Kathmandu: The National Cyber Security Center has issued a cybersecurity advisory aimed at safeguarding government offices and employees from potential cyber threats. The advisory, released on January 22, outlines 21 key measures, including regular website updates, password changes, antivirus updates, and network security.
The advisory emphasizes regular updates to government websites and applications and urges offices to address any issues promptly. It also highlights the importance of taking frequent backups of data and implementing a business continuity plan to ensure minimal disruption during cyber incidents.
Employees have been instructed to use strong, hard-to-guess passwords and update them every three months. The use of personal information such as birth dates or phone numbers as passwords is discouraged.
For device and network security, the advisory recommends regular updates of antivirus software, operating systems, and security devices. It strictly prohibits downloading or playing games on office computers to maintain system integrity.
On email security, the advisory advises employees to report and delete suspicious emails immediately and refrain from sharing sensitive information such as passwords, OTPs, and banking details through email or phone.
Regarding social media, the guidelines caution against oversharing personal information and urge users to verify friend requests and avoid clicking on unverified links.
The advisory also addresses mobile security, urging employees to verify app authenticity before downloading, review app permissions, and keep operating systems updated. It further recommends storing mobile IMEI numbers securely for recovery purposes in case of loss or theft.
In addition to digital measures, the advisory calls for physical security enhancements, including installing strong doors and CCTV cameras in areas where sensitive data is stored. Offices are also required to conduct annual audits of their internal systems and enable two-factor authentication for added security.
The National Cyber Security Center believes this comprehensive advisory will help protect government IT systems and mitigate potential cyber threats effectively.