Only A Quarter Of Employees Have Cyber Security Training

Uploaded on 2020-05-27 in JOBS-Training, JOBS-Careers, FREE TO VIEW, BUSINESS-Services-IT & Telecoms, TECHNOLOGY--Resilience

COVID-19 has radically altered the corporate cyber-threat landscape. Thanks to this lockdown, we are all now working from home and for many of us it is very hard to strike the right work and personal life balance and focus. But millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.

A new report from Kaspersky shows that employers are failing to prepare their workers for many of the cyber security risks present when working on business at home.

According to Kaspersky, 51% have been watching adult content on the devices they use for work as well. Nearly a fifth (18%) of workers do this on devices provided to them by their employers, with 33% admitting to watching adult content on their personal devices that they also use to do their work.  Also, 73% of workers have not received any IT security awareness training since they transitioned to working from home.

Globally, many more employees are now working from home and therefore it is very important for organisations to ensure their staff can do this securely. 

Establishing effective cyber security measures is critical as remote working may also bring new risks such as increased spam and phishing attacks, connecting to compromised WiFi spots or the use of shadow IT by employees. Millions of people across the world were forced to begin working from home in early March as countries put quarantine measures in place. Yet in the report, 73% of 6k employees who spoke with Kaspersky said they have " not yet received any specific cyber security awareness guidance or training from their employer." 

Worse, another 27% of workers said they have already been on the receiving end of COVID-19 related phishing emails.

The findings are part of a larger Kaspersky study on how the Corvid-19 virus has changed peoples working methods."It is difficult to keep things 'business as usual' when everything needs to change so dramatically," said Andrey Dankevich, senior product marketing manager at Kaspersky. "While employees are trying to get used to the new reality of working from home, IT and cybersecurity teams are under pressure to enable them to continue working safely." 

The cyber security dangers inherent in the massive shift to teleworking, which exposes business data to the insecurity of home networks and devices used by multiple children and other adults are well known, yet the Kaspersky report shows that many businesses are still failing to prepare their employees for the various threats that have only increased since cybercriminals have increased efforts to take advantage of people working from home. 

Kaspersky say that many employees have increased the use of online services for work that were not approved by their IT departments, such as video conferencing (70%), instant messengers (60%) or file storage services (53%). The report reveals  other worrying statistics, like the fact that 68% of respondents said they use their own computers and just 53% of employees use a VPN to connect to corporate networks.
 
The report also notes that at least a third of respondents admitted to visiting adult websites on the laptops they also used for work, exposing themselves to even more risk considering cybercriminals often use these sites as a way to steal information or trick people into downloading malicious content.

Kaspersky included a number of suggestions in the report that ranged from making sure all employees know who to call in the event of a cybersecurity problem to paying close attention to workers who have to use personal devices.

Enterprises should also make sure all devices and systems are up to date with patches in addition to scheduling regular cybersecurity training sessions. Employees should ensure that personal cyber security is given to each employee that they can do on their lap-tops for about 10/15 mins every day.

 Kaspersky:      Kaspersky:        Hindustan Times:     Techrepublic:   

_____________________________________________________

Please contact GoCyber for a cost-effective and very engaging training tool for all employees.  To  request a demo click  >  Here  <

For a Cyber Audit Report and recommendations on your organisation’s cyber security and cyber training please contact Cyber Security Intelligence 

 

« Iran In The Firing Line
Cyber Attacks On British Business Every Minute »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ACME Communications

ACME Communications

ACME Communications specialises in the field of data centre, implementation, maintenance & operation and all aspects of other IT service.

iboss Network Security

iboss Network Security

The iboss cloud is designed to deliver Network Security as a Service, in the cloud, using the best malware engines, threat feeds and log analytics engines.

RCMP Cybercrime Strategy

RCMP Cybercrime Strategy

The RCMP Cybercrime Strategy sets out in an Operational Framework and Action Plan to combat cybercrime.

EY Advisory

EY Advisory

EY is a multinational professional services firm headquartered in the UK. EY Advisory service areas include Cybersecurity.

CETIC

CETIC

CETIC is an applied research centre in the field of ICT. Key technologies include Big Data, Cloud Computing, the Internet of Things, software quality, and trust and security of IT systems.

Cord3

Cord3

Cord3 delivers data protection, even from trusted administrators – or hackers posing as administrators – with high privilege.

Secured Communications

Secured Communications

Secured Communications has developed the only unified secure communications platform trusted by public safety and counter terrorism professionals around the world.

KDM Analytics

KDM Analytics

KDM Analytics software products automate the NIST risk management framework (RMF) assessment for operational technology (OT) systems.

IDX

IDX

IDX is the leading consumer privacy platform built for agility in the digital age.

OmniCyber Security

OmniCyber Security

Omni is a cyber security firm specialising in Penetration Testing, Managed Security and Compliance.

NI Cyber Security Centre

NI Cyber Security Centre

NI Cyber Security Centre works to make Northern Ireland cyber safe, secure and resilient for its citizens and businesses.

PacketViper

PacketViper

PacketViper’s Deception360 actively defends networks with deception-based threat detection and automated response to both external and internal cyber threats.

Radiance Technologies

Radiance Technologies

Radiance solutions provide technological advantage and operational superiority for our nation in the areas of intelligence, cyber and advanced weapon systems.

CODA Intelligence

CODA Intelligence

CODA's AI-powered attack surface management platform helps you sort out the important remediations needed in order to avoid exploits on your systems.

Security4Media

Security4Media

Security4Media is a non-profit association set up to reduce risks and support trust in media, in the face of increasing cybersecurity threat levels.

CYNC Secure

CYNC Secure

CYNC boosts cybersecurity remediation by consolidating fragmented data and optimizing operational processes.