New Research Shows Remote Users Expose Companies to Cybercrime

Corporate Networks with Mobile Workforce Experienced High Rates of Malware Threats, Hacked Passwords and SQL Injection Attacks

Broomfield, CO – April 23, 2013

Results of new remote access security research show half of companies with a remote workforce had their Web sites compromised in 2012, over a third had passwords hacked, and twice as many companies with remote users were victims of SQL injection attacks. Conducted by Webroot, a leader in Internet security as a service, the new study indicates data theft as the primary goal in new types of mobile attacks. Scenarios include malicious threats that use e-mail, SMS, and the mobile Web browser to launch an attack, then silently record and steal data.

Top-level corporate study findings:

  • 64% of companies allow remote access to servers for 25% to 100% of employees.
  • 90% of companies agree that managing the security of remote users is extremely challenging.
  • 71% of Web security professionals who say managing remote users is highly challenging experienced Web-borne phishing attacks in 2012

The proliferation of mobile devices for business use and the need to grant remote user access exposes corporate networks to high rates of malware threats, including phishing attacks, spyware, keyloggers, and hacked passwords. While allowing such devices to access company resources aids productivity, the potential for new exploits to compromise businesses creates significant security risks to the organization and private data. Enabling remote access to corporate servers requires sensible policies and controls to ensure network security. The study, which surveyed Web security decision-makers in the United States and United Kingdom, found that companies with 25% or more of their workforce using remote access experience higher rates of Web attacks due to a lack of such protection measures.

"These days, there is so much risk involved from a corporate perspective that remote access protection must be part of all basic tool kits. Vulnerabilities in mobile Web browsers pose a major threat to mobile device security and our latest study shows that they have led to an increasing number of successful attacks in 2012," said David Duncan, Chief Marketing Officer at Webroot. "Mobile browser security is essential to reduce the vulnerabilities from websites containing malware and stop phishing attacks. This should be mandatory if employees are to have remote access to any corporate network, or other corporate online resources via their mobile devices."

What can organizations do?

The new "Remote Users Expose Companies to Cybercrime" report provides a comprehensive analysis of the current mobile Web browser vulnerabilities, and includes steps to secure browser controls and reduce the risks associated with mobile browsing. You can view the full report at http://www.webroot.com/remote-security-report-2013 or visit Webroot at InfoSecurity Europe 2013, held in London in booth #D60, April 23 through 25, 2013 for a complimentary copy.

To learn how your organization can partner with Webroot, contact partnerprogram@webroot.com or visit http://www.webroot.com/us/en/partners/.


©2014 Webroot Inc. All rights reserved. Webroot, SecureAnywhere, and Webroot SecureAnywhere are trademarks or registered trademarks of Webroot Inc. in the United States and other countries.

ABOUT WEBROOT

Webroot® is the market leader in cloud delivered security software as a service (SaaS) solutions for consumers, businesses and enterprises. We have revolutionized Internet security to protect all the ways you connect online. Webroot delivers real-time advanced internet threat protection to customers through its BrightCloud® security intelligence platform, and its SecureAnywhere™ suite of cloud-based security products for endpoints, mobile devices and corporate networks. Over 7 million consumers, 1.5 million business users and 1.3 million mobile users are protected by Webroot. Market leading security companies, including Cisco, F5, gateprotect, Palo Alto Networks, RSA, SOTI, Telenor, and others choose Webroot to provide advanced Internet threat protection for their products and services. Founded in 1997 and headquartered in Colorado, Webroot is the largest privately held internet security company in the United States – operating globally across North America, Europe and the Asia Pacific region. For more information on our products and services, visit www.webroot.com.