20 Percent of Employees Would Sell Their Passwords

March 21, 2016

According to new research, one in five employees would be willing to sell their work passwords to another organization, up from one in seven last year.

The research by identity management company Sailpoint, found that of those who would sell their passwords, 44 percent would do it for less than $1,000, and some for less than $100. This is made worse by the fact that 65 percent admit to using a single password among applications and 32 percent share passwords with their co-workers.

In addition, the survey found that more than two in five employees still have corporate account access after they leave their job. More than 25 percent uploaded sensitive information to cloud apps with the specific intent to share data outside the company. And one in three employees purchased a SaaS app without IT's knowledge, a 55-percent increase from last year. Reasons for not involving the IT department include because it's faster (49 percent), because IT adds too much process (40 percent), and IT over complicating things (21 percent).

The data comes from a survey of 1,000 office workers at large organizations (with at least 1,000 employees) across the US, UK, Germany, France, the Netherlands and Australia. It reveals a disconnect between employees' growing concern over the security of their personal information and their negligence over data security practices in the workplace.

"This year's Market Pulse Survey shines a light on the significant disconnect between how employees view their personal information and that of their employer, which could also include personal information of customers", says Kevin Cunningham, president and founder of SailPoint. "Today's identity governance solutions can alleviate the challenge of remembering several passwords and automate IT controls and security policies, but it's imperative that employees understand the implications of how they adhere to those policies. It only takes one entry point out of hundreds of millions in a single enterprise for a hacker to gain access and cause a lot of damage".

You must login or register in order to post a comment.

ON DEMAND: DevSecOps creates an environment of shared responsibility for security, where AppSec and development teams become more collaborative. With the right training and tools, developers can become more hands-on with security and, with that upskilling, stand out among their peers... however, they need the security specialists on-side, factoring them into securing code from the start and championing this mindset across the company.

ON DEMAND: The insider threat—consisting of scores of different types of crimes and incidents—is a scourge even during the best of times. But the chaos, instability and desperation that characterize crises also catalyze both intentional and unwitting insider attacks. Learn how your workers, contractors, volunteers and partners are exploiting the dislocation caused by today's climate of Coronavirus, unemployment, disinformation and social unrest.

Security Magazine

2020 November

This month, Security magazine brings you the Security 500 Report, Rankings and Thought Leader Profiles. How does your enterprise compare to others? Which security programs are leading the way? Also this month, we highlight how to plan, prepare for and build resilience to protests and other unplanned events, video surveillance tools for SMBs and more.

View More Create Account

20 Percent of Employees Would Sell Their Passwords

Related Articles

Related Products

Report Abusive Comment