Cyberattacks against British organisations are being exacerbated by everyday working practices, according to new research from software company Ivanti, which highlights the risks posed by personal devices, insecure Edge equipment, and slow adoption of advanced security controls.
The report, Securing the Borderless Digital Landscape, released on Wednesday, finds that bring-your-own-device (BYOD) working has become the norm in spite of official restrictions. Almost half of employees surveyed said they had used their personal phone for work, more than a third had used it as a hotspot, and nearly a third had logged in on their own computer.
Three-quarters of IT staff said such practices were widespread, even though only just over half of organisations formally permit them. In companies where BYOD is prohibited, 78% of employees admitted doing it anyway.
This growing shadow IT environment is providing an opening for attackers. Microsoft data shows that 90% of ransomware cases begin with an unmanaged device. Ivanti’s research reflects this trend, with 38% of IT professionals conceding they lack adequate visibility of devices connected to their networks.
The risk extends beyond laptops and smartphones. Four in ten Edge devices — from smart cameras to IoT sensors — remain unmanaged, making them attractive targets for cybercriminals.
Despite widespread recognition of the problem, the adoption of stronger controls remains limited. Nearly eight in ten IT professionals said access restrictions become more important when staff work remotely, yet only a third reported using Zero Trust network access, and fewer than a third deploy privileged access management.
Ivanti warned that while some organisations are beginning to invest in better device visibility, progress is patchy at a time when unmanaged endpoints remain a key vector for attacks.
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.