We all know the drill on public transport: report any suspicious behaviour or items, keep an eye on your personal belongings, and be respectful to other passengers.
These are things many of us do daily, with around 2.2 million people in the UK using public transport to get to work each day.
But while we’re looking out for our own personal safety on trains, buses and tubes, it seems there’s one common mistake we’re guilty of, that could be putting us, or more specifically our jobs, at risk.
New research from Kaspersky, a cybersecurity company, has revealed that many commuters are engaging in worrying behaviours while on the go, that could result in a data leak, or a serious breach of privacy for their place of work.
These risky behaviours include writing work emails while on public transport, with two-thirds (66%) of commuters they spoke to confessing to doing this — while 29% said they openly work on important documents, regardless of who is around them.
A further 35% of commuters said that they had overheard sensitive business details during phone conversations while on the move, with a quarter (24%) overhearing identifiable business names and specific workplace locations. Uh-oh.
As the saying goes ‘loose lips sink ships’ and it’s crucial to remember that you never know who you could be sitting near. The person opposite you could actually be a cybercriminal, and you might have just given them valuable information without even realising.
Commuters were also warned by Kaspersky to consider concealing ‘highly sensitive visual cues’, such as work badges, personal IDs, email signatures and workplace locations, while on public transport.
David Emm, Principal Security Researcher, Kaspersky explains: ‘Many of us are unwittingly leaving valuable personal breadcrumbs for others to follow during their daily travel to work, including business names, contact details and other sensitive information.
‘If you’re handling strategic information during your commute, the impact of a leak could be massive — and potentially easily traceable to those privy to it. Whether it’s a financial deal, legal case, or patient data, exposing such details in public could lead to significant consequences for both the business and the individual responsible.
‘On the other hand, even seemingly less critical information — like internal processes or casual work discussions — could still be valuable to a targeted attacker looking to gain a foothold in the organisation, just like in phishing. In these cases, it might be harder to directly trace the breach to a specific action, but the long-term damage could be just as significant.’
He continued: ‘Industries like finance, healthcare, and law have strict policies barring employees from working in unsecured public spaces like trains or cafes, where regulations such as GDPR and FCA guidelines make data protection paramount. In these sectors, accessing sensitive information outside secure environments can be a career-ending move, with potential for disciplinary action, legal repercussions, and significant damage to the company.
‘Whether you’re a lawyer, banker, or doctor, safeguarding data in public places is non-negotiable.’
For some, carrying out work during a commute isn’t something that’s up for debate, and the travel time is necessary to get the job done.
So for those who have to carry out business tasks on public transport, Kaspersky has teamed up with the etiquette experts over at Debrett’s to create a Guide to Digital Discretion in a bid to help people keep their devices safe during a commute.
Top tips in the guide include finding an isolated seat to sit in if you’re going to be working on confidential documents in order to avoid ‘shoulder surfers’.
They also warn people to consider ‘window watchers’ as they type emails or texts, as your screen might be reflected in a dark window behind you, and to try texting sensitive information instead of speaking over the phone if you can.
Liz Wyse, Head of Publishing, Debrett’s adds: ‘Many of us are transfixed by our digital devices and, particularly on public transport, we become lost in the illusion that we are moving within our own private digital bubble. In a public sphere, where we may be subject to close, and malicious, surveillance, it is vital that we safeguard our own cyber security.
‘Being observant of the people around us is the cornerstone of good manners and is also a vital tool in protecting our privacy.’
Do you have a story to share?
Get in touch by emailing MetroLifestyleTeam@Metro.co.uk.
MORE : The one thing you should add to your CV if you’ve taken a career break
MORE : Lorry crashes through central reservation and flips over on M40
MORE : I didn’t take a single day of maternity leave — mums really can have it all
Sign up to our guide to what’s on in London, trusted reviews, brilliant offers and competitions. London’s best bits in your inbox
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
