Solved

AV risks from remote access

Posted on 2015-01-07
7
264 Views
Last Modified: 2015-01-29
can anyone provide a realistic view on the risks to a corporate laptop computer when connecting to a remote access network/server via tools such as vmware view and/or citrix? we are coming from the angle the risk of the remote access network infecting our laptop with malware and vice/versa (our laptop infecting their network)? Unsure if the connection is locked down in such a way that transfer of viruses is practically non-existent.
0
Comment
Question by:pma111
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 93

Assisted Solution

by:John Hurst
John Hurst earned 167 total points
ID: 40535514
The company laptop should have top grade antivirus. In terms of the remote network infecting the corporate laptop, the risk is low if the user has good common sense. Users are not hapless victims of virus attacks.

If your computer is protected as above and the user has good common sense, the risk of transmitting a virus back is very low.

I am a business consultant with my own computer. It does not have any viruses, I do not pick up any viruses from any of my clients, and I do not transmit viruses back.
0
 
LVL 3

Author Comment

by:pma111
ID: 40535597
often these remote access services seem to prohibit any local drive mappings, so is it even practical for a malware to be transferred to the remote access server from the local laptop, and vice/versa?
0
 
LVL 93

Expert Comment

by:John Hurst
ID: 40535606
Mapping folders is a restriction and permission thing rather than virus related. If your user cannot map a drive and if your user is normally careful, there should not be any issues with viruses. As I note, I do this regularly and do not experience issues.
0
Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

 
LVL 54

Assisted Solution

by:McKnife
McKnife earned 167 total points
ID: 40535910
Vmware view and Citrix. So you have a connection established from your machine to a (virtualized) OS on a remote network.   To answer "what are the chances that I get infected" you would have to look at possible infection ways. Those are usually through code hosted on the remote machine but executed at your machine... - now how would that happen? Are you transferring code to your machine? If not, it is very unlikely to happen, with or without anti virus on your machine.
If you don't transfer files/code to execute on your machine, it could only happen in the rare case that the transmission protocol itself endangers your client, so if there's a security vulnerability in your citrix software's client component that would let your machine interpret datastreams in a malicious way. That's far from being realistic. So no, normally without data transfers, there's no danger.

The other way round, if you redirect your drives to the remote computer and willingly execute a virus on the remote system, of course you could be lucky and infect that machine, but that would be under your control.
0
 
LVL 10

Expert Comment

by:Korbus
ID: 40539723
Using remote control software is CERTAINLY more secure that using say... a VPN connection.  That being said, even if it were impossible for a virus to be transmitted across such a connection,  keyloggers and other forms of illicit monitoring software on your remote machines can still be potentially dangerous when using remote control software.
0
 
LVL 3

Author Comment

by:pma111
ID: 40539756
can you elaborate why?

>Using remote control software is CERTAINLY more secure that using say... a VPN connection.
0
 
LVL 10

Accepted Solution

by:
Korbus earned 166 total points
ID: 40540864
When you are using a VPN connection, you are, in effect, plugging the machine into your LAN.  This will allow it to bypass all external firewalls, and provides a potentially infected system with a FULLY open connection to your network.

With a remote control connection, you are NOT opening your network to that kind of attack.  Rather, the only link between your system and the network is the remote control connection.  The various types of communication over a remote control connection are FAR more limited, than over a VPN, in particular because communication is ONLY listened to by the remote control server.  More simply, a remote control server is just NOT going to respond to requests that say ... a windows file server would.  It is these types of networking requests, that allows data/files to be written to your network, (which remote control does not do) are the usual vector for computer virus transmission.

Of course, if your remote control software has file transfer capabilities enabled, you will be loosing much of the protection mentioned above.
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question