As businesses scramble to prepare continuity  plans for a pandemic, other significant risks of disruption are also lurking: floods and other natural diasters, snowstorms and other severe weather, cyberattacks and data loss.

Although businesses are increasingly at risk for cyberattacks on their mobile devices, many aren’t taking steps to protect themselves.

That’s one of the conclusions of a report on mobile security released recently by Verizon, which found that nearly 40% of companies had their mobile security compromised, up from 33% in 2019. But many companies don’t prioritize mobile security – 43% said they had sacrificed security while owners and managers focused on other concerns.

Forty-three percent of the companies surveyed said that mobile security was sacrificed to meet deadlines or productivity targets. They were twice as likely to be compromised as those that didn’t take precautions.

A big threat to cybersecurity comes from free public Wi-Fi services. A fifth of the organizations that reported their mobile devices had been attacked said an unapproved or insecure Wi-Fi service was used.

These Wi-Fi services, available in places like coffee shops and public transportation hubs, are favorite targets of hackers who can intercept communications and data including account numbers and passwords. Cybersecurity experts warn against accessing any sensitive information while using public Wi-Fi, and they also warn against enabling mobile devices to automatically connect to these services.

The Verizon report found that many companies are at risk for cyberattack because 72% of employees have used public Wi-Fi. About half said they prohibit employees from using public Wi-Fi.

The survey questioned 876 people responsible for the purchase, management and security of mobile devices at companies of all sizes. While the results were not broken out according to company size, they do indicate the risks that small businesses face. Many owners run their companies from their mobile devices.

One precaution cybersecurity experts recommend is multi-factor verification, which requires a password and a code in order to use a device or to access an account. But such security steps require extra time and effort. Among those surveyed, 62% said security was sacrificed for speed and 52% said convenience was the reason.

Companies are taking risks even though the damage from a cyberattack – down time, money stolen from accounts, even lost customers – can be severe. Two-thirds of the companies that reported they had suffered an attack said the incident had a major impact on the business.