Only A Quarter Of Employees Have Cyber Security Training

Uploaded on 2020-05-27 in JOBS-Training, JOBS-Careers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms, TECHNOLOGY--Resilience

COVID-19 has radically altered the corporate cyber-threat landscape. Thanks to this lockdown, we are all now working from home and for many of us it is very hard to strike the right work and personal life balance and focus. But millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.

A new report from Kaspersky shows that employers are failing to prepare their workers for many of the cyber security risks present when working on business at home.

According to Kaspersky, 51% have been watching adult content on the devices they use for work as well. Nearly a fifth (18%) of workers do this on devices provided to them by their employers, with 33% admitting to watching adult content on their personal devices that they also use to do their work.  Also, 73% of workers have not received any IT security awareness training since they transitioned to working from home.

Globally, many more employees are now working from home and therefore it is very important for organisations to ensure their staff can do this securely. 

Establishing effective cyber security measures is critical as remote working may also bring new risks such as increased spam and phishing attacks, connecting to compromised WiFi spots or the use of shadow IT by employees. Millions of people across the world were forced to begin working from home in early March as countries put quarantine measures in place. Yet in the report, 73% of 6k employees who spoke with Kaspersky said they have " not yet received any specific cyber security awareness guidance or training from their employer." 

Worse, another 27% of workers said they have already been on the receiving end of COVID-19 related phishing emails.

The findings are part of a larger Kaspersky study on how the Corvid-19 virus has changed peoples working methods."It is difficult to keep things 'business as usual' when everything needs to change so dramatically," said Andrey Dankevich, senior product marketing manager at Kaspersky. "While employees are trying to get used to the new reality of working from home, IT and cybersecurity teams are under pressure to enable them to continue working safely." 

The cyber security dangers inherent in the massive shift to teleworking, which exposes business data to the insecurity of home networks and devices used by multiple children and other adults are well known, yet the Kaspersky report shows that many businesses are still failing to prepare their employees for the various threats that have only increased since cybercriminals have increased efforts to take advantage of people working from home. 

Kaspersky say that many employees have increased the use of online services for work that were not approved by their IT departments, such as video conferencing (70%), instant messengers (60%) or file storage services (53%). The report reveals  other worrying statistics, like the fact that 68% of respondents said they use their own computers and just 53% of employees use a VPN to connect to corporate networks.
 
The report also notes that at least a third of respondents admitted to visiting adult websites on the laptops they also used for work, exposing themselves to even more risk considering cybercriminals often use these sites as a way to steal information or trick people into downloading malicious content.

Kaspersky included a number of suggestions in the report that ranged from making sure all employees know who to call in the event of a cybersecurity problem to paying close attention to workers who have to use personal devices.

Enterprises should also make sure all devices and systems are up to date with patches in addition to scheduling regular cybersecurity training sessions. Employees should ensure that personal cyber security is given to each employee that they can do on their lap-tops for about 10/15 mins every day.

 Kaspersky:      Kaspersky:        Hindustan Times:     Techrepublic:   

_____________________________________________________

Please contact GoCyber for a cost-effective and very engaging training tool for all employees.  To  request a demo click  >  Here  <

For a Cyber Audit Report and recommendations on your organisation’s cyber security and cyber training please contact Cyber Security Intelligence 

 

« Iran In The Firing Line
Cyber Attacks On British Business Every Minute »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

TitanFile

TitanFile

TitanFile is an award-winning, easy and secure way for professionals to communicate without having to worry about security and privacy.

Magic Software Enterprises

Magic Software Enterprises

Magic provide Mobile Device Management (MDM) for Secure Enterprise Mobility. Magic MDM overcomes the challenges of mobile device management security by protecting all of your devices, data and content

Cypress Semiconductor

Cypress Semiconductor

Cypress is a semiconductor design and manufacturing company providing embedded devices for secure IoT applications.

BackBox Software

BackBox Software

BackBox is a leading provider of solutions for automated backup and recovery software for security and network devices.

Ikarus Security Software

Ikarus Security Software

Ikarus focuses on antivirus and content-security solutions.

CyberWarrior

CyberWarrior

CyberWarrior deliver training and consulting for some of the world’s top brands and also partner with national systems integrators to augment their teams with our expertise.

Cyber Threat Defense (CT Defense)

Cyber Threat Defense (CT Defense)

CT Defense specialize in penetration testing and security assessments.

CUJO AI

CUJO AI

CUJO AI is the global leader in the development and application of artificial intelligence to improve the security, control and privacy of connected devices in homes and businesses.

Alias Robotics

Alias Robotics

Alias Robotics is a robot cyber security company. We deliver cyber security solutions for robots and robot components.

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.

HEROIC Cybersecurity

HEROIC Cybersecurity

HEROIC’s enterprise cybersecurity services help improve overall organizational security with industry best practices and advanced technology solutions.

O'Reilly Media

O'Reilly Media

O’Reilly’s help professionals learn best practices and discover emerging trends that will shape the future of the tech industry.

Bastazo

Bastazo

Bastazo provides tools for vulnerability and patch management. Focus your cybersecurity operations on vulnerabilities with the highest risk of exploitation.

Vulnify

Vulnify

At Vulnify, we’re revolutionizing the way businesses identify and manage security vulnerabilities.

CloudQuery

CloudQuery

CloudQuery - bringing clarity into cloud infrastructure. The developer-first cloud governance platform for full visibility into security, compliance, and cost.

DeepStrike

DeepStrike

DeepStrike is a leading cybersecurity firm specializing in human-powered, high-quality penetration testing designed to protect businesses from evolving cyber threats.