83% Of Businesses Concerned About Mobile Device Threats
By: Jim Stickley and Tina Davis
November 30, 2019
Mobile device breaches are on the rise, with hackers currently targeting even more mobile devices, especially those used for work. More attack vectors translate to more successful hacking attempts, particularly when the target is business-related. Verizon’s Mobile Security Index 2019 finds 51% of sophisticated actors target both desktop and mobile devices. The report shows 83% of organizations believe mobile device security isn’t taken as seriously as it should be, with 63% agreeing mobile security isn’t on the same level as security for other devices. These results should be a huge concern for all organizations, especially those who allow personal devices to connect to the network.
The top threats to working securely on mobile devices are the never-ending email phishing attacks.
Lookout Software finds mobile users are three times more likely to fall for phishing links when on a small screen, as opposed to those on a larger desktop device. Great news for hackers, but not so much for businesses allowing mobile device use. In another report by Verizon, 2019 Data Breach Investigations Report, 93% of data breaches start with email phishing, with an average attack costing mid-sized companies $1.6 million.
In light of so much unwelcome news, there are options for companies to fight back against email phishing and provide mobile device employees with the knowledge they need to spot these emails before they act.
Security awareness training is an invaluable tool when confronting an inbox full of phishing emails. Employees trained to spot email phishing are often the best defense against it. Training staff about common phishing tactics like preying on human emotions, looking legitimate, and spear phishing (directly addressing employees by name) all need to be taught. Knowing what and what not to do with a suspicious email with attachments or links is priceless. When in doubt throw it out! Ongoing education, including employee “test” phishing emails provides a solid foundation for staying secure.
As phishing attacks continue to expand, especially those targeting mobile work devices, a cyber-smart employee is more valuable than ever. Just do some research to find out what awareness training solution will work in your environment. There are many to choose from including completely outsourcing it to hiring someone to manage cybersecurity training in house.
Remember, training is not a “one and done” task. Threats change all the time. Everyone who connects should be aware of these changes and know what to do, should they encounter one.