Kathmandu: To enhance the security of government websites, data, and networks, the National Cyber Security Centre has issued a comprehensive 102-point advisory. This initiative aims to mitigate cyber threats and safeguard the government’s information technology systems.

The advisory outlines detailed measures for securing websites, applications, servers, networks, desktops, laptops, mobile devices, and social networks used by government offices. Centre Director Raj Kumar Maharjan emphasized that the advisory addresses recurring issues like cyberattacks and data breaches, often caused by negligence or lack of awareness. He stated, “This advisory is designed not just for government employees but also for citizens, to raise awareness and reduce the risks posed by cyber threats.”

In a step toward proactive management, the Centre has instructed all ministries, commissions, and departments to appoint a focal person responsible for addressing issues related to government websites and applications.

The recommendations focus on several key areas. For website and network security, it advises regular updates, conducting security tests, and implementing business continuity plans with regular data backups. System and software security measures include updating antiviruses, databases, application libraries, and operating systems. It also stresses the use of licensed software for desktops, laptops, and printers, alongside measures to restrict internet access for printers.

Password management is another priority, with the advisory recommending strong, unique passwords that are changed every three months and multifactor authentication for enhanced privacy. For internet browsing and social media, secure browsing methods, updated browsers, and careful sharing of personal information on trusted platforms are advised.

Mobile device security guidelines emphasize the importance of updated operating systems and downloading apps only from reliable sources. Additionally, the advisory calls for regular cybersecurity training for employees to ensure effective implementation of these measures.

By focusing on these areas—website updates, data backups, secure passwords, multifactor authentication, network segmentation, and antivirus updates—the government aims to shield its systems from cyber threats while also raising public awareness about cybersecurity.

Director Maharjan expressed confidence that these measures would strengthen the government’s defense against cyberattacks and create a safer digital environment for public services.