Security News > 2020 > February > Shadow IT accounts with weak passwords endanger organizations

Shadow IT accounts with weak passwords endanger organizations
2020-02-10 12:13

Even more worryingly, only 2.6% of these 63% use a unique password when they create a new shadow IT account at work and just 13% use a password generator - the rest re-use a memorable password or use a pattern of similar passwords.

As we wait for a more authentication secure solution to find its way into mainstream usage and achieve widespread acceptance, we have to find a way to minimize the risks that come with password use.

"Say Carlos populates Airtable with customer data for his email campaigns, and Anita [in legal] checks sensitive legal documents in Grammarly. Without thinking about it, they're sharing a lot of important data with external companies that IT doesn't even know about," 1Password CEO Jeff Shiner explained.

Finally, former employees might retain access to their shadow IT accounts and their contents after they leave the organization.

Promoting and encouraging the use of a password manager for creating strong, unique passwords for all accounts, storing them and sharing them securely can help with the unseen password problem.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/S776_-yODtA/