A recent study reveals that 90% of workers use their company-provided laptops for personal activities, which could pose a serious risk to cybersecurity.
Increasing risky activities
The research, conducted by ESET, highlights that a substantial portion of employees also engage in risky activities using company hardware. These activities include:
- Viewing adult content
- Gambling
- Accessing the dark web
- Illegally streaming sports events
ESET attributes this increase in risks to the shift towards hybrid and remote work, adding additional pressure to security teams.
Alarming data on dark web usage
The study revealed that:
- Two-thirds (63%) of respondents accessed the so-called “dark web” weekly from their work laptops
- 17% accessed it daily
- Men were the primary users accessing the dark web
- Youthful workers (16-24 years old) were more likely to connect to unsecure public Wi-Fi networks and use personal USB devices
Security recommendations
Jake Moore, Global Cybersecurity Advisor at ESET, commented: “We often hear that ’employees are the weakest link in security’ and device security may not be front of mind, which could cause problems switching between work and personal devices.”
Moore acknowledged the benefits of the work-life balance offered by hybrid and remote work environments, but emphasized that companies should implement better cybersecurity processes.
Employee resistance
Despite the clear dangers of personal use and the benefits of remote management software:
- 36% would consider their boss viewing their personal activity as a privacy violation
- Around 18% have no cybersecurity software on their work devices
- An additional 7% were unsure if their device was adequately protected
With hybrid work as a permanent reality and the blurred lines between work and personal life increasing, it is evident that companies need to impose stricter rules to protect both sensitive company information and employees. Implementing stronger security measures for remote management of corporate devices, as well as educating employees on cybersecurity, is recommended.