Even IT professionals show alarming password behavior

Are your employees aware of the risks associated with poorly managed passwords? Is it correct to believe that people in the IT sector necessarily show exemplary password behavior?

The latest data reveals the discrepancy. According to the study conducted by Ponemon Institute, both IT professionals and regular internet users engage in dangerous cybersecurity practices.

What are those mistakes related to password behavior? What can you, as a business owner, do?

Mistakes associated with password behavior

The report by Ponemon Institute highlights the critical idea – even professionals make mistakes in cybersecurity and daily password management. What should you pay attention to?

Password behavior and its risks associated with IT professionals

• 60% of professionals do not use Two-factor authentication . This is a critical security step to block unauthorized access. Even if the hacker guesses the password, he cannot break into your account.

• Every second IT professional reuses passwords in work-related accounts. Password recycling is one of the main reasons behind credential stuffing attacks. Such password behavior accelerates data breaches and information leaks.

• 59% of people working in the IT sector admitted relying on their memory to store passwords. This is a problematic password behavior since it is impossible to remember around hundred unique passwords. As noted, people usually fall into one of the two common traps: password recycling or creating easy-to-remember logins.

Why do people make mistakes in cybersecurity?

Most employees do not make mistakes on purpose. There are multiple reasons for such password behavior.

First, human memory has its limits. Therefore, it is almost impossible for any individual (an IT professional included) to remember 100+ unique passwords. Without a solution, even professionals start looking for easy options to remember passwords. Consequently, this puts their security at risk.

Second, sometimes people are not aware of some password behavior consequences. If nobody educated them about the risks of reusing passwords and weak credentials, they do not know. If the workplace has not provided employees with reliable password management solutions, they choose convenience over security.

Last, many organizations fail to invest in reliable cybersecurity products. These products could radically facilitate daily password management processes and improve company security. Precisely, only a third of companies use a password manager. Without dedicated tools, it is hard for an employee to develop secure password management practices.

What can businesses do to ensure exemplary password behavior inside the company?

Information technology is a broad industry. One specialist fixes hardware and another develops or maintains the software. And only a niche part of IT is dedicated to the cyber security area.

As a business owner or a manager, never take all IT staff for granted that they “know it all.” Hire cybersecurity professionals to consult and provide training for all employees despite their position.

Also, provide your employees with access to proper password management tools such as PassCamp. This enterprise-focused password management software ensures secure data storage. End-to-end encryption and Zero-knowledge protocol guarantee the privacy and security of the stored data. Besides, such a tool provides a safe environment to share data with colleagues smoothly.

Respond to alarming password behavior within your organization or team. Increase the level of the company’s security with PassCamp today.