A 2024 survey of end users and IT professionals worldwide revealed that around three in 10 respondents used their work device for personal activities. Other common risky actions taken by end users included reusing or sharing passwords, or connecting without using a VPN at a public place, each highlighted by 26 percent of respondents.
Most common risky end-user behavior and attitudes worldwide in 2024
Characteristic
Share of respondents
Use work device for personal activities
29%
Reuse or share password
26%
Connect without using VPN at a public place
26%
Respond to a message (email or SMS text) from someone I don’t know
24%
Access inappropriate website
20%
Click on links or download attachments from someone I don’t know
19%
Share work device with friends or family
16%
Call an unfamiliar phone number in an urgent email
13%
Tailgating: allow others to enter the office without badging in
11%
Upload sensitive data to unproven third-party cloud
10%
Give credentials to untrustworthy source
9%
Have never taken a risky action
29%
Created with Highcharts 7.2.2Share of respondents29%29%26%26%26%26%24%24%20%20%19%19%16%16%13%13%11%11%10%10%9%9%29%29%Use work device for personal activitiesReuse or share passwordConnect without using VPN at a public placeRespond to a message (email or SMS text) from someone I don’t knowAccess inappropriate websiteClick on links or download attachments from someone I don’t knowShare work device with friends or familyCall an unfamiliar phone number in an urgent emailTailgating: allow others to enter the office without badging inUpload sensitive data to unproven third-party cloudGive credentials to untrustworthy sourceHave never taken a risky action
You have no right to use this feature.
Make sure to contact us if you are interested in scientific citation.
You can upgrade your account to enable this functionality for all statistics.
This feature is not available with your current account.Request access
Data is based on a survey of 7,500 end users and 1,050 IT security professionals across 15 countries worldwide. Moreover, the source examined 183 million simulated phishing messages sent by its customers and over 24 million user-reported emails to uncover user vulnerability, behavior change, and risk.
Learn more about how Statista can support your business.
Proofpoint. (March 1, 2024). Most common risky end-user behavior and attitudes worldwide in 2024 [Graph]. In Statista. Retrieved May 02, 2025, from https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/
Proofpoint. "Most common risky end-user behavior and attitudes worldwide in 2024." Chart. March 1, 2024. Statista. Accessed May 02, 2025. https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/
Proofpoint. (2024). Most common risky end-user behavior and attitudes worldwide in 2024. Statista. Statista Inc.. Accessed: May 02, 2025. https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/
Proofpoint. "Most Common Risky End-user Behavior and Attitudes Worldwide in 2024." Statista, Statista Inc., 1 Mar 2024, https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/
Proofpoint, Most common risky end-user behavior and attitudes worldwide in 2024 Statista, https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/ (last visited May 02, 2025)
Most common risky end-user behavior and attitudes worldwide in 2024 [Graph], Proofpoint, March 1, 2024. [Online]. Available: https://www.statista.com/statistics/1376108/risky-actions-taken-by-end-users-worldwide/
Profit from additional features with an Employee Account
Please create an employee account to be able to mark statistics as favorites.
Then you can access your favorite statistics via the star in the header.
Profit from the additional features of your individual account
Currently, you are using a shared account. To use individual functions (e.g., mark statistics as favourites, set
statistic alerts) please log in with your personal account.
If you are an admin, please authenticate by logging in again.