A recent study by cybersecurity firm ESET has revealed a concerning trend in the workplace. As per the findings, 90 per cent of employees are using their company-provided laptops for personal use, a practice that poses significant security risks.
The study highlights that many employees are engaging in high-risk behaviours on their work devices, including accessing adult content, gambling and even exploring the dark web. Alarmingly, the research found that 63 per cent of respondents admitted to accessing the dark web on their work laptops weekly, with 17 per cent doing so daily.
This behaviour is particularly troubling in the current era of hybrid and remote work, where the distinction between personal and professional lives is increasingly blurred. Additionally, these activities not only expose employees to potential cybersecurity threats but also put the company’s sensitive information at risk.
The study also identified younger employees, particularly those aged 16-24, and male workers as the primary groups engaging in these risky behaviours.
This demographic is also more likely to connect to unsecured public Wi-Fi networks and use personal USB devices on work laptops, further compounding the security risks faced by companies.
In response to these findings, cybersecurity experts are emphasising the need for robust security measures, especially in hybrid and remote-work environments. Companies are urged to prioritise endpoint security and provide employees with the necessary training to navigate the blurred boundaries between work and personal device use.
Despite the clear dangers -associated with these practices, many employees remain resistant to employer oversight. The study found that 36 per cent of workers view their employer monitoring personal activity on work laptops as a violation of privacy.
Additionally, 18 per cent of respondents admitted that they did not have any cybersecurity software installed on their work devices. Another seven per cent are unsure about the security status of their devices.
Given the growing prevalence of hybrid working arrangements, companies are being urged to establish clear guidelines and enforce stricter cybersecurity rules. This includes educating employees on the risks of using work devices for personal activities and implementing remote management software to monitor and protect corporate data.