February 15, 2018 By David Bisson 2 min read

A new survey revealed that 92 percent of IT professionals are concerned about Wi-Fi security risks related to accessing public networks on corporate devices.

According to a Spiceworks, most IT professionals believe organizations could do more to address these risks. Just 63 percent of respondents said they are confident that employees use a virtual private network (VPN) when accessing public Wi-Fi on a corporate device, and even fewer (55 percent) said they think organizations are protected against these threats overall.

IoT Sparks Wi-Fi Security Concerns

Their concerns are justified: Twelve percent of respondents said their organization has suffered a security incident that involved an employee connecting to public Wi-Fi. Even more troubling is the fact 34 percent of IT professionals don’t know whether their employer has experienced such an incident due to the difficulty of detecting these events.

But IT professionals aren’t just concerned about public Wi-Fi — they’re also worried about the security of devices that are connecting to corporate networks. Respondents to the Spiceworks survey attributed the greatest risk of Wi-Fi attacks to Internet of Things (IoT) devices, such as IP-enabled controllers (52 percent), appliances (49 percent), video equipment (42 percent) and electronic peripherals (40 percent). By contrast, 32 percent ranked Windows laptops as the greatest risk, while 18 percent cited iOS smartphones.

“While adoption of IoT devices is increasing in the workplace, many IT professionals are still wary of connecting these often unpatchable devices to corporate Wi-Fi networks,” said Peter Tsai, senior technology analyst at Spiceworks, in a press release. “As a result, some organizations are delaying the adoption of IoT devices and holding out hope that the forthcoming WPA3 protocol might improve Wi-Fi security.”

Don’t Wait for WPA3

But organizations don’t have to wait for WPA3 to begin addressing the persistent challenges associated with Wi-Fi security. In the meantime, they can use standard Wi-Fi security protocols and create guest Wi-Fi networks for visitors. If they haven’t done so already, they can also set up complex admin passwords on networking devices, implement strong service set identifier (SSID) networking names and enact MAC address filtering.

More from

Cyberattack on American Water: A warning to critical infrastructure

3 min read - American Water, the largest publicly traded United States water and wastewater utility, recently experienced a cybersecurity incident that forced the company to disconnect key systems, including its customer billing platform. As the company’s investigation continues, there are growing concerns about the vulnerabilities that persist in the water sector, which has increasingly become a target for cyberattacks. The breach is a stark reminder of the critical infrastructure risks that have long plagued the industry. While the water utility has confirmed that…

What’s behind unchecked CVE proliferation, and what to do about it

4 min read - The volume of Common Vulnerabilities and Exposures (CVEs) has reached staggering levels, placing immense pressure on organizations' cyber defenses. According to SecurityScorecard, there were 29,000 vulnerabilities recorded in 2023, and by mid-2024, nearly 27,500 had already been identified.Meanwhile, Coalition's 2024 Cyber Threat Index forecasts that the total number of CVEs for 2024 will hit 34,888—a 25% increase compared to the previous year. This upward trend presents a significant challenge for organizations trying to manage vulnerabilities and mitigate potential exploits.What’s behind…

Quishing: A growing threat hiding in plain sight

4 min read - Our mobile devices go everywhere we go, and we can use them for almost anything. For businesses, the accessibility of mobile devices has also made it easier to create more interactive ways to introduce new products and services while improving user experiences across different industries. Quick-response (QR) codes are a good example of this in action and help mobile devices quickly navigate to web pages or install new software by simply scanning an image.However, legitimate organizations aren’t the only ones…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today