Just in:
Dubai weighs turning organic waste into aviation fuel // Anthropic extends Fable access as model rumours intensify // Iran widens energy threat as Hormuz battle escalates // Xsolla and Management and Science University (MSU) Sign Memorandum of Understanding (MOU) to Connect Future Game Developers With Global Commercial Opportunities // DITP Launches THAI SELECT Festival 2026 in New York to Strengthen U.S. Market Opportunities for Thailand’s Food Industry // Gadkari’s Ethanol Defence Is Losing The Public Argument // Central & Western District Youth-to-Career Explo Connects Hong Kong Youth to Future Careers in AI Era // CyCraft Named a Sample Provider in the Gartner® Latest AI Reasoning Models Report—The Only Taiwan-Based Cybersecurity Provider Listed // Dealing.com claims record for tokenised stock access // Dubai diamond trade reaches record $41.7 billion // Guardian Fire expands Midwest reach with Nebraska deal // EU prosecutors examine subsidies linked to Babiš // Enshi Suobuya Stone Forest in China Launches Rich Cultural Experiences to Welcome Southeast Asian Tourists // First Energy Africa Oil Corp. Strengthens Board with Appointment of Industry Veterans Simon Akit and Frederick Kozak // Louis Vuitton Celebrates 130 Years of the Monogram // AI tools sharpen cybercrime as quishing surges // Rival cyber spies penetrate Pakistan police networks // Revolut clears first hurdle for Dubai crypto launch // Copilot workflow bypass exposes critical safety gap // Masdar secures $5.1 billion for round-the-clock solar //

WhatsApp Workplace Use Exposes Firms to Cyber-Risk

A wave of data indicates that staff reliance on informal messaging platforms, particularly WhatsApp, is opening critical cybersecurity gaps across organisations. The 2025 KnowBe4 Africa Annual Cybersecurity Survey shows that 93 per cent of African professionals use WhatsApp for work purposes—surpassing email and even messages sent via enterprise-grade tools. Alarmingly, up to 80 per cent of these users operate from personal devices that often lack proper management or oversight, creating substantial blind spots in organisational defences.

Industry leaders stress that these messaging apps were never conceived for business use—lacking essential audit trails and compliance controls available on platforms like Microsoft Teams or Slack. WhatsApp’s ease of use and familiarity are undeniable draws, yet those same strengths work against organisations when they compromise control, compliance, and data security.

One of the most pressing concerns is data leakage—whether inadvertent or intentional—of sensitive internal content such as client lists, financial data or login credentials, through informal channels. The resulting “shadow IT” environment leaves conversations beyond corporate governance.

ADVERTISEMENT

Regulatory requirements add another layer of risk. Informal platforms typically do not support the recovery or archiving of communications, making them ill-suited for sectors that rely on stringent record-keeping. Cases already exist where WhatsApp messages have been used as evidence in legal proceedings, illustrating their potential to exacerbate organisational liability.

Cyber threats such as phishing and identity theft further compound the danger. Attackers frequently exploit WhatsApp’s weak identity verification mechanisms. Once a user account is breached—often via SIM swap—the malicious actor gains unfettered access to prior conversations and contacts. Such attacks are commonly used to impersonate the user and deploy scams targeting both colleagues and clients.

Beyond purely technical threats, the use of these platforms can blur the line between work and personal life, heightening employee stress and lowering productivity. The barrage of informal messages can become a constant distraction, contributing to burnout and eroding well-being.

Some organisations have taken decisive action. NatWest has blocked WhatsApp, Facebook Messenger, and Skype on employee devices, citing the need to preserve compliance and transparency, particularly after multi-billion-dollar fines imposed on US banks for record-keeping failures linked to unmonitored messaging apps. The UK Financial Conduct Authority is also ramping up scrutiny of such practices, urging tighter governance over work communications.

In response to these risks, cybersecurity professionals advise that organisations adopt a multi-pronged strategy. Firms should actively provide secure, approved alternatives alongside clear communication protocols—rather than merely outlawing informal tools without offering viable replacements. Training on digital mindfulness should be central, emphasising reflection before sending messages, evaluation of content and recipient, and awareness of emotional triggers that cyber-threat actors often exploit.



Notice an issue?

Arabian Post strives to deliver the most accurate and reliable information to its readers. If you believe you have identified an error or inconsistency in this article, please don't hesitate to contact our editorial team at editor[at]thearabianpost[dot]com. We are committed to promptly addressing any concerns and ensuring the highest level of journalistic integrity.


ADVERTISEMENT
Social Media Auto Publish Powered By : XYZScripts.com