Tech
Employees’ Personal Activities and Cyber Security Risks
Employees’ personal activities can increase cybersecurity risks. In this content, explore the effects of individuals’ private lives on workplace security and the measures that can be taken.
New research shows that 90% of employees use the laptops provided by their companies for personal work-related activities, which poses a serious cybersecurity risk. This study conducted by ESET reveals that a significant portion of employees engage in risky behaviors such as viewing adult content, gambling, accessing the dark web, and watching illegal sports broadcasts using their work devices.
ESET emphasizes that hybrid and remote working increases pressure on security teams, and companies need to implement stronger security measures to manage corporate devices remotely and educate employees on these matters. The research found that two-thirds of participants (63%) access the dark web from their work laptops at least once a week, while 17% access it daily.
While men are often blamed for accessing the dark web, it has been determined that younger employees aged 16-24 are more likely to connect to unsecured public Wi-Fi networks and use personal USB devices. ESET Global Cybersecurity Consultant Jake Moore stated, “We often hear the phrase ‘Employees are the weakest link in security,’ and we must not forget that endpoint security may not be the first thing that comes to mind for people. This can lead to problems when switching between work and personal devices.”
Moore acknowledges the advantages of hybrid and remote working arrangements in terms of work-life balance, but he also emphasizes that companies need to implement better cybersecurity processes. Additionally, despite the clear dangers of personal use and the benefits of remote management software, it has been found that one-third of participants (36%) believe that their boss being able to see their personal activities is a violation of privacy.
Moreover, about one-fifth of participants (18%) reported that there is no cybersecurity software present on their work devices, and 7% expressed uncertainty about whether their devices are sufficiently protected. Considering that the hybrid working model is becoming permanent and the boundaries between work and personal life are increasingly blurred, companies need to enforce stricter rules to protect both sensitive company information and their employees.