We’ve always known users are the weakest link in your security chain, but new report data from SailPoint shows just how bad users are behaving in 2018 – and how it affects security.
It’s an on-going battle: IT works to establish a secure working environment for users, and users look for ways to circumvent security, process, and protocol in an effort to work productively. The latest data from SailPoint’s 2018 Market Pulse Survey shows users are working harder than ever to not make the organization safer:
These stats point to a very real danger that exists. Cybercriminals use social engineering and phishing attacks to harvest credentials from individuals and use automated tools to test out those credentials on web-based services like Office 365. And with users using the same, unchanged, passwords across multiple systems, applications, and services, a single credential can be the master key to a multitude of business applications.
So, how do you stop this from becoming a problem in your organization?
The SailPoint data paints an all-too-real picture of what many organizations look like today. Consider taking steps to rectify both the culture and technical challenges bad user habits have created… before they impact the organization.
What if that password is available on the dark web? A massive amount of passwords are compromised due to data breaches and used by the bad guys for attacks. Are any hacked passwords in use within your organization?
Using breached passwords puts your network at risk. Password policies often do not prevent employees using known bad passwords. Making your users frequently change their passwords isn’t a good solution either. It only takes one compromised password match for the bad guys to gain access.
KnowBe4’s free NEW Breached Password Test (BPT) checks to see if your users are currently using passwords that are in publicly available breaches associated with your domain. BPT checks against your Active Directory and reports compromised passwords in use right now so that you can take action immediately!
Find out now which users are using hacked passwords!
https://www.knowbe4.com/breached-password-test
Requirements: Active Directory, Windows 7 or higher (32 or 64bit) NOTE: the analysis is done on the workstation you install BPT on, no confidential data leaves your network, and actual passwords are never disclosed.