Q: There are some examples from device manufacturers in other countries (example: Routers) with built in features to send Your data to 3rd unknown party or back to themselves. How do we get to know about it? How do we know where our data is being sent? What tools should be used to prevent this in case we want to continue using the device, but keep our data secure?
A: With Teltonika Networks devices, it is possible (using TCP dump) to capture communications packets, which went in and out of the router WAN interface. Later with tools like 'Wireshark', you can analyze traffic and block unwanted communication in the firewall. Another option is to look for publicly available research about devices security and take action by disabling data sending or blocking traffic in the firewall.
Q: How can i convince myself that my hosting provider has a high level of protection against cyberattacks? Is there any certification/qualification ?
A: A good practice is talking with providers about their capabilities and mitigation plans for different cyberattacks. Also, check publicly available information about the hosting provider and its track records.
Q: Is there a best practice guide for security config of teltonika routers for application types, i.e. polling data logger (PC) via public IP?
A: Teltonika Networks out of the factory comes with number of security options activated: disabled public access, limited attempts for WebUI, SSH attemps and others.