BYOD: Companies ‘failing to stay on top of system updates’

Companies running BYOD schemes need to keep on top of their system updates

Over 90 per cent of Android devices are running out-of-date versions of the operating systems, according to research from Duo Security, which is likely to be impacting on BYOD policies.

According to the research, 32 per cent of devices were running on an operating system that was 4.0 or older. This meant that last year they were vulnerable to the security threat Stagefright.

Furthermore, just six per cent of of Android devices were running on the most recent operating system.

This failure to operate did not just affect mobile devices, the research revealed.

Indeed, 32 per cent of employees were seen to be using old versions of Internet Explorer. In the past three years, 160 new vulnerabilities have been detected in these versions. What’s more, 22 per cent of devices were running outdated versions of Java, on which 250 vulnerabilities are known to exist.

HPE's Cyber Risk Report 2016 stated: "While vendors continue to produce security remediations, it does little good if they are not installed by the end user.

"Applying patches in an enterprise is not trivial and can be costly – especially when other problems occur as a result."

According to one expert, Apple users will be used to regularly updating their devices, which is a habit those using non-Apple devices need to acquire.

Wolfgang Kandek, CTO at Qualys said that Apple’s approach has "helped everyday users get more familiar and comfortable with running their own updates over time."

These issues are particularly relevant to businesses running BYOD schemes, as the failure of employees to regularly update could breach security regulations.

If an employee has access to vital corporate information and their devices are running on old operating systems, this could expose a business to a risk that is not directly due to them.