Recent surveys from Europe and the United States show that employees spend up to 30% of their working hours on personal matters. According to Infosecurity Magazine, “all of those non-productive hours could translate to not just lost output, but actual negative equity in the form of malware attacks and hacking incidents.”
Kaspersky Lab Expert Kirill Kruglov believes that personal use of office computers can lead to targeted attacks in a corporate network.
“The fact is that employees often use office computers to communicate on social networking sites, share links to online entertainment, or download files from suspicious resources,” Kruglov said. “ At the same time cybercriminals are actively using social networking sites for phishing and the distribution of malware. Many personal blogs, entertainment sites, file sharing services, torrent trackers, and files downloaded from them are infected. Passwords to email accounts are regularly hacked or stolen.”
Infosecurity magazine outlined an example of a targeted attack in 2009, where more than 20 major software companies were infiltrated via employee fallibility. During this attack, cyber criminals gathered employees’ information through social networks, became online “friends” with the employees and later accessed the employees’ workstation account when the employee logged onto their social sites.
Do you think employees are more likely to use social sites at work if their company has a BYOD policy? What is your company’s policy for using social media sites at work? Let us know what you think on Twitter and Facebook, and be sure to check out our Tumblr page for the latest industry news stories.