2 min read

Survey finds vast majority of people reusing personal passwords in the workplace, despite security training

Graham CLULEY

August 17, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Survey finds vast majority of people reusing personal passwords in the workplace, despite security training

Regular readers of Hot for Security understand the pitfalls of reusing passwords in multiple places.

If you use the same password in more than one place, the risk is that the password will be breached by hackers in one location and then used against you elsewhere.

For example, in 2012, it became apparent that the passwords for almost 6.5 million LinkedIn passwords had been stolen from the business networking site and posted online.

(That would have been bad enough, but four years later it was revealed that the breach was much worse than previously thought - and had actually exposed over 100 million LinkedIn users' passwords).

Following the breach, hackers tried to crowbar their way into users' other accounts by using the passwords that had been used on LinkedIn.  Infamously, one high profile victim was a fellow you may have heard of called Mark Zuckerberg - who had made the elementary mistake of using the same password for his Twitter, Instagram, and Pinterest accounts as his LinkedIn profile.

That password? The hardly complex "dadada".

The security-savvy amongst us know that reusing the same password is probably a graver error than choosing an easy-to-guess password or one that is simple to crack.

But if Facebook's founder and CEO can make such a dumb mistake when it comes to his password security, it's perhaps no surprise that many of the rest of us do too.

New research released by My1Login suggests that not many people have learnt the lesson of not reusing passwords in the years since the LinkedIn breach.

According to a survey conducted by the firm, nearly two thirds (62%) of employees passwords between business and personal accounts.  The problem is particularly bad in the healthcare and education sectors, where the survey found particularly high rates of password reuse, at 94% and 91% of employees respectively.

You're probably imagining that all people need is a little training in password security to fix this problem. Well, think again.

85% of employees who have received security training in the workplace continue to reuse their passwords. Even 78% of those employees who said they had received 'a lot' of cybersecurity training were found to still reuse their passwords.

In short, workers may know what a strong password should like, and even that they shouldn't reuse their passwords, but it doesn't mean that they are actually obeying the rules.

And that puts everyone - businesses and personal users - at risk, in the office and at home.

If you're a regular reader of Hot for Security, I like to think that you already understand the common mistakes that the public makes when it comes to password security, and how a decent password manager and multi-factor authentication can help users following best practice and harden their accounts from attack.

Maybe you can do your bit to ensure that your friends, family, and work colleagues realise that these rules are not just made up for fun but can actually make a massive difference as to whether your accounts - at home and in the office - get hacked or not.

tags


Author



Right now

Top posts

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read
Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

June 22, 2022

1 min read
Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

May 24, 2022

3 min read
John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

John Oliver Shows the Dark Side of Data Brokerage on Last Week Tonight

April 15, 2022

3 min read
Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

Bitdefender Labs Warns of Phishing Scams Targeting MetaMask Users

April 14, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

FTC warns LGBTQ+ community of extortion scams targeting them on dating apps FTC warns LGBTQ+ community of extortion scams targeting them on dating apps
Graham CLULEY

July 01, 2022

2 min read
OpenSea Breach Exposes 1.8 Million Email Addresses. How does it affect you? OpenSea Breach Exposes 1.8 Million Email Addresses. How does it affect you?
Radu CRAHMALIUC

June 30, 2022

3 min read
Dealing with Cyberbullying as Adults and Children through Communication - School Presentation Inside Dealing with Cyberbullying as Adults and Children through Communication - School Presentation Inside
Silviu STAHIE

June 30, 2022

2 min read