57% of IT workers who get phished don’t change their password behaviors
New research by Yubico and the Ponemon Institute sheds light on the somewhat surprising security practices and concerns of IT personnel in the US, France, Germany and the UK. The most disturbing finding of the study is that 57% of respondents that had been at the receiving end of a phishing attack, did not change their password behaviors afterward.
The study also shows that IT personnel tends to worry more about government surveillance than about cybercrime. One third of the respondents (33%) had been personally affected by a data breach, and about the same percentage of people (35%) knew someone that had been affected.