Cyber risk from polyworking according to Kaspersky
Between July 2024 and June 2025, over six million cyberattacks were detected worldwide under the guise of work tools or supposed job offers. In Germany, around 125,000 of these attacks were against users. This was announced by the security provider Kaspersky in a recent press release.
Polyworking, i.e. working several jobs or activities at the same time, is becoming increasingly popular, especially among Generation Z. Around 48 percent of this age group work on several projects or in different jobs at the same time. However, this also increases the attack surface for cyber criminals.
Kaspersky analyzed attacks in which well-known tools such as Zoom, Microsoft Excel, Outlook, OneDrive and Microsoft Teams were used to spread malware or steal access data. Zoom was particularly frequently affected, with around 3.85 million registered attacks. Excel was affected in around 835,000 cases and Outlook in around 731,000.
In addition to traditional work tools, platforms such as LinkedIn, Indeed and Glassdoor were also used for deception. Kaspersky registered over 650000 visits to fake LinkedIn pages that served as phishing traps. The offers were aimed specifically at young people looking for freelance work or flexible part-time jobs.
According to Kaspersky, a key problem lies in the mixing of private and professional devices and the use of insecure tools. This opens the door to cyberattacks. Added to this is the mental overload caused by multitasking, which can lead to security measures being neglected.
To counteract this, Kaspersky developed the interactive educational game Case 404, which is aimed primarily at Generation Z and teaches how to deal with digital threats such as phishing emails, fake updates and compromised logins in a fun way. Users slip into the role of investigators and train their awareness of digital dangers using realistic scenarios.
Conclusion
Polyworking is a growing trend among young employees, but it entails considerable risks for cyber security. Kaspersky’s figures show that tens of thousands of attacks have already been registered in Germany too. Companies and individuals should therefore review their security precautions and pay particular attention to a clear separation of private and professional digital environments. Awareness, digital hygiene and targeted training are crucial for effective protection.
Source: Kaspersky
