Filed Under:Agent Broker, Agency Technology

Top 10 “Shadow IT” Apps Downloaded by Employees—and the Risks Involved

Everybody loves apps. But when employees use their own mobile devices for work, what risks do they pose?

More employers are allowing workers to “BYOD”—bring your own device—into the workplace. But some downloaded apps, shared between work and personal devices, can cause trouble. Just this month, the popular Evernote app was hacked, requiring a reset of more than 50 million passwords.

The term "shadow IT" refers to the proliferation of solutions and systems downloaded by employees and used in the workplace without the knowledge or support of IT. These apps can be for work or personal use, and can be loaded on PCs, smartphones or tablets connected to corporate networks. PricewaterhouseCoopers' "Digital IQ" survey estimates that among top performing companies, IT controls less than 50 percent of corporate technology expenditures.






Google Mail


Apple iCloud








Amazon Web Services





Lockton’s Born recommends employers take the following steps to protect themselves against “shadow IT” threats:

  1. Assess the risk. If the employer deals with a lot of sensitive information like financial or healthcare, management must weigh risks and benefits of allowing employees to use personal devices for work.
  2. Restrict the use. Even if employees are permitted to use personal devices for work, employers can restrict the information they can put onto those devices, such as more sensitive files.
  3. Encrypt when needed. If employees are sending and receiving company email on their personal devices, employers can require that the emails be encrypted. However, policing compliance can be a challenge.
  4. Educate everyone. Educating employees on the risks of BYOD is one of most important things employers can do. Make it clear that if an employee receives an email or notice that apps on their personal devices may have a security vulnerability, tell them to download the patch fix, delete the app from the phone, and contact IT.


Featured Video

Most Recent Videos

Video Library ››

Top Story

What grade does your state get for its insurance regulations?

Eight states received an “A” grade, and one state received an “F.” Insurance is regulated almost entirely by the state level, and here's a report card on how the states are doing.

Top Story

3 tips for becoming a lead-generation master

A lead-generation master takes full advantage of all the possibilities for attracting prospects through their website, not just through their contact forms.

More Resources


eNewsletter Sign Up

Agent & Broker Insider eNewsletter

Proven success tips and essential information to help agents and brokers grow their practice – FREE. Sign Up Now!

Mobile Phone

Advertisement. Closing in 15 seconds.