Employee Work from Home Habits a Security Risk to Businesses
Leo Daniels • June 5, 2020
This is a subtitle for your new post
Employee work from home habits is putting businesses at a higher risk of cyber-attacks, according to a study by CyberArk.
It revealed that a large proportion of remote workers in the UK regularly engage in practices including using unmanaged, insecure BYOD devices to access corporate systems (60%).
Working from home has risen at an exponential rate in the UK and elsewhere as a result of the COVID-19 pandemic. This is posing additional security risks for businesses,
due to firms rushing to put in place applications and services that enable remote work as well as more insecure connections.
These risks are being increased further by bad cybersecurity behaviors by remote workers, according to CyberArk’s new analysis.
In a survey of 300 remote office workers and 300 IT professionals in the UK, the security firm also found that 57% of remote workers use communication tools such as Zoom
and Microsoft teams, which have had well-publicised security problems in recent months.
Risky cyber-practices were shown to be particularly prevalent amongst working parents included in the study, who face additional distractions such as childcare and home-schooling. Of this cohort, 57% insecurely save passwords in browsers on their corporate devices while 89% said they reuse passwords across applications and devices. Additionally, 21% allow other members of their household to use their corporate devices for activities like schoolwork, gaming and shopping.
Despite the additional security risks posed by the huge rise in remote working, 57% of IT professionals surveyed said they haven’t increased their security protocols in this period.
Rich Turner, SVP EMEA, CyberArk, said: “Responsibility for security needs to be split between employees and employers. As more UK organizations extend remote work for the longer-term, employees must be vigilant. This means constantly updating and never re-using passwords, verifying that the operating systems and application software they use are up-to-date, and ensuring all work and communication is conducted only on approved devices, applications and collaboration tools.
“Simultaneously, businesses must constantly review their security policies to ensure employees only have access to the critical data and systems they need to do their work, and no more. Decreasing exposure is critical in the context of an expanded attack surface.”
We’re 1-fix, we can help you secure your business
At 1-fix, we take a realistic approach to technology – ensuring our client’s systems are best protected.
If you have any concerns, questions or simply want to explore how to better secure your business, please do get in touch with the team for a FREE demonstration, consultation to explore how exposed your business might be and identify actions to take.
Join Our Mailing List
All sign-ups are handled inline with our privacy policy and can unsubscribe at any time.
Recent Blogs
Avoid the risks of using Office 365 Home at work. Learn why Office 365 for business is the right choice for security, scalability, and compliance.
Discover the key benefits of outsourced IT support, from enhanced cybersecurity and 24/7 monitoring to cost savings and regulatory compliance.
Stay cyber secure while travelling with 10 expert tips. Use VPNs, avoid public Wi-Fi, and protect your data on the go.
In a world where AI is changing how we work and compete, security is more important than ever. We are gathering industry leaders and AI experts for a special roundtable event. This event will focus on a key topic: AI security.
Microsoft 365 Business Basic offers a range of cloud-based services designed to empower businesses to work smarter and more efficiently. Let's delve into what this package includes and how it can benefit your organisation.
We’re excited to announce an informative webinar featuring Elliot Wilkie from Brigantia and Craig Atkins from 1-Fix, diving deep into the world of DMARC on 8th July at 2 PM . This is an essential session for anyone looking to secure their email communications, understand DMARC compliance, and enhance their email deliverability.
