Telework study: habits of connecting to the corporate system from home threaten network security
New CyberArk Survey Finds Home Work Habits – Including Reusing Passwords And Letting Family Members Use Business Devices – Endanger Critical Business Systems and sensitive data.
The survey, which aimed to assess the current state of safety in the extended remote work environment, shows the following results:
85% of French employees working remotely use “BYOD” devices (Bring Your Own Device, or WITH, “bring your personal communication equipment”) that are unmanaged and insecure to access the company’s systems;
53% of French employees (compared to 66% worldwide) have adopted communication and collaboration tools such as Zoom and Microsoft Teams, which have recently reported security vulnerabilities.
Convenience often takes precedence over safety – especially when both parents are working
The study finds that the risks to corporate security are particularly high when it comes to working parents. In the context of the COVID crisis, they had to quickly and simultaneously become teachers, caregivers and full-time playmates. So it is not surprising that good cybersecurity practices are not always high on the agenda when it comes to working from home.
90% of French respondents reuse passwords for all applications and devices, compared to 78% globally;
36% of them unsecure browser passwords are saved on company devices;
29% admitted authorizing other members of their household to use their professional devices for activities such as school work, games and shopping.
Are the security policies currently applied to homework sufficient?
While 90% of French IT teams are confident in their ability to secure the new workforce remotely, 45% have not strengthened their security protocols despite the profound upheaval that has taken place in the way employees connect to the business and adding new productivity apps.
The rush for new applications and integrated services that make it easier to work remotely, combined with unsecured connections and unsafe security practices adopted by employees, has greatly increased the attack surface. Security policies therefore need to be updated to adapt to this new and growing threat landscape. This is especially true when it comes to protecting the privileged credentials of teleworkers, who, if compromised, could provide access to an organization’s most critical systems and resources.
“The security posture of organizations continues to be tested, as many remote employees face significant challenges in reconciling productivity and security in their professional and personal workspaces, explains Marianne Budnik, Chief Marketing Officer from CyberArk. As more and more organizations generalize long-term teleworking policies, it is important to learn from the start-up phases of remote work and to put in place a cybersecurity strategy that does not force employees to make compromises that could endanger their business. “
About the survey
CyberArk’s remote work survey was conducted in late April 2020 by an independent research organization. The study includes responses from 3,000 teleworkers and IT professionals in the United States, the United Kingdom, France and Germany.