30% of Irish office workers tried to access a colleague’s device, with widespread risky cyber behaviours revealed.
A significant number of Irish office workers have admitted to engaging in behaviours that could pose serious cybersecurity risks to their employers, according to new research.
The survey, commissioned by IT.ie and cybersecurity firm SonicWall, found that 30% of respondents had attempted to access a colleague’s device without permission in the past year.
“Technology alone isn’t enough; it has to work hand-in-hand with clear policies and a culture of accountability”
The research, which polled 1,000 office workers across Ireland, also revealed that 35% had actively searched for private information about colleagues, clients, or customers using work computer systems. This included sensitive data such as salaries, CVs, and home addresses.
The findings form part of the ‘Cyberpulse Ireland 2025’ report, which explores employee attitudes and behaviours in relation to cybersecurity.
The greatest risks to an organisation comes from within
The report also highlighted a growing trend of employees engaging with online scammers. Thirty-eight percent said they had interacted with a scammer – either knowingly or unknowingly – while at work.
One in four admitted to sending an angry response to someone they believed to be a scammer, and 17% said they had attempted to deceive a scammer who contacted them in the workplace. Another 17% reported trying to persuade a scammer not to target their business.
Eamon Gallagher, founder and managing director of IT.ie, said the findings pointed to a breakdown in boundaries and data responsibility within organisations.
“While some employees, particularly from the younger cohort, attempt to challenge, outsmart, or reason with scammers, cybercriminals will often capitalise on their efforts, using manipulation tactics that leave the organisation more vulnerable to compromise,” Gallagher said.
“While their actions may not always stem from malicious intent, it does represent a breakdown in boundaries and data responsibility. These findings ultimately represent a valuable opportunity for businesses. By investing in employee training and onboarding, strengthening internal policies, implementing more robust access controls, and creating better cybersecurity awareness, organisations can address these vulnerabilities head-on.”
Stuart Taylor, senior director of regional sales for Northern Europe at SonicWall, said the report underscored the importance of internal security measures.
“These findings are a stark reminder that the greatest risks often come from within the organisation, not intentionally, but through curiosity, complacency, or even misplaced confidence,” Taylor said.
“Every click and every login matters. That’s why businesses need layered security that combines zero-trust principles, strong access controls, and continuous user education. Technology alone isn’t enough; it has to work hand-in-hand with clear policies and a culture of accountability.”
The report comes amid growing concern over insider threats and the role of employee behaviour in cybersecurity breaches. IT.ie and SonicWall say the findings should prompt organisations to reassess their internal security strategies and invest in more comprehensive training and awareness programmes.
Image at top: Eamon Gallagher, Founder and Managing Director, IT.ie and Tristan Basteup, Channel Director UK & Ireland, SonicWall
-
Bank of Ireland is welcoming new customers every day – funding investments, working capital and expansions across multiple sectors. To learn more, click here
-
For support in challenging times, click here
-
Listen to the ThinkBusiness Podcast for business insights and inspiration. All episodes are here. You can also listen to the Podcast on:
-
Spotify
-
SoundCloud
-
Apple
