Cyber Security Cluster Bonn e.V. - this name stands for a cyber security network with a focus on the Bonn/Rhine-Sieg region. The aim is to make a joint contribution to immunizing society against cyber attacks and to make Bonn tangible as the "heart of operational cyber security in Europe". To this end, almost 90 member institutions from industry, research and the public sector have now joined forces. In addition to Deutsche Telekom, the Fraunhofer Gesellschaft and the City of Bonn, the Bonn-Rhein-Sieg University of Applied Sciences, the Bonn/Rhein-Sieg Chamber of Industry and Commerce and medium-sized companies are also represented on the board. The advisory board is made up of the BSI, the Bonn police and the cyber unit of the German Armed Forces, the Cyber and Information Space Command.

In addition to the flagship event, the Cyber Security Tech Summit Europe, the association organizes events such as the Bonn Dialogue for Cyber Security (BDCS) or "IT Security Breakfasts" to raise awareness of the topic and provide information on current challenges. Due to the coronavirus situation, the last events were held online. A short guide "Cyber-Safe through the crisis" was also developed, which explains the key aspects of a secure home office workplace.

Internally, the cluster members work together in expert groups, e.g. on the question of how IT security training and further education programs should be designed. Cluster members also form consortia to initiate joint projects and submit funding applications. The focus is often on the transfer of know-how into practice. The Wise Council of Cyber Security Experts was founded to advise politics, business and society on IT security issues. This "Wise Council" will shortly be publishing its first report with recommendations for policymakers.

Many companies and employees are currently facing new challenges, particularly due to the rapid switch to working from home. Here we show you what you can and should implement immediately at your workplace.

• Activate password protection for your PC or laptop.
• Lock the screen when you are absent.
• Switch off voice-controlled devices (e.g. Alexa or Siri) while you are working.
• Use a webcam cover when the webcam is not in use. Ideally, do not point your screen towards a window, especially if you live on the first floor. In any case, aligning the monitor at right angles to the window prevents reflections, which are straining for the eyes.
• Keep your software up to date. If necessary, update youroperating system, the programs you use and also check whether there is an update for your router, for example.
• Activate the virus scanner (e.g. the Defender integrated in Windows) and keep antivirus signatures up to date.
• Check whether the firewall integrated in your operating system is activated. Windows: Control Panel - System - Security - Windows Defender Firewall. Mac: System Preferences - Security - Click on the "Firewall" tab (at the top) - activate the firewall if necessary
• Encrypt portable IT systems and data carriers (e.g. with VeraCrypt, DisKCryptor or FileVault). Discuss the options with your company's IT contact.
• Use a different, secure password for each account. If necessary, use a password manager - e.g. Keychain (Mac), KeePass or ButterCup.
• Protect your router and WLAN against unauthorized access. The German Federal Office for Information Security(BSI) offers  corresponding instructions (opens in a new tab).
• Activate two-factor authentication (2FA) wherever possible: With 2FA, you as a user prove your identity using a combination of two independent components (factors). A well-known example is the use of login data + transaction number (TAN) for online banking. With your Microsoft account, for example, you activate 2FA as follows:
  
  - Log in to your Microsoft account at https://office.com, click on your initials at the top right and select "My account"
  - Click on "Security and privacy" on the left and select "More security options"
  - Under "Two-step verification", select the option "Set up two-step verification" and follow the instructions
• Use VPN software to connect securely to your company network. Contact your IT manager to set this up. You can think of a VPN connection as a secure tunnel between your computer and your company network. The BSI also provides  instructions on how to set this up (opens in a new tab).
• Only use unencrypted, public WLAN connections, e.g. in the park or on the train, for business purposes in combination with an activated VPN. If in doubt, connect via the mobile network or your smartphone as a hotspot (LTE).
• Ideally, alwayssave data on your institution's central systems and not locally. If you still want or need to save data locally, create regular backups of this data.
• Store unused devices securely and protect them from access.
• Adhere to the security guidelines of your institution. If in doubt, ask those responsible for IT and check your settings using the Alliance for Cyber Security  checklist (opens in a new tab), for example.
  
  

Criminals also see the crisis as an opportunity and are looking for new ways to gain access to sensitive data. We explain what you can do to protect yourself and your data.

The physical separation of teams and colleagues increases the likelihood of (spear) phishing being successful.

This is why it is particularly important now:

• Do not open any attachments or links in emails from unknown senders.
• Also look out for discrepancies in emails from supposedly trustworthy senders.
• If you are unsure, get in touch with your contact person.
• Pay particular attention to websites with coronavirus content. There are currently a number of fake coronavirus websites whose purpose is to steal data or infect your system.

Other social engineering attacks such as the "CEO fraud" attempt - the fraudster pretends to be your superior and asks you to disclose sensitive information - are also currently on the rise. Therefore, never disclose sensitive data without further ado. Verify potentially critical requests, e.g. by calling back.

Working from home should not lead to a lack of exercise and social contact. Read here to find out how to prevent this and how to organize yourself at your home office.

• Set up a workstation and keep it as tidy as possible. If possible, use aseparate study at home to keep work and private life separate.
• Structure your home office day and find your personal working rhythm. If possible, adjust your working hours to the rhythm in which you can work most productively.
• Carry out your morning routine: Give your mind a chance to switch into work mode by getting ready for work as usual.
• Even in the office, you don't work for eight hours straight. Even when working from home, talk to colleagues, take coffee breaks "together", air the room regularly and don't take your lunch break at work.
• Minimize distractions at home. It is best to mute your personal smartphone. Perhaps your home office even allows you to be particularly focused at work.
• Separate work time and private time: set yourself limits and consciously end your working day at the appropriate time.
• Eat a healthy diet and get some exercise during your home office day. For example, use the time you would otherwise spend commuting to work.
• Communicate with colleagues and managers and don't be afraid to talk about the personal challenges of working from home. Only use services for communication that your company has authorized.

• Check and restrict access options and access rights to your institution's systems and information to a necessary minimum.
• Establish general rules for the use of non-institutional IT systems.
• Provide clear instructions for employees, e.g. through brief instructions, checklists or video training. The BSI's Alliance for Cyber Security, for example, offers a  checklist for employees (opens in a new tab). A  checklist for IT managers (opens in a new tab) is also available here.