A recent study shows that employees can threaten cyber security within a business setting more than viruses.
By no means are we downplaying viruses. Viruses can be detrimental to your business and continue to destroy company reputations on a day to day basis, plus they contribute to billions of pounds in lost revenue every year as a result of downtime.
As our readers and clients know, we centre a lot of our efforts in trying to teach people how they can be savvier in preventing viruses getting onto their company and home networks.
However, it is common for people to assume that by putting in place anti-virus software, they are therefore invincible to cyber security threats, when there are in fact so many other things to be considered if you truly want to be a cyber hero. And everyone wants to be a cyber hero.
We’ve been looking at a recent study conducted by Media Pro, where researchers wanted to get the bottom of what the real threats are for a company when it comes to cyber security. They did this by gathering information together to find out what people’s general privacy and cyber security IQ was.
The study involved monitoring 1000 employees and other members of the public for one month to get an idea of the kind of security and privacy habits they possessed.
We all like to think that as employees we are abiding of the rules and there’s nothing we do that could ever put the company we work for at risk. Well, unfortunately that’s not the case. (It’s a bit how we all view ourselves as better drivers than we really are!)
The truth is that many of us are just oblivious to the fact that we are unintentionally putting the companies that we work for at risk every day.
The results of the study showed that a huge 88% of respondents lacked the necessary awareness to stop preventable privacy or security incidents – which we find terrifying.
The infographic which represents the results of the survey shows that incident reporting and working remotely are the main areas that people fail to act safely in. So this could be things such as noticing an increase of suspicious emails and not reporting these to management.
In terms of remote working. From a company policy standpoint, you should be using a company approved removable storage device for work related activity and nothing else. Home and work devices should not be mixed.
Additionally, 30 percent of respondents violated the company’s code of conduct by posting company-related issues on social media. Social media is a mining ground for phishers and hackers, as it can be incredibly easy to find out information. What you may think is an innocent post could be just the material a phisher is looking for.
This is only the tip of the iceberg, you can read the rest of the study here.
How Pyranet plan on saving the world
We provide cyber security training, call us on 0115 8 24 25 26 for a no obligation chat, or pop an email over to firstname.lastname@example.org.
We’ve had a huge amount of people requesting cyber security awareness training recently, so we’re pretty chuffed that we’ve helped so many people out in becoming much safer in the online world.
As an employer, we suggest following these tips:
- Only giving people permissions and access to things that they need.
- Setting out clear rules to employees especially with regards to social media.
- Employees should be encouraged to keep an eye out and say something if they notice strange happenings on their computer.
- Arrange regular cyber security training sessions for yourself and your employees to attend.
As an employee, we suggest following these tips:
- Always lock your computer when stepping away from your desk, even if only for a second
- Create a variety of strong passwords, that contain upper and lower case letters, numbers and symbols. Do not use the same password for multiple applications.
- Do not open any attachments or links if they are from an untrusted sender
- Always report any suspicious activity to your line manager.
The Pyranet Team