Cyber security and the risks of working from home
Flexibility in the workplace has certainly seen an increase over recent years, but nothing could have prepared us for the challenges of this year with the pandemic.
Many businesses may have had certain security policies in place regarding home working, but even those with policies will not have been prepared for whole workforce becoming remote. This has challenged even the most prepared companies. As a result of COVID-19, there have certainly been spikes in cyber-attacks and whilst we have all survived two lockdowns, we may not be allowing our teams to return to the office immediately or may be continuing with a hybrid solution of some remote and some office based. So how do you protect your remote working teams and ensure that you are cyber secure? What are the dangers? On-line work in general increases the potential for cyber-attacks. Whilst we are working in the office environment, we are protected by our IT blacklisting distrusted IP addresses, firewalls. With our ever-increasing reliance on technology, we become more vulnerable. Work tasks are completed online and that can compromise the security of your business. Hackers can try and crack your passwords for instance and this is particularly easy if you use the same password for multiple on line apps-these are the apps that your teams could be using to stay in touch with other team members. The Ciso Benchmark report for 2020 identified that businesses are struggling to manage remote workers particularly on mobile/phone devices. In fact, 52% of respondents said that mobile devices were the most challenging to protect! Phishing emails are another method that hackers use to infiltrate your security. They can trick your teams into handing over personal details or more importantly, click on links or download malicious attachments. Many of these phishing emails are also targeting people’s fear over COVID-19 and another study showed that since February, there has been a 600% increase in Phishing emails! The most common concern though must be from employees using their own devices to work from at home and this most certainly spiralled when the pandemic hit. What security measures can you put into place? As much as possible, you should ensure that your teams are working from work devices only so that they are subject to remote access security and implementation of a two-factor password would be advisable to mitigate any risk of hackers gaining any access to your systems. Implement anti-malware software and update any applications with security measures. This means that your IT department will have complete sight of your organisations IT infrastructure and will have the ability to monitor any malicious security. Risk Control It is advisable that you create a remote working policy which should essentially contain the following:
- The creation and maintenance of strong passwords
- Acceptable policy on websites viewed when not viewing them for company work.
- Guidance on storing devices securely
- Use of devices in public places.
Whilst these polices will help in the short term through the pandemic, these are policies that you should keep going forward. If you need help supporting your teams whilst working remotely then contact our team today.
Many businesses may have had certain security policies in place regarding home working, but even those with policies will not have been prepared for whole workforce becoming remote. This has challenged even the most prepared companies.
Subsribe for updates and our latest research
You may be interested in
Beyond Copilots: Why AI Agents Are the Next Competitive Advantage
AI is no longer a tactical tool, it’s becoming the engine of enterprise transformation. While copilots and other generative AI tools have helped teams work faster, the real breakthrough is happening with AI agents: autonomous systems that don’t just assist but act, learn and orchestrate entire workflows across the business. The question every executive should be asking is: “How will we harness AI to create value at scale before our competitors do?” High-performing organisations aren’t waiting. They’re embedding AI agents into daily operations and seeing measurable impact; accelerated decision-making, leaner processes and stronger financial outcomes. When markets move at digital speed, standing still means falling behind. Here’s why: So, the question isn’t “Should we adopt AI?”, it’s “What could…
Zero Trust Networking
Protecting Employees Without Friction Your workforce is your greatest asset, and your greatest vulnerability. Attackers know this, which is why phishing and credential theft remain the most common entry points. But here’s the leadership challenge: how do you protect employees without slowing them down? Zero Trust answers that question by making security invisible yet uncompromising. Employees work from anywhere, home, client sites, airports, without clunky VPNs or endless password resets. Behind the scenes, every login is verified, every device assessed, every anomaly flagged. If something looks wrong, a compromised credential, an unusual location, the system reacts…
Shadow AI: Executive Briefing on Real Risks, Business Impact and Mitigation
Shadow AI is here, and it’s growing Shadow AI is the use of artificial intelligence tools and platforms outside the oversight of IT, security, or compliance teams. This is not a hypothetical concern. KPMG’s 2025 global survey found that up to 58% of employees are using AI productivity tools daily, and nearly half admit to uploading sensitive company information to unauthorised platforms. Only 41% of employees say their organisation has a policy guiding the use of generative AI, revealing a significant governance gap. The Risks Are Real and Substantial The evidence from leading analysts and recent incidents is clear:…
Cyber Resilience in 2025: From Tick-Box to Boardroom Imperative
What the NCSC’s 2025 Review Means for UK Businesses The National Cyber Security Centre’s (NCSC) 2025 Annual Review is a wake-up call for business leaders across the UK. The days when cyber security was simply an IT concern or a routine compliance task are over. With a record number of nationally significant cyber incidents handled in the past year (more than double the previous year’s figure), it is clear that cyber risks have become a central issue for organisational survival and national prosperity. The Evolving Threat: Why Businesses Can’t Afford Complacency No sector has been spared in the latest…
Is Your MSP Really Helping You Grow — Or Just Keeping the Lights On?
There’s a moment in every business where the question quietly surfaces: “Are we getting what we really need from our IT provider?” It’s not always easy to answer. On the surface, things seem fine. Tickets are resolved. Reports arrive. There’s someone to call when things go wrong. It’s familiar. It’s comfortable. And that comfort can be deceiving. Because beneath the surface, many organisations are stuck in a service relationship that feels safe — but is actually stagnant. And here’s the truth: comfort isn’t the same as progress. For many, the idea of changing MSPs or challenging the…
The 2025 State of Ransomware: Key Insights on Attacks, Costs, and Recovery
Ransomware continues to evolve — and so must our defenses. The State of Ransomware 2025 report from Sophos presents one of the most comprehensive views yet into how organisations around the world are being impacted by ransomware attacks. Based on an independent survey of 3,400 IT and cybersecurity leaders across 17 countries, the report explores how attacks are evolving, the operational weaknesses adversaries exploit, and the human and financial tolls that follow. Whether you’re building a cybersecurity strategy or assessing risk, this year’s findings offer crucial, real-world insights to guide your response. Key Findings from…