I'm an engineer working with lab instruments. My company usually recommends using USB drives for transferring updates, and I've always scanned them for viruses before use. However, I'm exploring how to securely transfer software updates to customer computers without using USBs. Most of my clients don't have any robust security measures regarding USB usage, as their systems are often just protected by Windows Defender or basic malware scanners. I'm seeking the most secure methods to transfer these software updates, as opinions seem to vary widely among my coworkers. Any advice or best practices from your experiences would be greatly appreciated!
1 Answer
Setting up a secure SFTP server on your domain is a solid option. You can ask your clients to whitelist your domain, allowing for a safe transfer of update files. Additionally, consider using a write-lockable USB drive in case you need to use one—this prevents any unintentional spreading of malware if you plug into compromised hardware.
Absolutely! Your clients would prefer granting access to a secure IP address rather than the risk of using the same USB across multiple customer sites. Don't forget to verify the file's hash after downloading!