New Vodafone research highlights growing mobile devices security concerns among Irish SMEs

The latest Vodafone Business Cybersecurity Report has revealed that despite 70% of SMEs expressing growing concerns over potential security attacks on mobile devices, more than 40 percent grant access to company resources to employees on the go without dedicated mobile security controls. This means many employees are accessing company emails, documents and apps out of office, increasing potential exposure to security and operational risks.
To help reduce exposure to these risks, Vodafone Business recommends a small number of practical actions. Outdated devices that no longer receive security updates should be phased out, particularly where personal phones or tablets are used for work. Automatic operating system and app updates should be switched on across all work devices, and clear expectations should be set that any device used for work must stay up to date. Where possible, mobile security or management tools can help identify gaps, while clear and timely communication is essential when urgent security updates need to be applied.
The findings form part of Vodafone Business's latest global cybersecurity threat research, drawing on insights from Vodafone's mobile security networks, partner intelligence, alongside primary research conducted in Ireland to understand how mobile-based threats are evolving for organisations of all sizes.
More importantly, the report highlights the emerging risks linked to how mobile devices used for business and work are managed, rather than the devices themselves. As part of the Irish research, Vodafone commissioned a survey of 300 Irish SME's employing between 50-250 people to better understand the challenges facing mid-sized businesses in an increasingly digital economy.
The research highlighted concerns among Irish SMEs, with seven in ten Irish businesses more worried about phishing, data leakage, malware and spyware risks than this time last year.
With mobile-based attacks now accounting for over 42 percent of all cyber incidents, the need for greater awareness around workplace mobile safety in and out of the workplace continues to grow. The Vodafone Business Cybersecurity Report also reveals 20 percent of businesses don't proactively monitor for security threats. It highlights a growing need for greater awareness and security measures for employees, as personal devices often lack the enterprise-grade protections found on company-issued equipment.
A hybrid smart device-driven world
The report signifies the need for employers and employees to become more risk-aware when accessing private company documents. With almost one million Irish people working in remote or hybrid arrangements last year, and 5.54 million cellular mobile connections active in Ireland in late 2025, there is a growing need for heightened mobile security awareness training among organisations.
It's estimated that almost a quarter of companies (23 percent) suffered a cybersecurity breach in 2025, highlighting the importance of educating both employees and employers around safer smart device use.
Commenting on the findings, Joanna Gilfoy, Business Director at Vodafone Ireland, said:
"With so many companies offering hybrid and remote working, employees are using their handsets to better manage their workload. Without enterprise software and sufficient mobile security awareness training, the risks this poses to companies are significant. Some of the top mobile security threats Vodafone has identified include phishing and smishing, mobile malware, operating system vulnerabilities and spyware, network attacks and SIM swap, along with identity hijacking. Irish companies must ensure their people are aware of the risks associated with mobile use inside and outside the workplace as they continue to navigate complex digital worlds.
"At Vodafone Ireland, we continue to support Irish businesses not only with connectivity but with practical guidance, managed security capabilities and awareness programmes designed to help organisations s...