Many exploits, however, take advantage of those who do not change their home router default passwords, so this...
should be one of the first things that's addressed if the enterprise is provisioning users' home routers, along with other insecure default settings. Minimally, be sure to securely configure the equipment you provide users and offer guidance or direct them to external resources on how to secure their home network if they are using their own equipment to access the enterprise network.
The bigger question is how to secure the computer that is in use at home and the connection between the computer and the enterprise network. You may want to assume that the local network or any network is hostile, and configure users' computers and remote connections to be resilient to attacks by using a host-based firewall and verifying that connections to your network are secure. Even if securing the home network is a losing battle, the most important points are to configure your computers securely, provide secure remote access to your enterprise network by using a VPN or similar technologies, and educate your users with basic information security skills to help prevent serious security issues.
Dig Deeper on Secure Remote Access
Related Q&A from Nick Lewis
A new type of iOS malware can hijack jailbroken iOS devices. Expert Nick Lewis explains how KeyRaider works and how to defend against the threat.continue reading
A rise in ransomware attacks has been attributed to a new service model for cybercriminals. Nick Lewis explains what's behind this new threat.continue reading
A malware tool that helped to compile the Zeus Trojan has been leaked on the Web. Expert Nick Lewis explains what this means for enterprise security ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.