Actions Speak Louder Than Words: Despite Claiming Security Awareness, Many Remote Workers Engage in Risky Online Behavior.Global Study Involving 1,000 Teleworkers in 10 Countries Reveals Contradictory Actions - and Reasons - for Hijacking hijacking Crime of seizing possession or control of a vehicle from another by force or threat of force. Although by the late 20th century hijacking most frequently involved the seizure of an airplane and its forcible diversion to destinations chosen by the air pirates, when Neighbors' Wireless Networks, Sharing Computers with Non-Employees, and More SAN JOSE San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif. -- A global third-party study commissioned by Cisco Systems “Cisco” redirects here. For other uses, see Cisco (disambiguation). Cisco System,Inc. (NASDAQ: CSCO, HKSE: 4333 ) is an American multinational corporation with 54,000 employees and annual revenue of US $28.48 billion as of 2006. ([R]) (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :CSCO CSCO Cisco Systems Incorporated (stock symbol) CSCO Chief Supply Chain Officer ) today reveals that while most remote workers say they are aware of security issues, their behavior - behavior that includes sharing work computers with non-employees, opening unknown emails, and hijacking neighbors' wireless networks - suggests otherwise. Designed to better understand how teleworkers' perceptions and behavior heighten height·en v. height·ened, height·en·ing, height·ens v.tr. 1. To raise or increase the quantity or degree of; intensify. 2. To make high or higher; raise. v.intr. security risks for the global network community, information technology (IT) organizations and the businesses they support, the study revealed responses from more than 1,000 teleworkers in 10 countries. Conducted this summer by an independent market research firm, the study consisted of end-user (job) end-user - The person who uses a computer application, as opposed to those who developed or support it. The end-user may or may not know anything about computers, how they work, or what to do if something goes wrong. surveys involving at least 100 respondents In the context of marketing research, a representative sample drawn from a larger population of people from whom information is collected and used to develop or confirm marketing strategy. in each of the following countries: the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. , United Kingdom, France, Germany Germany (jûr`mənē), Ger. Deutschland, officially Federal Republic of Germany, republic (2005 est. pop. 82,431,000), 137,699 sq mi (356,733 sq km). , Italy Italy (ĭt`əlē), Ital. Italia, officially Italian Republic, republic (2005 est. pop. 58,103,000), 116,303 sq mi (301,225 sq km), S Europe. , Japan, China, India, Australia, and Brazil. It spotlights the challenge that behavioral behavioral pertaining to behavior. behavioral disorders see vice. behavioral seizure see psychomotor seizure. and cultural tendencies create for IT security teams as more employees work outside of traditional offices - a business practice that can enhance productivity yet jeopardize jeop·ard·ize tr.v. jeop·ard·ized, jeop·ard·iz·ing, jeop·ard·izes To expose to loss or injury; imperil. See Synonyms at endanger. corporate and personal security. Whether they work at home, at a cafe, or in a hotel, numerous findings indicate that remote workers aggravate network security concerns because of a false sense of awareness. In fact, while two of every three teleworkers surveyed (66 percent) said they are cognizant cog·ni·zant adj. Fully informed; conscious. See Synonyms at aware. [From cognizance.] Adj. 1. of security concerns when working remotely, many admitted behavior that undermines and contradicts their awareness. Their reasons offer valuable insight for IT and security managers around the world, fueling a need for tighter, proactive relationships with end users. Below are four of several examples revealed in the study:
Sharing Corporate Devices With Non-employees
-- More than one of every five remote workers surveyed (21
percent) allows friends, family members or other non-employees
to use his or her work computer to access the Internet. In
China, more than two of every five (42 percent) admitted to
sharing their work computers. And in Japan, more end users
share their work computers with others (13 percent) than those
who use them for their own personal use (12 percent).
Top 5 Reasons: "I don't see anything wrong with it"; "My
company doesn't mind me doing so"; "I don't think letting them
use it increases security risks"; "I doubt my company would
care"; "Co-workers do it"
Accessing Neighbors' Wireless Networks
-- In China, Italy, and Brazil, almost one of every five
teleworkers admitted to accessing a neighbor's wireless network
when working from home. Although the global average was 11
percent, Germany (15 percent) and the United States (12
percent) joined China, Italy, and Brazil in eclipsing the
worldwide mark.
Top 5 Reasons: "I needed it because I was in a bind"; "I can't
tell if I'm using my own or someone else's wireless Internet
connection"; "Setting up my own wireless network is difficult
and confusing"; My neighbor doesn't know, so it's OK"; "It's
more convenient than using my wired connection"
Opening Suspicious Emails and Attachments
-- One of every four remote worker surveyed (25 percent) said he
or she opens unknown emails when using work devices. In China,
more than half of the respondents (57 percent) admitted they
open emails from unknown sources.
Key Finding: In India, 20 percent of teleworkers said they open
unknown emails and attachments, and in Brazil, 12 percent
admitted doing so.
Personal Usage Findings
-- One of the most glaring contradictions in the study's results
involved non-business activity: Only 29 percent of remote
workers surveyed in the 10 countries admitted that they use
their work computers for personal activities. However, 40
percent - 11 percent more - admitted that they use their work
computers for online shopping. This discrepancy occurred in
eight of the 10 countries (excluding China and India). For
example, in the U.K., only 27 percent admitted using their work
computer for personal reasons, but 53 percent said they shop
online when working remotely.
Top 5 Global Reasons: "My company doesn't mind me doing so"; "I
would never get things done if I didn't do them while at work";
"I doubt my company would care"; "Shopping online can't result
in security problems"; "I think my work computer is more secure
than my home computer."
"Hijacking wireless networks or sharing corporate devices with non-employees is a significant risk for the global IT community," said Jeff Platon, Cisco's vice president of Security Solutions Marketing. "To highlight the U.S. example, the unsafe behavior of 11 remote workers in a company of 100 can bring down a network or compromise corporate information and personal identities. It only takes one security breach. For large enterprises with tens of thousands of workers, especially those with global workforces and differing business cultures, the potential risk is even more challenging." According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Platon, this is where the roles of IT organizations and chief security officers come into play. The challenges posed by remote workers present an opportunity for IT and security teams to become more proactive in protecting their businesses and reshape their role in the eyes of end users - a role that has historically been tactical and reactive reactive /re·ac·tive/ (re-ak´tiv) characterized by reaction; readily responsive to a stimulus. re·ac·tive adj. 1. Tending to be responsive or to react to a stimulus. 2. . "IT must play a more strategic role, and to do that they need to develop stronger relationships with users to prevent threats from sabotaging efficiency and personal identities," Platon said. "This study illustrates a golden opportunity for IT to elevate el·e·vate tr.v. ele·vat·ed, ele·vat·ing, ele·vates 1. To move (something) to a higher place or position from a lower one; lift. 2. To increase the amplitude, intensity, or volume of. 3. its role from a reactive, back-office function. IT has the opportunity to be progressive - to maintain a steady dialogue with users, to implement educational programs tailored to different business cultures and user groups, and to weave security best practices into corporate cultures. Driving this cultural change can help maximize the value - and safety - of teleworking, especially at a time when businesses are becoming extremely mobile." For more information on global results and specific findings for all 10 countries, a white paper has been posted at: http://www.cisco.com/en/US/netsol/ns340/ns394/ns171/ns413/ networking_solutions_white_paper0900aecd8054581d.shtml About Cisco Systems Cisco Systems, Inc. (NASDAQ:CSCO), is the worldwide leader in networking for the Internet Internet Publicly accessible computer network connecting many smaller networks from around the world. It grew out of a U.S. Defense Department program called ARPANET (Advanced Research Projects Agency Network), established in 1969 with connections between computers at the . Cisco news and information are available at http://www.cisco.com. For ongoing news, please go to http://newsroom.cisco.com. Cisco, Cisco Systems, and the Cisco Systems logo are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries. All other trademarks mentioned in this document are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. This document is Cisco Public Information. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion