Over half of UK workers do not protect their business laptops, failing to use data or device encryption, a survey has shown.
Almost one in 10 respondents said they didn't even know if encryption was in use or not, the Check Point poll of 130 UK IT managers and senior IT staff revealed.
Almost 70 per cent of organisations said they had a virtual private network (VPN) client running on their fleet of portable PCs, potentially placing the corporate networks in grave danger if laptops did not have suitable security, Check Point said.
"The HMRC data breach of three years ago stressed the need for data encryption, but a majority of businesses have not yet learnt the lesson," said Nick Lowe, Check Point's head of sales for Western Europe.
"Data loss and breaches can strike anytime and affect any organisation, whether private or public."
Another issue the eMedia-assisted survey raised was the use of single devices for both business and consumer activities.
While one in 10 respondents said their firm already offers, or plans to allow, such device use, 68 per cent said they were concerned about the security risks involved.
"Many organisations haven't set up an appropriate plan to secure the use of personal laptops and smartphones in the workplace," Lowe added.
"These vulnerabilities need to be addressed by a combination of education and technology so that organisations can protect their data, their business and their employees against security risks."
The Information Commissioner's Office (ICO), whilst it has not issued a fine yet, has cracked down on bodies failing to protect devices.
Yesterday, the ICO took action against Stoke-on-Trent City Council after the authority lost an unencrypted USB stick containing sensitive information on 40 children in care.
