A study released by Insight Express reveals that nearly half of mobile users open email and attachments from unknown persons, and one-third of mobile users access open wireless connections, regardless of the connection's source. Nearly 30% of mobile users said they "hardly ever" considered the security risks associated with their actions. Users cited the need to get work done and the attitude that security is IT's responsibility as the primary reasons for engaging in risky behavior.

Security for mobile workers is a growing concern. By 2009, the number of mobile workers is expected to reach 70 percent of the country's workforce. Currently, more than 8 out of 10 executives are connected to the Internet via a mobile device of one kind or another.

The National Cyber Security Alliance offers the following tips for keeping mobile workers safe:
• Use effective passwords that are changed every 90 days
• Update anti-virus and anti-spyware programs
• Download OS patches regularly
• Create backups of all important data and files
• Encrypt sensitive data
• Develop an emergency response plan for wireless security breaches
• Educate users proactively and use protective network technology

Interestingly, although most vulnerabilities encountered by mobile users could be significantly reduced or eliminated by simple avoidance, "user education" was last on NSCA's list, and was coupled with the use of protective technology. Although the notion that security is not the user's responsibility may be maddening, it's also unlikely that IT would get much bang for its buck when it comes to user education, either. Unfortunately, it seems like IT support staffs have generally given up on the user as the first line of defense.

The survey was commissioned by Cisco and the National Cyber Security Alliance and questioned 700 mobile users in seven countries.