IMTS Conference Security Thoughts

Article Written by: Julia Boswell, ProShop's Security & Compliance Manager

Many of us will be attending IMTS - International Manufacturing Technology Show next week. We'll be there to learn, connect with our friends, share our products, eat some deep dish pizza, and generally make merry. But there will be people there with more nefarious intentions. Our own Cybersecurity Team has outlined some best practices that we should all follow while we're at the show next week (or any trade show for that matter!) I figured why not share that with my network so you can reduce the risk of an incident at the show!

Whether as an exhibitor or an attendee, you will face security risks while the IMTS conference is running.?

Technical Risks:?

Device security?

• Check the hardware in your booth regularly to ensure nothing has been nefariously plugged in (like extra cords, external drives, USBs)?
• Ideally, lock the hardware in place so nobody can gain access to it.
• Lock screens when they are not in use
• DO NOT let strangers or new friends use any of your hardware, including phones, laptops, tablets → no, not even for a minute?
• Make sure you know where your devices are at all times?
• Don't leave your booth unattended!

Wi-Fi connections?

• USE A VPN before connecting to any public Wi-Fi?
• Recommended for both computers + phones
• Look at Securing Wireless Devices in Public Settings?

Social Risks:?

Physical security?

• No USBs, seriously ABSOLUTELY NO USBs - if you see one on the ground, don’t pick it up. If someone gives you one, don’t take it. If you see a free basket of USBs as swag, do not take them.?
• USBs are a common method of attack because as soon as you can establish a physical connection to a computer, you can run a variety of programs/exploits easily
• For example, the USB Rubber Ducky → this tricks your computer into reading the USB as a Keyboard, and will then execute any commands programed into it?

https://www.youtube.com/watch?v=IdWhkGD-ojM

Social engineering?

• Use your judgment - you’re at the Conference to network, but if someone crosses a line and starts asking questions outside of what the vast majority of people are asking, be reserved about the information you give out
• You are under no obligation, ever, to share information about yourself that you don’t want to share. If it makes the other person uncomfortable that you won’t answer questions, that’s not your problem.?
• Corporate Espionage - this will be happening. Competitors will be investigating you. Be mindful of sharing private company or development information that is not ready for public consumption, or information that, if publicly known, could cause damage to our brand or reputation.

___________________________________________________________________

We're all about security at ProShop ERP and are trying to lead with our software and features to keep our client data safe. Learn more about how we're helping clients make their #CMMC compliance just a bit easier. https://proshoperp.com/cmmc