In homes across the globe, a silent security crisis is unfolding. As the lines between work and personal life blur, a seemingly innocuous act — allowing a child to use a parent’s work device — has become a significant cybersecurity threat.
A recent Cisco survey has unveiled a startling trend: 31% of children have unsupervised access to their parents’ work devices, complete with knowledge of passcodes. This revelation comes at a time when cybersecurity experts are already grappling with the complexities of securing a hybrid workforce.
“Allowing unauthorised people, including children, to access confidential data can lead to serious data breaches,” warns Ameera Cassoojee, Cybersecurity Specialist at Cisco. The consequences of such access can be far-reaching. “Children might accidentally submit, change, or delete important information through an open browser or email,” Cassoojee explains.
The survey’s findings paint a picture of widespread complacency. A staggering 85% of working parents admitted to sharing a personal device used for work with a child in the past six months. More alarmingly, even among those children without direct access to passcodes, nearly half remain unsupervised during use.
This cavalier approach to device sharing is compounded by inadequate security measures. Only 31% of parents use multi-factor authentication for critical work tasks, while a majority rely solely on “strong” passwords — a defence that cybersecurity experts have long deemed insufficient.
The root of this problem lies in the tension between security and convenience. In the chaotic environment of a family home, the path of least resistance often prevails. It’s easier to hand over an unlocked device than to set up separate user accounts or enforce strict usage policies.
However, this convenience comes at a potentially devastating cost. In an era where corporate data breaches can result in millions in damages and irreparable reputational harm, such lax security practices are akin to leaving the vault door ajar.
The implications extend beyond individual households. IT teams, already stretched thin by the demands of remote work, must now contend with an entirely new threat vector: the curious child. This requires a fundamental shift in how organisations approach cybersecurity, moving beyond traditional perimeter defences to encompass the messy realities of home life.
Cassoojee advocates for a nuanced approach, suggesting that IT leaders “work with rather than against users.” This could involve creating guest user accounts that allow restricted access without compromising corporate systems. While not ideal, it’s a pragmatic solution that acknowledges the reality of shared devices in family settings.
Other recommendations include implementing robust multi-factor authentication, protecting sensitive data with zero-trust network access, and — crucially — educating users about cybersecurity risks and best practices.
As our homes increasingly double as offices, the boundaries between personal and professional digital lives will continue to blur. The challenge for organisations and individuals alike is to navigate this new landscape without compromising security or productivity.
The Cisco survey serves as a wake-up call, highlighting a vulnerability that many may have overlooked. In our rush to adapt to new working models, we’ve inadvertently opened a back door to our most sensitive data. Closing it will require a concerted effort from IT professionals, employers, and working parents alike.
As we move forward in this brave new world of work, perhaps it’s time to reconsider the adage “don’t take your work home with you.” In the digital age, it might be more apt to say, “if you must take your work home, keep it under lock and key — even from your own children.”