Report: The bigger the company, the messier the password practices



Written by

A new report from password management company LogMeIn finds that the bigger the enterprise, the bigger the problem when it comes to managing passwords.

The company’s recently released Global Password Security Report scores its 43,000 customers on password strength, reuse, and use of multi-factor authentication.

While the average score equaled a 52 out of 100 — a score LogMeIn considers to be good — the numbers generally showed the larger the company, the lower the average security score. The report pins the trend on the fact that more employees bring more passwords and unsanctioned apps, as well as extra opportunities for dangerous password behaviors.

“Passwords continue to be a challenge to cybersecurity in the workplace, and attacks continue to grow in number and complexity every year. Despite these threats, businesses have struggled to quantify their own level of password risk,” said Gerald Beuchelt, Chief Information Security Officer at LogMeIn.

That level of risk hasn’t trickled down to the end users, with the report also finding that employees are sharing an average of six passwords with their coworkers.

One positive takeaway from the report is the rise in multi-factor authentication. Around 45 percent of companies use the security measure, a twenty percentage point increase from last year’s report.

Among the sectors measured, technology companies fared the best when it came to their password practices. Tech companies beat out heavily-regulated industries like banking, health, Insurance and government when it comes to password hygiene.

Multi-factor authentication has long been a standard recommendation for enterprises and individuals alike. However, a study last year found that most people still have not heard of the practice.

We’ve seen the market move beyond passwords in recent months, with multiple companies touting security keys that allow for users to remove their bad password habits from their daily routines.

You can read the full report on LastPass’ website.

-In this Story-

logmein, multi-factor authentication (MFA)