Studies reveal that 70% of business travellers have experienced cyber-attacks, highlighting their vulnerability to cybercriminals targeting confidential data. With business travel increasing by 19% over the past year, experts emphasise the risks posed by poor cybersecurity practices, including weak passwords and a lack of cybersecurity awareness.

Indusface, an application security SaaS company, has outlined the top cybersecurity risks for business travellers and provided advice on protecting company data while on the road.

Key Travel Cybersecurity Risks and Mitigation Strategies:

Unsecured Wi-Fi Networks: Connecting to unsecured public Wi-Fi is a common vulnerability. Public networks are often unencrypted, leaving data exposed. Cybercriminals also create "honeypot" hotspots to capture data. Cafes, restaurants (25%), airports (23%), and hotels (20%) are frequent locations for data compromise. Venky Sundar, Founder and President of Indusface, advises businesses to implement clear policies on public Wi-Fi usage, mandating VPNs or avoidance. He also recommends disabling auto-connect settings and considering business-funded mobile hotspots.

Device Theft or Loss: With 16% of business travellers planning to combine business trips with leisure travel, vigilance is crucial. 80% of travellers have experienced loss, theft, or forgotten items, with only 40% recovering them. Implementing policies on secure handling of business equipment, encouraging employees to keep tech close, and investing in smart luggage and remote device management are recommended.

Unsecured Mobile Apps: Business travellers often rely on mobile devices, and using personal phones for business can lead to neglecting app security. This includes using non-end-to-end encrypted messaging services. Mobile app penetration testing is crucial to identify vulnerabilities and protect sensitive data.

Fake Charging Stations: "Juice jacking" involves compromised public USB charging ports that steal data or install malware. This is prevalent in airports, coffee shops, and public transport. USB data blockers and software security are recommended. Portable chargers offer an alternative.

Shared or Publicly Accessible Devices: Shared devices pose significant security risks. From saved passwords and browsing history to identity theft and compromised bank details, sharing devices creates numerous vulnerabilities. Employees should avoid sharing devices. If unavoidable, they should never save passwords, create separate accounts, and avoid using the device for sensitive activities.