New report from HP Wolf Security finds shadow computing on the rise and security incidents on the rise as remote and hybrid workers become more comfortable in their home offices while commuting to the office within days per week.
According to the report, HP Wolf Safety Report: Out of sight out of mind, a growing number of end users are purchasing and connecting unauthorized devices outside of the IT realm, making phishing attacks and other social engineering tricks more effective.
This makes IT support more complex, longer and more expensive, the report suggests.
The report, a combination of a survey of more than 8,400 office workers who have switched to remote work and a global survey of 1,100 IT decision makers, finds that 45% of office workers have purchased hardware. computer to support remote working, but 68% said that security did not play a major role in their purchasing decisions. 43% didn’t have their laptop or PC checked or installed by IT, and 50% said the same for a new printer.
This leads to more successful phishing attacks as 74% of IT teams report seeing an increase in the number of employees opening malicious links or email attachments over the past 12 months. Forty percent of users aged 18 to 24 report clicking on a malicious email, and almost half said they have done so more often since working from home.
Of the office workers who said they clicked on a link, 70% did not report it to IT, 24% said it was not important, 20% citing the ‘hassle factor’ and 12% fearing to be punished.
This increase in trade-offs is of course leading IT to rebuild machines, as 79% of IT teams report increased rebuild rates during the pandemic. However, the report suggests the rate could be higher, as 80% of IT teams fear devices might be compromised, but they just don’t know it yet.
Today’s IT department is struggling to respond to security incidents and patches, with 77% of IT teams saying the time it takes to respond to a threat has increased.
Sixty-five percent of IT teams say patching endpoints is now longer and more difficult because of working remotely, and 64% said the same about onboarding new employees with secure devices.
All of these factors put even greater strain on IT, 83% of strained IT teams say so, and 77% cite remote work as the reason they fear burnout.
Ian Pratt, global head of personal systems security at HP, said in a statement that cybercriminals are particularly adept at playing the “long game” – establishing a persistent presence in an organization’s IT environment and moving sideways. to infiltrate high added value systems. With basic cybersecurity best practices abandoned due to remote working, hackers are more successful.
Combined with the growing difficulty of managing IT for a distributed workforce, security support is becoming unmanageable, according to Pratt.
“For hybrid work to be successful, IT security teams must be freed from spending hours provisioning and responding to user access requests so they can focus on the tasks that add value.” , said Pratt. “We need a new security architecture that not only protects against known and unknown threats, but helps reduce the burden of freeing cybersecurity teams and users. By applying the principles of Zero Trust, organizations can design resilient defenses to keep the business secure and recover quickly from compromise.