A new study1 by Spyglass Consulting group says that more than 2/3rd of nurses are using unauthorized devices for clinical communications. The report is based on in-depth phone interviews with 100 nurses in a variety of healthcare organizations in 33 states, focusing on the information requirements of nursing and the use of mobile and wireless technology to meet those requirements.
Cisco sponsored survey2 of 512 security professionals across five countries, including the U.S., found that use of unauthorized devices on corporate networks is proving to be a hassle and, in some cases, a significant security issue for IT. Similar findings go with the usage of unauthorized apps too. Today, the report says that ITSDMs (IT Security Decision Makers) wants to know what security applications employees are running (63% of them wanted) and what OS (56% of them wanted). More than half (56 percent) of ITSDMs said they determined their employees use unsupported applications, with the U.S., China and Japan leading the way. About 30 percent of ITSDMs (54 percent in Germany, the highest level) said unauthorized users pose the greatest risk to their organization. When it comes to unauthorized network devices, such as smartphones, the risk has proven to be very real. About 40 percent of the ITSDMs surveyed said they'd experienced a breach or loss of information due to an unsupported network device.
Gartner analyst Ken Dulaney said the growing use of unsupported devices is becoming a real headache for IT. "About five times a week I hear from enterprise clients that are freaking out about the use of unauthorized mobile devices," says Dulaney. "Employees are getting really good at getting around whatever the company policy is." Dulaney said many vendors can help with mobile management and audit solutions that get this new generation of devices "on the table instead of under the table," so IT can see what's out there. "These smartphones and other devices that are being used, aren't behind the firewall and they're not encrypted so that's a real problem for IT," he added.
One employee with a $30 access point purchased at Wal-Mart or Fry’s can open up the entire corporate network, allowing anyone with mobile device to connect to it and open up company’s internal network. Once these unauthorized (or rouge) devices are connected to corporate network, the vulnerabilities on these devices exposes the organization's confidential data and critical assets, including intellectual property, to the outside world. Also these devices can introduce malware unintentionally into corporate network.