A recent study by Lookout, Inc. has brought attention to the increasing security challenges faced by organizations due to remote work and Bring Your Own Device (BYOD) policies. The “State of Remote Work Security” report aims to inform IT and security leaders about the heightened risks associated with these modern work practices.
The Blurred Lines of Remote Work
The study highlights how the line between personal and professional activities has become increasingly blurred in remote and hybrid work environments, creating new vulnerabilities. For example, 32% of remote and hybrid workers admit to using unauthorized apps or software, while a striking 92% conduct work tasks on personal tablets or smartphones. This lack of visibility into personal devices and applications presents a significant security risk for organizations.
The Rise of Cloud Services and Its Impact on Security
With the traditional office setting fading, cloud services have become essential for business operations. The research indicates that 61% of U.S. companies moved their workloads to the cloud in response to the global pandemic to better support remote work. Although cloud services offer increased flexibility and efficiency, the incorporation of BYOD practices brings new risks. Devices not managed by IT departments lack necessary oversight, making them susceptible to threats like app vulnerabilities, phishing attacks, and data breaches.
Security Practices Among Remote Workers
The report identifies specific behaviors among remote workers that increase security risks:
- Accessing Networks from Various Locations:
- 90% of remote workers connect to corporate networks from locations other than their homes, potentially exposing sensitive company data to unmonitored networks.
- Storing Work Files on Personal Devices:
- 46% of employees save work-related files on personal devices, which may not have up-to-date operating systems, increasing the risk of malware attacks.
- Extended Use of Personal Devices:
- Nearly a third of remote employees spend over 20 hours per week working on personal tablets or smartphones, which often contain unauthorized apps that can be exploited for phishing attacks.
- Inconsistent Password Practices:
- 45% of remote workers use the same password for both work and personal accounts, which raises the risk of cybercriminals gaining access and committing identity theft.
The Need for a New Security Strategy
The findings stress the importance of adopting a new security strategy that aligns with the evolving nature of remote work. As employees access company data from various locations and collaborate remotely, there is an urgent need for adaptive security policies that can protect against both internal and external threats.
Sundaram Lakshmanan, Chief Technology Officer at Lookout, underscores the necessity for organizations to adapt to the expanded attack surface created by remote work. He reaffirms Lookout’s dedication to providing tools that secure users, devices, and data through adaptive security policies, which are vital for organizations navigating the challenges of fully remote or hybrid work environments.
The “State of Remote Work Security” report, based on a survey of 3,000 remote and hybrid workers across enterprise companies in the United States, United Kingdom, France, and Germany, highlights the critical need for organizations to reassess and strengthen their security strategies in response to the changing landscape of remote work and BYOD integration.