Report: Social Media a Top Cybersecurity Challenge in the Workplace

Safe social media use is the top cybersecurity challenge for employees, according to the latest report from Wombat Security Technologies on security awareness issues in enterprise organizations. The 2016 Beyond the Phish Report evaluated two years of assessment data from Wombat's Security Education Platform and surveyed hundreds of security professionals to find out how well end users are able to identify and manage security threats. The data came from a variety of sectors, including finance, technology, healthcare and education.

Overall, 31 percent of end users missed assessment questions related to using social media safely in the workplace. When the results were broken down by industry, education was among the top three sectors that struggle the most in the social media realm, missing 36 percent of assessment questions on safe social media use. The other two sectors with the least social media savvy: telecommunications (38 percent of questions missed) and retail (34 percent of questions missed).

After social media, the least understood cybersecurity topics across all industries were protecting and disposing of data securely (30 percent of questions missed); identifying phishing threats (28 percent of questions missed); protecting confidential information (27 percent of questions missed); and working safely outside the office (26 percent of questions missed).

The report linked the lack of understanding around common cybersecurity threats to the ever-growing problem of phishing. "Many of these risky behaviors exacerbate the phishing problem," Wombat President and CEO Joe Ferrara said in a statement. According to another Wombat study released back in January, phishing attacks have increased 13 percent since 2014. "To reduce cyber risk in organizations, security education programs must teach and assess end users across many topic areas, like oversharing on social media and proper data handling," said Ferrara.

Despite all the challenges, there are several areas of cybersecurity where employees are getting it right. The Wombat report highlighted the following categories where end users answered the highest percentage of assessment questions correctly:

  • Building safe passwords (90 percent of questions answered correctly);
  • Protecting against physical risks, such as ensuring no one follows you into a secure area or not leaving sensitive files on your desk (85 percent of questions answered correctly); and
  • Internet safety (84 percent of questions answered correctly).

The full Beyond the Phish Report can be downloaded free from the Wombat Security Technologies site (registration required).

About the Author

Rhea Kelly is editor in chief for Campus Technology, THE Journal, and Spaces4Learning. She can be reached at [email protected].

Featured

  • AI-powered individual working calmly on one side and a burnt-out person slumped over a laptop on the other

    AI's Productivity Gains Come at a Cost

    A recent academic study found that as companies adopt AI tools, they're not just streamlining workflows — they're piling on new demands. Researchers determined that "AI technostress" is driving burnout and disrupting personal lives, even as organizations hail productivity gains.

  • AI microchip under cybersecurity attack, surrounded by symbols of threats like a skull, spider, lock, and warning shield

    Report Finds Agentic AI Protocol Vulnerable to Cyber Attacks

    A new report from Backslash Security has identified significant security vulnerabilities in the Model Context Protocol (MCP), technology introduced by Anthropic in November 2024 to facilitate communication between AI agents and external tools.

  • laptop displaying a red padlock icon sits on a wooden desk with a digital network interface background

    Reports Point to Domain Controllers as Prime Ransomware Targets

    A recent report from Microsoft reinforces warns of the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on the persistent threat of AD compromise.

  • educators seated at a table with a laptop and tablet, against a backdrop of muted geometric shapes

    HMH Forms Educator Council to Inform AI Tool Development

    Adaptive learning company HMH has established an AI Educator Council that brings together teachers, instructional coaches and leaders from school district across the country to help shape its AI solutions.