"Half of IT Leaders Store Passwords in Shared Docs"

According to new research by identity management vendor Hitachi ID, nearly half (46%) of IT and security leaders still store corporate passwords in office documents like spreadsheets, exposing their organization to significant cyber risk.  It is estimated that each employee might have as many as 70-100 passwords and “decentralized secrets” that attackers could use to gain access to and move through an organization.  The researchers stated that although nearly all (94%) respondents claimed they require password management training, with 63% saying they do so more than once a year, many appear not to be following their own advice.  Just 30% of respondents said they use company-provided password managers, and some even resort to pen and paper.  The researchers stated that the findings raise an important question about how effective password management training is when nearly half the organizations still store passwords in spreadsheets and other documents, and 8% write them on sticky notes.  The researchers noted that insecure passwords are still a leading cause of cyberattacks, and education alone is clearly not enough.

Infosecurity reports: "Half of IT Leaders Store Passwords in Shared Docs"