Cyber risk increases with data chaos

Most companies today are confronted with a huge amount of digital files, fueled by the use of collaboration solutions, online documents and file-sharing services. Lack of clarity about what data is where, who has access to it, when, and in what form is inevitable - digital clutter is the result. However, this is not just an organizational problem. In the worst case, not being able to block online data can even pose a threat to the entire company, according to the security provider.

Still access after company exit

The highest risk comes not from the company's own employees, but from employees who have already left the company and who have not had their access rights to e-mail services, messenger apps or Google documents revoked. This is particularly worrisome, he said, because it could involve intellectual property, trade secrets or other proprietary or confidential data. When in the possession of cybercriminals or competitors, it could be used against the interests of the company itself and for personal gain. For example, 69 percent of respondents to the Study Kaspersky Lab's software is designed to work with documents that contain confidential data in a wide variety of forms.

Data chaos: time wasters with high risk potential

The study also found that almost half of employees (49%) find it difficult to locate a document or file or its location due to digital data chaos. At the same time, 55 percent use the same device for work and personal use. As a result, information can be duplicated on different devices or become outdated, which can lead to confusion or errors in the workplace. In the hands of unauthorized third parties or competitors, this can also lead to dangerous data compromises, according to Kaspersky Lab. Possible consequences: criminal prosecution or lawsuits from customers for breaches of confidentiality clauses or data protection legislation.

According to the study, the problem of proper access to work resources is also highlighted by the fact that just under a quarter (26%) of employees admit to sharing their usernames and passwords with colleagues.

Tips for secure handling of sensitive data

Disorganized digital file inventories and uncontrolled access rights can possibly result in data breaches and cyber incidents. Therefore:

• Establish an access policy for company assets, including email boxes, shared folders, online documents: All access rights should be revoked once an employee has left the employer.
• Regularly refresh the company's cybersecurity rules among the workforce to establish a basic understanding and solidify what has been learned.
• Use encryption technologies to protect corporate data stored on devices and secure data.
• Provide the workforce with clear and comprehensible guidelines for generating secure passwords, for example, to prevent the use of personal data or disclosure to third parties inside and outside the company. The password manager function within a security solution can also help to ensure the security of passwords and protect confidential data.
• Companies working with cloud services should choose a cybersecurity solution that fits the size of your business.

Source: Kaspersky Lab