The compliance of staff members remains one of the biggest concerns when it comes to cybersecurity: a recent survey of IT workers shows that inappropriate usage of IT resources by employees is the most common incident they face in their work. At the same time, 90% of employees tend to overestimate their knowledge of cybersecurity basics.
To identify the most vulnerable areas in corporate cybersecurity awareness, Kaspersky analyzed the answers given by people while going through the online security awareness quiz. According to the internal Kaspersky Automated Security Awareness Platform data, the most difficult question - with 83% of wrong answers - is asking what card details shouldn’t be emailed. The remaining four of the five most frequent wrongly answered questions consist of tasks regarding email interaction and password usage:
Users show more vigilance when it comes to confidential corporate data. 99% of people correctly answered the questions devoted to sensitive information leakage or if a person with access to confidential documents leaves the company.
“It is understandable that people tend to be more careful with confidential information. This kind of data, by definition, implies that an employee must be more attentive while working with it. At the same time, sending information via email and entering passwords are part of our everyday routine and, at first sight, don’t pose any special risks. However, this negligence can be costly for a company, as criminals still employ old methods of cybercrime, such as the brute force of phishing. That is why it is important that corporate cybersecurity training uncovers all possible weaknesses and vulnerabilities even in most common everyday scenarios.” - comments Denis Barinov, Head of Kaspersky Academy.
To help companies refresh their employees’ cybersecurity knowledge around the essential parts of their work and personal interactions, Kaspersky has introduced a free online course on social media. As cybercriminals relish the opportunity to use social networks to obtain the information they need to carry out attacks against ordinary users and their employers, the course will teach staff how to avoid becoming a victim of social media scams. To benefit from training on safeguarding your online life, learn which information you should avoid sharing via the Internet, and how to avoid social engineering, please visit our website.
 Statistics are based on the results of 12 500 Kaspersky Security Awareness Platform users, trained between January – April 2022.