Yubico has published a survey of 20,000 people from 10 countries around the world, finding that 40% of respondents have never received cybersecurity training from their employer.
Additionally, 70% of respondents said they’ve been exposed to cyber attacks in their personal lives within the past 12 months, and 50% faced cyber attacks at work.
“The gaps in personal cybersecurity practices do not just pose risks to individuals; they also expose workplaces to vulnerabilities,” Yubico says. “As more employees work remotely or use personal devices for work-related tasks, the line between personal and professional cybersecurity has become blurred. This integration can inadvertently open doors for cybercriminals to access corporate networks through compromised personal accounts.”
Yubico notes that all employees should receive training, since an attacker only needs to compromise one account in order to gain a foothold within an organization.
“This data indicates that while training can be effective, it is not reaching everyone and there is room for improvement in how it is delivered and reinforced,” Yubico says.
“Moreover, cybersecurity training must be consistent across all levels of the organization, from entry-level employees to senior executives. More junior employees, in particular, should not be overlooked. Enterprises should also regularly update employees on the latest cybersecurity threats, especially those related to AI-driven attacks. The importance of MFA should be clearly communicated to ensure employees understand how to implement it for both work and personal accounts.”
Derek Hanson, vice president of standards and alliances at Yubico, stated, “The findings highlight the need for a holistic cybersecurity strategy that encompasses both home and work environments. This includes adopting stronger authentication methods to become phishing-resistant, fostering a culture of security awareness through consistent employee training, and more. Ultimately, building a unified front against cyber threats requires a concerted effort to bridge the gap between perceived and actual security. By integrating advanced security measures into all aspects of our digital lives, we can better protect ourselves, our data, and our organizations.”
New-school security awareness training can give your organization an essential layer of defense against social engineering attacks. KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
Yubico has the story.