Security Market Segment LS
  2. Home
  3. Business IT
  4. Security
  5. Using company devices for personal matters for remote working poses security risks, says email security vendor
Wednesday, 28 October 2020 10:44

Using company devices for personal matters for remote working poses security risks, says email security vendor

By
Using company devices for personal matters for remote working poses security risks, says email security vendor

Australians are using work tools, including company-issued devices for personal matters, to a greater extent than their global counterparts while remote working during the COVID-19 pandemic, according to new research which labels the behaviour as a security risk.

The State of Email Security 2020 research report by email security vendor Mimecast found that 73% of respondents globally extensively use their company-issued device for personal matters, with nearly two-thirds (60%) admitting to an increase in frequency since starting to work remote, with the most common activities involving checking personal email (47%), carrying out financial transactions (38%) and online shopping (35%).

In comparison, 78% of Australian respondents are using work tools for personal matters more than other nations, with 53% reporting an increase in personal usage during COVID-19.

And while personal email (53%) and financial transactions (51%) ranked highly locally, social media (40%) was the third most common Australian activity, above shopping (38%).

Australian respondents surveyed by Mimecast averaged almost 2.4 hours of personal activity on their work devices a day (higher than the global average of 1.9 hours), with almost a third (30%, compared with 22% globally) clocking more than 3 hours of non-work-related screen time.

According to the report, personal email and browsing the web/shopping online were already two areas of major concern for IT professionals, with 77% of Australian respondents saying there was a risk to checking personal email as the cause of a serious security mistake, and 70% thought surfing the web or online shopping could likely cause an incident.

“Encouragingly, 97% of Australian respondents claim to be aware that links in email, on social media sites and on websites can potentially infect their devices,” says Mimecast.

“Seventy-one percent have even received special cybersecurity awareness training related to working from home during the pandemic, which is higher than the global average of 64%.

“However, this doesn’t always translate into putting this knowledge into practice. Over a third (35%) of Australian respondents admitted to opening emails that they considered to be suspicious. Thirty-eight per cent admitted to not reporting suspicious emails to their IT or security teams,” Mimecast notes.

“This research shows that while there is a lot of awareness training offered, most of training content and frequency is completely ineffective at winning the hearts and minds of employees to reduce today’s cyber security risks,” said Josh Douglas, vice president of threat intelligence.

“Better training is crucial to avoid putting any organisation at risk. Employees need to be engaged, and trainings need to be short, visual, relevant and include humour to make the message resonate. In fact, Mimecast has found that end-users who have taken Mimecast Awareness Training are 5.2 times less likely to click on dangerous links. Awareness training can’t be just another check-the-box activity if you want a security conscious organisation.”

According to Mimecast, despite being the most tech savvy generation, younger workers may be putting organisations at greater risk.

“Surprisingly almost 60% of the 16-24 age group globally admitted to opening emails even though they looked suspicious, with young Australians faring slightly better at 50 percent,” Mimecast said.

“This group is also more guilty of blurring the lines between their business and personal usage of these devices. Eighty-seven per cent of the Australian 16-24 age group reported using their issued devices for personal use, while 58% of the older – 55+ – group admitted the same.”

“Security professionals need to ensure their organisation isn’t growing more exposed as threats evolve to better target the unsuspecting,” commented Douglas.

“With everyone’s home becoming their new office, classroom and place of residence, it’s not really a surprise that employees are using their company-issued devices for personal use. However, this is also a big opportunity for threat actors to target victims in new ways. We’ve seen attacks become more aggressive and the attack surface has expanded due to the new ‘WFH’ or hybrid work environments.”

The research also revealed how habits differ between males and females, with 78% of men using their corporate device for personal business versus 65% of women.

Data for the Mimecast report was collected by Censuswide in September 2020 with more than 1,000 respondents from organisations in Australia, the United Kingdom, United States (US), South Africa, Netherlands, Germany, Canada and United Arab Emirates (UAE).

Read 2142 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

GET READY FOR XCONF AUSTRALIA 2022

Thoughtworks presents XConf Australia, back in-person in three cities, bringing together people who care deeply about software and its impact on the world.

In its fifth year, XConf is our annual technology event created by technologists for technologists.

Participate in a robust agenda of talks as local thought leaders and Thoughtworks technologists share first-hand experiences and exchange new ways to empower teams, deliver quality software and drive innovation for responsible tech.

Explore how at Thoughtworks, we are making tech better, together.

Tickets are now available and all proceeds will be donated to Indigitek, a not-for-profit organisation that aims to create technology employment pathways for First Nations Peoples.

Click the button below to register and get your ticket for the Melbourne, Sydney or Brisbane event

GET YOUR TICKET!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Published in Security
Tagged under
Staff Writers

Our Staff Writers and Guest Writers contribute content to iTWire each day and they are a valuable asset to the team. If you want to be a staff writer please contact us.

Latest from Staff Writers

Related items

More in this category: « Italian energy giant Enel hit by Windows NetWalker ransomware Nitro again insists data breach 'isolated' as incident gets more coverage »
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments