Two Thirds Of Organizations Suffer Breaches Due To WFH

Uploaded on 2023-06-13 in TECHNOLOGY--Resilience, FREE TO VIEW

The remote workplace is now popular across the world thanks to the rapid response to the covid pandemic. While many companies will have now been operating a remote or hybrid structure, a recent survey by security company Fortinet reveals that the remote workplace poses a significant security threat.

The 2022 annual report from the Internet Crime Complaint Center (IC3) shows that data breaches cost the US over $450m, a growth of 148% since 2020.

This demonstrates that, though employers are continuing to offer more flexible working options for their employees, they aren’t committing to keeping their networks secure.

Remote or hybrid workplaces offer unique challenges to data security and some companies may still be encountering new issues even two years into the process. However, the cost of insecure networks and lax document security is too high to not take every step possible to prevent breaches.

WFH Security Issues & The Procedure To Manage Them

Working from home of course means using your home WiFi network, which is undoubtedly more vulnerable than networks set up for business use. The security of an employee’s home network is also difficult and sometimes expensive to assess, meaning many companies will not be able to afford to do it or don’t have the infrastructure in place to do so.

There is technology available to assess personal WiFi systems but this is most likely unaffordable for most small businesses. Therefore, other steps need to be taken to ensure your staff know how to set up their own security. This could include guides on reviewing firewalls, the option to add antivirus software and providing IP addresses to your security team.

Additionally, some small businesses that began remote working in 2020 and have continued the policy may not have been able to offer devices to everyone working from home and are now experiencing issues with security because of this. Even with devices provided by the company, asset management poses a threat to security, particularly when employees leave the business or travel frequently.

Similar to the previous point, you may need to offer your staff security options to keep devices safe. It’s also important to ensure all staff have a strong awareness of their role in maintaining security in their work through regular training. Human error is always the most significant vulnerability and network issues only compound this challenge.

Not only do virtual documents pose challenges, but there are also security issues whenever employees need to use physical documents when working from home. As different kinds of data need to be disposed of in different ways to ensure security compliance, this is not always possible in a home office environment.

For any employees handling physical documents, training must be provided and regularly refreshed on how and when to properly dispose of data. You may also need to purchase equipment like a compliant shredder for your employees’ home offices. This will be necessary if your team works remotely often but may not always be affordable.

Ultimately, if these challenges are too expensive or difficult to manage, you may need to reassess your working-from-home policy. This could mean that some employees need to be in the office more than others or that remote working isn’t a possibility for your staff. Though many companies are working on a hybrid model, the level of insecurity this causes could be too much to risk for your company.

How The Remote Workplace Has Made Data Security Even More Essential

The Fortinet survey also found that most organizations haven’t mitigated the risks related to home working in the two years since the practice has become more commonplace. Since the data shows that the cost of data breaches has more than doubled in this same period, this highlights how essential security measures are.

Whether it’s virtual or physical data, every business needs to ensure they have thorough policies, the right technology and a competent awareness from all staff on how they can protect the boundaries of your organization from breaches.

Kyle Mitchell is Commercial Sales Director at Whitaker Brothers

You Might Also Read 

Retrofixing The Remote Workforce:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Manchester University Hacked
Meta Is Building A Rival To Twitter  »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Cigniti Technologies

Cigniti Technologies

Cigniti Technologies provides Independent Software Testing (IST) Services including software security testing.

Fraud.com

Fraud.com

Fraud.com ensures trust at every step of the customer's digital journey; this complete end-to-end protection delivers unified identity, authentication and fraud detection and prevention.

Flipside

Flipside

Information Security training provider specialized in personalized training and security awareness campaigns.

Cybersecurity Professionals

Cybersecurity Professionals

Search vacancies from top cyber security jobs worldwide on CyberSecurity Professionals. View IT security jobs or upload your CV to be seen by recruiters from industry leading firms.

Women in CyberSecurity (WiCyS)

Women in CyberSecurity (WiCyS)

Women in CyberSecurity (WiCyS) is a non-profit organization dedicated to the recruitment, retention and advancement of women in the cybersecurity field.

Center for Education & Research in Information Assurance & Security (CERIAS)

Center for Education & Research in Information Assurance & Security (CERIAS)

CERIAS is one of the world’s leading centers for research and education in areas of information and cyber security.

Eaton

Eaton

Eaton provides comprehensive cybersecurity services for operational technology (OT) to help keep your operations and personnel safe.

Team Secure

Team Secure

Team Secure provide Enterprise-grade Cyber Security consultancy, managed security services and cyber security staffing services.

iSPIRAL IT Solutions

iSPIRAL IT Solutions

iSPIRAL is a leading regulatory technology software provider delivering state-of-art AML, KYC, Risk and Compliance solutions.

Digital Intelligence

Digital Intelligence

Digital Intelligence offer a full array of products, forensic and e-discovery consulting services and training.

Azerbaijan Cybersecurity Center (ACC)

Azerbaijan Cybersecurity Center (ACC)

Azerbaijan Cybersecurity Center is a state-of-the-art facility to deliver advanced cyber training programs and build the next generation of Azerbaijan’s cybersecurity professionals.

DHCO IT

DHCO IT

The DHCO IT team are experts in IT support, cyber security, cloud support and disaster recovery, and are Microsoft 365 partners.

Irys Technologies

Irys Technologies

Irys Technologies specialize in pioneering digital transformation solutions designed to streamline communications and enhance maintenance and operational efficiency for a variety of sectors.

QANplatform

QANplatform

QANplatform is a Quantum-resistant hybrid blockchain platform.

WaveLink

WaveLink

WaveLink offers low risk, results-oriented Engineering Services and best-of-class Technical Support Services. Areas of expertise include cyber and security engineering.

Advania UK

Advania UK

Advania are one of Microsoft’s leading partners in the UK, specialising in Azure, Security, Dynamics 365 and Microsoft 365.