1. Introduction

The growing number of remote workers has coincided with a surge in cyber threats, prompting institutions to launch awareness campaigns to educate their members about protection strategies (Enisa, 2020; Interpol, 2020; Kumar et al., 2022). This trend underscores the need for companies to invest in cybersecurity measures and ensure employee adherence to best practices for information and computer security.

The widespread adoption of remote work policies has presented both organizations and their employees with numerous cybersecurity challenges. This shift has exposed new vulnerabilities that must be addressed (Reciprocity, 2021; Yeoh et al., 2022). In addition, the lack of adequate support and resources for remote employees, coupled with the use of potentially less secure home networks, has introduced further risks. Home networks and personal devices are generally more susceptible to cyberattacks than corporate networks, making remote workers prime targets for attackers (Lallie et al., 2021; Ramadan et al., 2021).

The increasing reliance on digital technologies for business operations, partly fueled by the COVID-19 pandemic (Battisti et al., 2022; Caligiuri et al., 2020; Como et al., 2021), necessitates the use of online communication and digital tools. As businesses handle sensitive data digitally, they become potential targets for cyberattacks. To mitigate cybersecurity risks, institutions, particularly those with numerous remote workers, must implement various cybersecurity measures, such as developing official policies, offering employee training and securing networks and devices (Yang et al., 2013; Baraković and Baraković Husić, 2023). However, cybersecurity investments and measures alone are insufficient. Addressing cybersecurity effectively requires considering both system security and individual user behavior.

Human factors often constitute the weakest link in a security system (Schneier, 2004). Studies have shown that noncompliance with security practices by individuals is the primary cause of security breaches (Donalds and Osei-Bryson, 2020). A considerable amount of research has focused on the impact of employee behavior on an organization’s information security (Shropshire et al., 2015; McCormac et al., 2017). For example, Global Technology Services (IBM, 2015) found that over 95% of security breaches were due to human error (IBM, 2015, p. 7). Further research indicates that improving employee behavior can reduce the risk of security breaches by 45%–70% (Aberdeen Group and Wombat Security, 2015).

Cyber hygiene practices of...