Security Market Segment LS
Tuesday, 15 September 2020 10:59

Smart home devices, apps a major ‘weak link’ in corporate cyber security, warns security firm Featured

By

Smart home devices and their apps represent a major weak link in the corporate cyber security chain as the lines between work and home life increasingly blur, according to one security firm that conducted a survey revealing 36% of Australian workers use personal devices to access corporate data – often via services and applications hosted in the cloud.

According to Trend Micro, its Head in the Clouds study found that these personal smartphones, tablets and laptops may be less secure than corporate equivalents and exposed to vulnerable IoT apps and gadgets on the home network.

And the study reveals that close to half (41%) of remote workers in Australia surveyed don’t have basic password protection on all personal devices, for example.

Trend Micro surveyed more than 13,000 remote workers across 27 countries - including Australia - to find out more about the habits of distributed workforces during the COVID-19 pandemic.

Trend Micro cites Dr Linda K. Kaye, a cyberpsychology expert, saying that, "The fact that so many remote workers use personal devices for accessing corporate data and services suggests that there may be a lack of awareness about the security risks associated with this.”

“Tailored cybersecurity training which recognises the diversity of different users and their levels of awareness and attitudes around risks would be beneficial to help mitigate any security threats which may derive from these issues," Dr Kaye said.

The Trend Micro study revealed that almost half (49%) of Australian remote workers have IoT devices connected to their home network, 8% using lesser-known brands, and many such devices (especially from smaller brands) have well-documented weaknesses such as unpatched firmware vulnerabilities and insecure log-ins - and these could theoretically allow attackers to gain a foothold in the home network, then use unprotected personal devices as a stepping-stone into the corporate networks they’re connected to.

According to Trend Micro there’s an additional risk to enterprise networks post-lockdown if malware infections picked up at home are physically brought into the office via unsecured personal BYOD devices.

The study also revealed that 68% of Australian remote workers connect corporate laptops to the home network - and Trend Micro says that although these machines are likely to be better protected than personal devices, there is still a risk to corporate data and systems if users are allowed to install unapproved applications on these devices to access home IoT devices.

“IoT has empowered simple devices with computing and connectivity, but not necessarily adequate security capabilities”, said Bharat Mistry, Principal Security Strategist at Trend Micro.

“They could actually be making hackers’ lives easier by opening backdoors via which they could compromise corporate networks. This threat is amplified as an age of mass remote working blurs the lines between private and company devices, putting both personal and business data in the firing line. Now more than ever, it is important that individuals take responsibility for their cybersecurity and that organisations continue to educate their employees on best practice.”

"As more BYOD are connected to the home network amidst the pandemic, it’s concerning that almost half of Australian remote workers have IoT devices connected to these networks; providing a direct route for cybercriminals to access corporate networks”, said Ashley Watkins, Managing Director, Commercial, Trend Micro ANZ.

“As remote working becomes the norm, organisations must enforce clear policies on acceptable device usage to combat threats caused by smart home networks and personal devices. Education and awareness training is also encouraged to ensure employees are across best practice security including identifying email threats, malicious files, and malicious URLs.”


Subscribe to ITWIRE UPDATE Newsletter here

Active Vs. Passive DWDM Solutions

An active approach to your growing optical transport network & connectivity needs.

Building dark fibre network infrastructure using WDM technology used to be considered a complex challenge that only carriers have the means to implement.

This has led many enterprises to build passive networks, which are inferior in quality and ultimately limit their future growth.

Why are passive solutions considered inferior? And what makes active solutions great?

Read more about these two solutions, and how PacketLight fits into all this.

CLICK HERE!

WEBINAR INVITE 8th & 10th September: 5G Performing At The Edge

Don't miss the only 5G and edge performance-focused event in the industry!

Edge computing will play a critical part within digital transformation initiatives across every industry sector. It promises operational speed and efficiency, improved customer service, and reduced operational costs.

This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.

But these technologies will only reach their full potential with assured delivery and performance – with a trust model in place.

With this in mind, we are pleased to announce a two-part digital event, sponsored by Accedian, on the 8th & 10th of September titled 5G: Performing at the Edge.

REGISTER HERE!

BACK TO HOME PAGE
Peter Dinham

Peter Dinham - retired and is a "volunteer" writer for iTWire. He is a veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments