77% of the FTSE 100 Have Compromised Credentials - What is your Stolen-password percentage?

EEC Pro Results

IT security vendor Anomali, released a new report showing the volume of stolen credentials of FTSE 100 employees tripled In 2017, and a whopping 77% of the FTSE 100 were exposed with an average of 218 usernames and password stolen, published or sold per company.

In most cases the loss of credentials occurred on third party, non-work websites where employees reuse corporate credentials.

In May 2017, more than 560 million login credentials were found on an anonymous online database, including roughly 243.6 million unique email addresses and passwords.

The report shows that a significant number of credentials linked to FTSE 100 organizations were still left compromised over the three months following the discovery.

What is your Stolen-password percentage?

You and I know that your users are the weak link in IT security, but do you know how bad your email attack surface problem really is?

To really manage a problem, you need to see its magnitude and potential for damage. And then you can make the case for additional IT Security budget, because legally, an organization must act reasonably or do what is necessary or appropriate to protect its data.

So, for a few years we have been running our Email Exposure Check (EEC), to show you email addresses that are out there for the bad guys to find. It was a good start.

But we have strapped rockets to it, and the new EEC Pro digs down much further and shows you your actual social engineering attack surface.

The new EEC Pro crawls social media information and hundreds of breach databases for each email address of your domain. Fully automated.

The results are often scary as heck. IT pros that ran it emailed me back with: "Yikes, what do I do about this?"

We have answers to that question, but first you need to run your EEC Pro.

So, I urge you to this right now. Fill out the form, and in less than 5 minutes you get a detailed report how bad things look in PDF format and downloadable CSV. No need to talk to anyone.

You are not going to like it.

But it's the start to improve things, often an eye-opening discovery, and fantastic ammo to get more budget.

See Your Attack Surface

Don't like to click on redirected buttons? Copy and paste this in your browser:


Let's stay safe out there.

Warm regards,

Stu Sjouwerman,

Founder and CEO, KnowBe4, Inc


Topics: passwords

Subscribe To Our Blog


Recent Posts

Get the latest about social engineering

Subscribe to CyberheistNews