Are You Having A Technology Emergency?

True North Networks Blog

Remote Work Isn’t Good for Corporate Security

remote-work-cybersecurity

Working from home has its advantages. But, according to new data, one of them isn’t keeping the organization secure.

Now that we’ve had some time to allow employees to work from home, security vendors have had time to quantify just how secure your organization really is. The most recent data comes from MFA vendor OneLogin’s 2020 COVID-19 State of Remote Work Survey Report. According to the report, 62 percent of employees have had one of their online accounts compromised, despite 60 percent of organizations implementing multi-factor authentication.

That’s nearly two-thirds of employees!

It becomes clear why such a large percentage of employees have fallen prey to a credential attack when you look at other data in this report; according to the report, employees are using very bad security practices while at home:

  • 33% have downloaded a personal application without approval
  • 36% access work applications from personal devices
  • 45% have shared their work device with their spouse, partner, or children
  • 17% have visited adult sites on with work device

As feared, employees have relaxed their sense of security while working from home; the mix of distractions, being in a home and not work setting, and blending work and personal time all have had an impact.

Organizations wanting to counteract this trend need to restore their employee’s sense of importance around being vigilant when interacting with email and the web. Leveraging continual online Security Awareness Training is the key here; educating users on not just how to behave and what attacks look like, but on why it’s important for them to play a role in corporate security – whether in the office, on the road, or at home.   

Lots of new data is now just coming out of the woodwork demonstrating some of the harsh realities of having employees work from home without proper security in place.

According to new data from software information hub Capterra, in their Remote Work Survey 2020, employees are doing anything but practicing good security:

  • 23 percent always share password between personal and work accounts
  • 33 percent have a single password they use across sites
  • Only 15 percent have strong passwords

It may be that employees aren’t being properly prepared with only 24 percent of organizations having dedicated security staff where that person is known to employees. Although, according to the report, 64 percent of remote workers have received Security Awareness Training. But, with nearly a third of employees falling victim to phishing scams (which nearly half – 45% - were COVID-19 related), the training may not be continual in nature – which is critical to create a security culture and a vigilant mindset on the part of the employee.

Proper Security Awareness Training keeps employees mindful about their role in corporate security and the need for good security practices to be put into place. With continual training, employees can be made aware of the need for improved password hygiene and how to be looking for scams that take advantage of current events.

Remote workers aren’t going anywhere, best we can tell. It’s time to put some additional protections in place through educating your remote employees.

Resource: https://blog.knowbe4.com/remote-work-isnt-good-for-corporate-security-part-2-30-of-organizations-have-been-the-victim-of-phishing-scams-since-the-lockdownhttps://blog.knowbe4.com/remote-work-isnt-good-for-corporate-security-part-1-6-in-10-employees-online-accounts-have-been-compromised-since-working-remotely?utm_content=130918514&utm_medium=social&utm_source=linkedin&hss_channel=lcp-2225282

 

 

When It Comes To Cybersecurity, Covid-19 Tells Us ...
How Cybersecurity Habits at Home Threaten Corporat...
TOP