IBM found that dating apps are already being used on employee devices at a full half of the enterprises IBM surveyed.
To conduct the study, researchers analysed the dating apps available in the Google Play app store in October 2014. Out of 41 dating apps they looked at, 26 had either medium or high-severity vulnerabilities.
What that meant, specifically, was that the apps could be used to download malware, steal financial information or track the user's whereabouts. Even when the user isn't logged into the app, hackers could gain access to the phone's camera or microphone and eavesdrop on confidential business meetings, IBM said.
Though the insecure apps IBM found were all on the official Google Play store, it's also a good idea to restrict employees' app downloads to authorised sources, the company said.
Other advice for IT managers:
-- use some form of mobile device management tool that includes security capabilities;
-- educate users about potential dangers and make sure they understand what it means when they grant permissions to mobile apps;
-- set automated policies on smartphones and tablets so that if a device is found to be compromised, action can be taken immediately.