New OneLogin research exposes a large discrepancy between the confidence of IT leaders in the password protection methods in place at their organization, and actual password hygiene.
While 91% of IT decision makers claim to have adopted guidelines for password complexity and 92% are confident that their password strategy is sufficient for safeguarding their organization, two out of three (65%) firms fail to make sure that employees don’t use common passwords, and three out of four (76%) don’t verify whether employee passwords are sufficiently complex. In addition, 32% of firms allow employees to choose passwords without special characters and 35% let staff select passwords of any length.
Thomas Pedersen of OneLogin believes this means that the vast majority of businesses are putting themselves at risk, because “[c]ybercriminals thrive on companies overlooking fundamental security requirements, which becomes an open invitation for any hacker on the hunt for easy passwords.”
Read more: Cybercriminals thriving on companies overlooking fundamental security requirements