Working a few days in the office and the rest from home (or better yet, a cafe) is pretty normal these days. Post-COVID Aussies have embraced the work/life balance it delivers, and many employers have seen the advantages: Happier, healthier workers who are often more productive on their quiet WFH days.

But there is one, pretty big, issue with the hybrid set up that business owners have overlooked. And it’s something which could put your organisation in some very hot water if you’re not careful.

How safe is their device?

With Data Privacy Week (26–30 January 2026) just around the corner, Kensington – global leader in laptop security and privacy solutions – is encouraging Australian businesses to take a closer look at their device security, particularly with hybrid work arrangements.

While cyberattacks grab most of the media attention, Kensington’s research shows unsecured physical devices – particularly those used by WFH employees – pose a growing and often underestimated risk.

The research found:

• 76 per cent of organisations have experienced device theft in the last two years, rising to 85 per cent in
  hybrid environments.
• 33 per cent of organisations faced legal or regulatory consequences after device theft.
• 32 per cent of businesses say they have suffered productivity loss due to stolen devices.

Visual hacking a concern

Data breaches are a global problem, with the average cost reaching US$4.88 million in 2024. But not all data leaks involve sophisticated cybercrime. Sometimes, it’s as simple as someone peering over your shoulder.

Visual hacking – when someone gains access to sensitive information by looking at a screen – is now being flagged as a worry. In fact, 23 per cent of surveyed IT leaders now identify it as a ‘growing concern’.

Arivan Ahmad, Kensington Australia Product Manager says visual privacy breaches are rising as digital workflows spread across mobile and hybrid environments.

“Digitisation has increased the amount of sensitive information displayed on screens every day. As work becomes more mobile, the risks of ‘shoulder surfing’, where someone simply glances at your screen, have grown significantly,” he says, adding:

“Airports, cafés, coworking spaces and even shared office setups create ideal conditions for visual hacking.”

What you can do?

The survey shows that business owners and organisations must pay attention to their physical digital security, especially if employees are working remotely.

“Physical device protection has become a frontline defence and one of the most cost-effective ways to prevent operational, legal and financial fallout,” says Ahmad.

He adds that awareness is increasing in data-sensitive industries.

“Government, healthcare and banking professionals are now adopting privacy screens as everyday tools because a single visual exposure can be just as damaging as a cyber intrusion.”

Kensington suggests business owners apply a privacy screen which limit viewing angles, preventing sensitive information from being exposed to nearby onlookers.

They also recommend a device lock, stating organisations that do this are 37 per cent less likely to experience data breaches caused by unsecured devices.

As Louie Yao, Director of Global Product Development at Kensington, says:

“With device theft rising sharply in hybrid environments and the cost of a single breach now averaging nearly US$5 million, organisations can no longer rely on digital security alone. Physical device protection has become a frontline defence and one of the most cost-effective ways to prevent operational, legal and financial fallout.”

“Cybersecurity begins long before a cyber event, it starts with safeguarding the devices employees use every day. Privacy Screens and physical locks are not just security tools; they’re modern productivity tools that protect people, data and organisations.”

The law is catching up

Businesses also need to be aware that Australia may soon face stronger privacy laws, aligning with global trends.

“Australia’s Privacy Act shares similarities with GDPR, but global momentum suggests we may see stricter frameworks around consent, data  rights and penalties for non-compliance,” says Ahmed.

“This would place even greater responsibility on organisations to ensure their workforce is equipped to work securely across hybrid environments.”

Time to review your device security measures, perhaps?

Want more? Get our newsletter delivered straight to your inbox! Follow Business Builders on Facebook, Twitter, Instagram, and LinkedIn.