您的家庭办公室这么多汁? (Why is your home office such a juicy target?)
Well, for one thing, the tech is already in place. Nearly everyone owns a cell phone these days, and around 75% of people have a laptop or desktop computer at home. That number goes up when you count tablet devices. Of all those tech setups sitting in people’s homes, very few take any serious cybersecurity measures. Whether the reasons are lack of budget or time, many people are leaving their home networks wide open for attack.
好吧,一方面,这项技术已经到位。 如今,几乎每个人都拥有手机,并且大约75%的人在家中拥有笔记本电脑或台式机 。 当您数位平板电脑设备时,该数字增加。 在人们家中的所有技术设置中,很少有采取任何严肃的网络安全措施的。 无论是由于预算不足还是时间不足,许多人都将其家庭网络向攻击开放。
好消息 (The good news)
Fortunately, there are several things you can do to make your home office more secure, protect your data, and save you loads of grief.
幸运的是,您可以采取多种措施来提高家庭办公室的安全性,保护数据并节省大量的麻烦。
遵循远程工作政策 (Follow a remote work policy)
If your company provided you with a remote work policy, treat that policy seriously. In addition to general cybersecurity concerns, your business may have to deal with regulatory compliance issues. Failure to follow those could result in severe fines, loss of business, and loss of your job.
如果您的公司为您提供了远程工作政策,请认真对待该政策。 除了一般的网络安全问题外,您的企业可能还必须处理法规遵从性问题。 不遵守这些规定可能会导致严重的罚款,业务损失和工作损失。
最小化可疑或易受攻击的应用 (Minimize apps that are suspicious or vulnerable)
To help reduce the potential for attacks on your network or computers, delete or block any applications or services that aren’t necessary for you to do your work. This will minimize the risk of a piece of software with security vulnerabilities to be exploited by potential bad actors.
为了帮助减少对网络或计算机的攻击,请删除或阻止对您的工作不必要的任何应用程序或服务。 这将使具有安全漏洞的软件被潜在的不良行为者利用的风险降至最低。
On a similar note, don’t download apps unless you are confident they are secure and necessary for your work.
同样,除非您确信应用程序安全且对您的工作必不可少,否则请不要下载。
识别网络钓鱼诈骗 (Recognize phishing scams)
Before you click on any incoming links, preview them first by hovering over them and examine where the link intends to send you. Does it seem like a legitimate site? Are there odd misspellings or unusual domain locations showing up?
在单击任何传入链接之前,请先将它们悬停在它们上,然后预览该链接将您发送到的位置,以进行预览。 它看起来像合法网站吗? 是否显示奇怪的拼写错误或异常的域位置?
Then don’t click that link.
然后,不要单击该链接。
Consider messages with generic language or filenames with suspicion. If you’re not sure about the source of an email, but think it might come from a legitimate source, verify by phone or in-person if possible.
考虑带有通用语言的消息或带有怀疑的文件名。 如果您不确定电子邮件的来源,但认为它可能来自合法来源,请尽可能通过电话或当面验证。
利用最新的防护技术 (Make use of up-to-date safeguarding technology)
It’s worth your while to install the latest antivirus and anti-malware software available. It may seem like a hassle now, but not as big a problem as having to deal with damaged or stolen data. While you’re at it, set up the latest firewalls on all your devices. Make sure that your online traffic is what it’s supposed to be.
值得您花时间安装最新的防病毒和反恶意软件。 现在看来似乎很麻烦,但没有像处理损坏或被盗的数据那样大的问题。 在使用时,请在所有设备上设置最新的防火墙。 确保您的在线流量符合预期。
掌握安全更新 (Keep on top of security updates)
Software and system developers are continuously working on improvements, fixing vulnerabilities, and closing security holes. When you receive a notification that an update or patch is available, try to apply that update or patch as soon as you conveniently can.
软件和系统开发人员正在不断努力进行改进,修复漏洞并关闭安全漏洞。 当您收到更新或补丁可用的通知时,请尝试尽快应用该更新或补丁。
If your software does not send automatic notifications, take some time at the start of each week to see what is the latest news regarding cyber threats and see how vulnerable you may be, then take steps to protect yourself based on that news.
如果您的软件未发送自动通知,请在每周开始时花一些时间,以了解有关网络威胁的最新消息,并了解您可能有多脆弱,然后根据该消息采取措施来保护自己。
最佳密码做法 (Best password practices)
Strong passwords are an absolute must. If you’re not using robust passwords, you’re leaving yourself open for all manner of trouble.
强密码是绝对必须的。 如果您使用的不是强大的密码,那么您会遇到各种麻烦。
- Avoid using names — even the names of pets. 避免使用名字-甚至是宠物的名字。
- Use a mixture of upper and lowercase letters, numbers, and special characters. 混合使用大小写字母,数字和特殊字符。
- Don’t group numbers or special characters at the very beginning or end of a password. 不要在密码的开头或结尾对数字或特殊字符进行分组。
- Do not share your password with others. 不要与他人共享密码。
- Do not use the same password elsewhere. 请勿在其他地方使用相同的密码。
Simple steps go a long way in protecting the integrity of your network.
简单的步骤对保护网络的完整性大有帮助。
小心你在社交媒体上的内容 (Be careful what you put on social media)
Much as you would be prudent to not reveal vacation plans on social media — thus letting burglars know when you won’t be home — nor should you share too much information on how you’re spending your day at home on social media. It’s really no one’s business but your company’s as to what you’re doing at home, and they’d much prefer you keep it to yourself.
最好不要在社交媒体上透露假期计划,从而让窃贼知道您何时不在家,也不应在社交媒体上分享太多如何在家度过一天的信息。 实际上,这与您的公司无关,而与您的公司有关的是您在家中所做的事情,而且他们更希望您将其保留给自己。
This is especially true if you work with sensitive information.
如果您使用敏感信息,则尤其如此。
保护您的网络 (Securing your networks)
Adjust and fine-tune user permissions on all your devices and permit access only to those individuals who need to be tied to your network. Make sure to not only change the default passwords for devices and smart appliances that connect to your home network but also to change those passwords every few months.
调整并微调所有设备上的用户权限,并仅允许需要与您的网络绑定的个人访问。 确保不仅更改连接到家庭网络的设备和智能设备的默认密码,而且还要每隔几个月更改一次。
经常备份数据 (Back up your data often)
Creating secure copies of your data is less about security, as it is more about common sense. Back up your information regularly — weekly at a minimum, but more frequently would be more prudent. Should you find yourself the victim of a ransomware attack or destructive computer virus, having backup files on hand will save you a lot of time and trouble.
创建数据的安全副本与安全性无关,而与常识有关。 定期备份您的信息-至少每周一次,但更频繁则更为谨慎。 如果您发现自己是勒索软件攻击或破坏性计算机病毒的受害者,那么准备好备份文件将为您节省大量时间和麻烦。
当一切都结束了... (When all this is over…)
While the aim of this article is how to protect your data while working from home, eventually you’ll be able to go out and move about the world. When this happens, try not to get complacent. Consider a few simple precautions for outside the home as well.
尽管本文的目的是在在家工作时如何保护数据,但最终您将能够外出逛逛。 发生这种情况时,请尽量不要沾沾自喜。 还要考虑一些针对房屋外的简单预防措施。
- Avoid using public WiFi. 避免使用公共WiFi。
- Don’t insert thumb drives into your computer that you don’t know the origin of. 不要将不知道其来源的拇指驱动器插入计算机。
- When not home, keep your doors locked and your computers physically secure. 不在家时,请保持门锁和计算机的物理安全。
- Don’t leave passwords written down on papers that are out in the open. 不要将密码记在公开的文件上。
保护您的数据 (Protecting your data)
Right now, working from home is fresh territory for a lot of people. With that come new cybersecurity threats. You can stay ahead of these threats by taking simple, straightforward steps and make working from home as safe as working anywhere else.
目前,对于很多人来说,在家办公是新鲜的领域。 随之而来的是新的网络安全威胁。 您可以采取简单,直接的步骤来防范这些威胁,并使在家工作与在其他任何地方工作一样安全。
Thank you for reading. I’d love to share more with you via my Weekly Word Roundup newsletter sent to subscribers every Sunday. It will feature news, productivity tips, life hacks, and links to top stories making the rounds on the Internet. You can unsubscribe at any time!
感谢您的阅读。 我希望通过 每个星期天发送给订阅者的 每周Word综述 新闻稿 与您分享更多信息 。 它将包含新闻,生产力提示,生活技巧以及指向互联网上的热门话题的链接。 您可以随时取消订阅!
翻译自: https://medium.com/swlh/9-ways-fo-bulletproof-your-home-office-security-d8311fc2d326
防止sql注入的几种方法
扫一扫
2万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
