Story image

25% of firms fail to implement multi-factor authentication for BYOD

16 Feb 2018

As employees demand more flexibility in the workplace with the likes of Bring-your-own-device (BYOD), security policies may not be scratch, according to a survey of more than 200 IT and security professionals at the Gartner Symposium conference.

Data protection firm Bitglass conducted the survey as part of its BYOD and Identity research report. It found that 25% of organisations lack some form of multi-factor authentication when securing BYOD.

“Enterprises often misjudge the effectiveness of traditional security solutions, many of which are readily bypassed,” says Bitglass CEO Rich Campagna.

The company says that several high profile data breaches in recent months were caused by compromised passwords that were used to control access, as well as single-factor authentication. Because of challenges like these, organisations have turned to identity management.

“The BYOD boom exposes organisations to risks that can only be mitigated with next-gen, data-centric solutions that secure access,” Campagna continues.

The survey also gained insights about IT professionals’ views on facial recognition technology for secure mobile authentication – Apple Face ID in particular.

60% of respondents had reservations about Apple’s Face ID technology. Those reservations include accuracy of face detection (40%), prevention of unauthorised access (30%) and speed of facial detection (24%).

While passwords, PINS and fingerprint recognition are standard and familiar to enterprises, Bitglass says that facial recognition technologies remain unproven.

Respondents were finally polled about their top security concerns. External sharing was the leading concern (45%), followed by malware protection (40%) and unmanaged device access (40%).

Bitglass says these statistics indicate that organisations are doubling down on protecting data beyond the corporate network.

In another study, Bitglass also shared that 44% of scanned organisations had some form of malware in at least one of their cloud applications.

Microsoft OneDrive was most vulnerable with a 55% infection rate, while Google Drive, Dropbox and Box were not too far behind. 

“Most cloud providers do not provide any malware protection and those that do struggle to detect zero-day threats. Only an AI-based solution that evolves to detect new malware and ransomware can keep cloud data secure,” commented Bitglass VP of product management Mike Schuricht at the time.

“Malware will always be a threat to the enterprise and cloud applications are an increasingly attractive distribution mechanism.”

Earlier this month Bitglass appointed its first Asia Pacific vice president of sales, David Shephard. The company plans to capitalise on demand for cloud and mobile security in the region.

Ping Identity offerings accelerates cloud MFA and SSO adoption
90% of respondents trust MFA as an effective security control to protect identity data in public clouds, yet only 60% of organisations have formally adopted it.
Trend Micro introduces cloud and container workload security offering
Container security capabilities added to Trend Micro Deep Security have elevated protection across the DevOps lifecycle and runtime stack.
Veeam joins the ranks of $1bil-revenue software companies
It’s also marked a milestone of 350,000 customers and outlined how it will begin the next stage of its growth.
Veeam enables secondary storage solutions with technology partner program
Veeam has worked with its strategic technology alliance partners to provide flexible deployment options for customers that have continually led to tighter levels of integration.
Veeam Availability Orchestrator update aims to democratise DR
The ability to automatically test, document and reliably recover entire sites, as well as individual workloads from backups in a completely orchestrated way lowers the total cost of ownership (TCO) of DR.
Nuix eyes legal sector as eDiscovery demand skyrockets
eDiscovery must encompass so much more than email and documents. If you haven’t looked at text messages and online chats, digital images, mobile devices, data in the cloud and social media, you’re not getting the whole story.
EXCLUSIVE: Forcepoint global channel chief talks strategy
As a solution sold 100% via the channel, cybersecurity solutions company Forcepoint places a strong emphasis on its partner relationships.
Salesforce continues to stumble after critical outage
“To all of our Salesforce customers, please be aware that we are experiencing a major issue with our service and apologise for the impact it is having on you."