Image of a woman on her laptop in a coffee shop

Three Reasons Poor Employee Security Habits Expose Public and Private Sector Organisations in Ireland  

Des Ryan

Des Ryan

Solutions Director

Read Time, 4 min.

Three Reasons Poor Employee Security Habits Expose Public and Private Sector Organisations in Ireland  

Kevin Mitnick, the famous hacker once said, “What I found personally to be true was that it’s easier to manipulate people rather than technology.”

Digital transformation is enabling and transforming organisations, driving everything from employee productivity, to the ability to be able to work remotely. However, in the drive to transform, Irish organisations are leaving themselves vulnerable to major security risks that can lead to data and revenue loss as well as significant damage to a company’s reputation. They forget to keep their employees up to date in terms of security training and awareness.

 

Microsoft Ireland today launched research on security within public and private sector organisations across the island of Ireland to get a better understanding of the security habits of employees within Ireland’s largest organisations. The research looked at what gaps were emerging that could be exploited by hackers or lead to a data breach.

 

  1. Poor password hygiene could lead to a payday for Cyber criminals

 

One major finding is that passwords have become too easy to guess or steal. Nearly a quarter (22%) of Irish employees write down their passwords, with 77% of employees relying on their memory for their work and personal passwords.

 

When it comes to password hygiene, 2 in 5 recycle both their work and personal passwords. The study also found that people do not update passwords regularly, with only half of respondents claiming to update their passwords only once a year or less.

 

With employees using the same weak passwords across dozens of different accounts across their work and home life, a stolen password could be hugely lucrative for criminals. One way to combat this is through biometric verification, which 3 in 5 employees would welcome as an alternative to workplace passwords.

 

  1. Employees working from home are more likely to engage in risky security activities

 

Improved workplace technology and more reliable broadband speeds have made working from home more accessible than ever. While the ability to be more flexible in the workplace has been welcomed by many, the research discovered that employees working from home are much more likely to engage in risky security activities.

 

Nearly half (49%) of those working from home at least once a week used their personal email account for saving, editing, sending, or sharing work-related documents, with 24% revealing that they accidentally shared work-related material with friends and family.

 

A quarter of those working from home at least once a week admit to having friends or family access work devices at home, which may violate data policies from their organisation. This is concerning when 56% of respondents reported they work from home, and almost half of these have no restrictions on document access when working from home.

 

Another worrying finding for Irish organisations is that 25% of those surveyed admitted plugging a USB thumb drive that wasn’t from their company into their work device, 12% connected back-up drives, and 5% connected a smartphone that didn’t belong to them. This increases the chances of employees compromising their identity – with Microsoft previously reporting that 81% of major data breaches last year could be traced back to this issue alone.

 

  1. Many have already fallen victim to hackers

 

With the research pointing to several areas of potential vulnerability for organisations it is unsurprising to learn that 30% of employees surveyed have been notified about a breach of their personal data. As well as this, 44% have experienced problems with phishing, hacking, cyberfraud or other cyberattacks happening in either their personal and professional lives.

 

As in the popular TV show, Mr Robot, the Hacker Elliot Alderson concluded that “humans make the best exploits” so organisations failing to factor employee behaviour into their security strategy could see security plans fail.

 

As part of its on-going efforts to drive better security for organisations, Microsoft invests $1bn each year in security, it analyses more than 6.5 trillion signals daily, processes 630 billion authentications monthly, and scans 470 billion e-mails for malware and phishing monthly.

 

In addition, Microsoft has launched two new security solutions – Microsoft Identity & Threat Protection and Information Protection & Compliance to help companies achieve their security and compliance goals.

Microsoft offers security products to both private and public sector organisations, leading with Microsoft 365 E5 which provides customers with the most extensive productivity and advanced security solutions. To answer the growing need for security and compliance solutions in an age of increasingly sophisticated cybersecurity threats, as well as complex information protection needs due to regulations like GDPR, Microsoft has now launched two new identity and compliance solutions, called Microsoft Identity & Threat Protection and Information Protection & Compliance, designed to provide customers with simpler purchase, deployment, and adoption. They are based on the Intelligent security Graph, which continuously provides the latest information about cyber security attacks and provides “up to date” security. Click here for more information about Microsoft’s security solutions.

 

Des Ryan

Director of Specialist Technology Units

 

 

Download our latest research on the cyber security climate in Ireland

How new threats and the same bad habits pose serious risk to your organisation.

Discover more related articles per industry:

Education

  • A guide to GDPR for universities

    A guide to GDPR for universities

    With the EU’s new General Data Protection Regulation coming into effect on May 25, understand how universities like yours can take the right steps towards compliance with this free eBook – and other useful resources. Your university on a journey on a journey Your university is on a journey with lots of ‘data subjects’. They’re […]

Government

Healthcare

  • Two female nurses having a virtual conversation through Microsoft Teams

    Belfast Trust: Reimagining patient care

    “There have been many heroic actions by our staff but we’re not heroes for what we’ve done – I’m just glad we could do our bit to help.” Paul Duffy, Co-Director of IT and Telecommunications at Belfast Trust, is talking about the monumental impact COVID-19 has had on the healthcare sector and how virtual consultations […]

  • logo

    Why trust is the essential ingredient in healthcare digital transformation.

    My phone had scarcely stopped ringing for weeks. Now it was ringing again. “Veronica,” said the voice at the other end, “we have an idea!” Immediately, I recognized who it was. I’ve known Carlo Tacchetti for almost as long as I’ve been at Microsoft. He’s a professor at the Vita-Salute San Raffaele University and the […]

Manufacturing

  • Etex

    Etex uses modern tools to unite its business and better focus on customers

    When it comes to construction, all components must come together in a timely manner in order to produce the optimum product. While Etex, a Belgian building solution manufacturing company, helps make this a reality on a day-to-day basis, it wanted to find a way to enhance productivity and collaboration internally. With locations across more than […]

Retail

Discover more related articles per dossier:

Customer Stories

  • Two female nurses having a virtual conversation through Microsoft Teams

    Belfast Trust: Reimagining patient care

    “There have been many heroic actions by our staff but we’re not heroes for what we’ve done – I’m just glad we could do our bit to help.” Paul Duffy, Co-Director of IT and Telecommunications at Belfast Trust, is talking about the monumental impact COVID-19 has had on the healthcare sector and how virtual consultations […]

Digital Transformation

Press

  • 2 people meeting with two surfaces on the table

    Winning the war for talent – the power of digital culture

    Winning the war for talent – the power of digital culture For the first time in history, we now have four generations in the Irish workplace – some organisations have as many as five generations working together. For business leaders, it means that finding and cultivating the best talent has never been more important – […]

Security & Privacy

  • Two people sitting and standing in front of a computer

    How to disarm the threat of Shadow IT

    One of the biggest threats to business security comes from within. Are you equipped to deal with the threat of shadow IT? Microsoft’s extensive Work Reworked report shows that with change becoming the new norm for businesses everywhere, the challenges to security lie not just from outside the organisation but also from within. Throwing open […]

Tips

  • iPhone showing Outlook Mobile emails

    Stay connected and organised at work, at home and on the go with Outlook Mobile

    Outlook Mobile was launched with a mission to deliver the best on-the-go email and calendar app.  An app combining the best possible customer experience with enterprise security – all designed uniquely for a mobile-first experience. Today, Outlook Mobile is used on more than 100 million iOS and Android devices and continues to receive high ratings. […]