The Postal Service wants employees to take precautions to prevent hackers or other unauthorized listeners from accessing WebEx conference calls.
Like hackers who attempt to attack USPS networks or mobile devices, unauthorized listeners who lurk unannounced on WebEx virtual meetings could learn sensitive information that could compromise the organization.
To secure WebEx calls, the CyberSafe at USPS team offers the following tips:
• Don’t share meeting passcodes. Sharing passcodes is in violation of the Postal Service’s AS-805 Information Security policy handbook, Section 2-2.33.
• Ask first. Don’t forward meeting invites without permission. Ask for individuals to be added.
• Target your audience. Restrict meeting access based on the confidentiality of the information being presented.
• Conduct a roll call. Before the meeting starts, ensure only invited individuals are participating and remove unidentified callers.
• Stay on the record. Add passwords to recorded meetings before sharing, then delete recordings when they are no longer needed.
• Disconnect. End WebEX conference calls with the “End Meeting” button to ensure everyone is disconnected.
WebEx offers additional online guidance for protecting calls.
To report a cybersecurity incident, call 866-877-7247 or send an email to CyberSafe@usps.gov.
The CyberSafe at USPS Blue and LiteBlue pages have information on other cybersecurity topics.