Cloud computing and mobile devices increasing the risk of e-crime

Business leaders are concerned that the use of cloud computing and the rise in mobile devices like smartphones and tablets in the workplace could lead to an increase in electronic crime, according to research by consulting firm KPMG.

Some 200 security leaders were surveyed in the E-Crime 2011 Report, 68 per cent of whom said that the use of cloud computing has the potential to increase the risk of e-crime to their business.

More notably, a whopping 92 per cent of respondents regard the rising use of smartphones and tablets as increasing the risk of e-crime.

The rise in home working and mobile workers also raises concerns. Around 83 per cent said that the use of hardware by staff for personal and business use could lead to a rise in incidents.

Underlining these worries is the fact that 53 per cent of respondents reported that security threats requiring action have increased in the past 12 months.

Mark Waghorne, head of KPMG's I-4 programme, which works with security advisors at some of the world's leading companies, told V3 that the level of concern is surprising but that IT staff have no choice but to mitigate against these risks.

"We know that IT staff have worries over the new wave of technology that's growing in use, and the consumerisation of IT, but the level of concern shows just how wary staff are of the threats," he said.

"However, there's no point in IT staff trying to stop the use of technology like cloud computing as the benefits are numerous, so it's important to set up the right policies and be aware of the different types of attack that could take place."

Waghorne explained that attacks range from social engineering to suspect LinkedIn invitations, spear phishing and device loss or theft.

Organisations also need to consider the importance of training to make staff aware of the risks and threats especially when using mobile devices.

"You can put the right security procedures in place but if staff aren't aware of the risks, of avoiding clicking on suspect links, for example, it's worthless, so making users aware of what to avoid is vital," he said.