{"id":4243,"date":"2019-02-08T11:13:19","date_gmt":"2019-02-08T15:13:19","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=4243"},"modified":"2019-02-08T11:13:19","modified_gmt":"2019-02-08T15:13:19","slug":"by-the-numbers-enterprise-password-vulnerabilities","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/","title":{"rendered":"By the Numbers: Enterprise Password Vulnerabilities"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3375\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg\" alt=\"By the Numbers: Enterprise Password Vulnerabilities\" width=\"800\" height=\"425\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-300x159.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-768x408.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-545x290.jpg 545w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-508x270.jpg 508w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-152x81.jpg 152w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD-339x180.jpg 339w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Our regular readers may notice a pattern emerging on our identity and access management site; namely, we tend to focus in on password security and password vulnerabilities. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">We assure you, we do so deliberately. Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall. Passwords serve as the number one connection your employees have to your identity policies and to their own online identities. Hackers desire little else than to steal passwords for their own gain, as entry ways into the network and as tools for their evasion tactics. \u00a0<\/span><\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Moreover, few threats remain as underestimated as password vulnerabilities. Reused or weak passwords can open the door to external threat actors many times over. Unless your enterprise invests in an identity and access management solution with a strong password management component or with a multifactor authentication protocol, your security stays fragile. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">To hammer home this point, we\u2019ve compiled some research on password vulnerabilities. Here they are, by the numbers: <\/span><\/p>\n<h3 style=\"text-align: justify\"><b>By the Numbers: Enterprise Password Vulnerabilities<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Some numbers outline the extent and the depth of the issue at hand: <\/span><\/p>\n<ul style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Over the past two years, enterprise data breaches have increased <\/span><b>75%<\/b><span style=\"font-weight: 400\"> according to \u201c<\/span><a href=\"https:\/\/www.linkedin.com\/pulse\/new-approach-passwords-security-julia-o-toole\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">A New Approach To Passwords Security<\/span><\/a><span style=\"font-weight: 400\">\u201d by Julia O\u2019Toole of <\/span><a href=\"https:\/\/mycena.co\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Mycena<\/span><\/a><span style=\"font-weight: 400\">. <\/span><\/li>\n<li style=\"font-weight: 400\"><b>81%<\/b><span style=\"font-weight: 400\"> of breaches stem from weak, stolen, or reused passwords, according to Verizon. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Nearly <\/span><b>10%<\/b><span style=\"font-weight: 400\"> of users selected at least one of the 25 worst passwords for one of their accounts, according to <\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/splashdata-releases-top-100-worst-passwords-2018\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">SplashData<\/span><\/a><span style=\"font-weight: 400\">.<\/span><\/li>\n<li style=\"font-weight: 400\"><b>3%<\/b><span style=\"font-weight: 400\"> used \u201c123456,\u201d the password ranked the <\/span><b>#1<\/b><span style=\"font-weight: 400\"> worst, as at least one of their passwords, according to <\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/passwords-traditional-access-management-dead\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">SplashData<\/span><\/a><span style=\"font-weight: 400\"> in 2017. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">In 2018, \u201c123456\u201d remains the <\/span><b>#1<\/b><span style=\"font-weight: 400\"> worst password still in use.<\/span><\/li>\n<li style=\"font-weight: 400\"><b>59%<\/b><span style=\"font-weight: 400\"> of users<\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/2019-future-of-password-security-mfa\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\"> repeat their stolen passwords<\/span><\/a><span style=\"font-weight: 400\">, according to Rachael Stockton of LogMeIn. <\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify\"><b>Why Do Password Vulnerabilities Persist? <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Their ubiquity poses an inherent issue for passwords; with few meaningful alternatives apart from two-factor and multifactor authentication (which enterprises have adopted at a painfully slow rate) passwords embody a particular old phrase: \u201cI know it\u2019s rigged, but it\u2019s the only game in town.\u201d<\/span><\/p>\n<ul style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">According to Julia O\u2019Toole of Mycena, users need to remember between <\/span><b>80<\/b><span style=\"font-weight: 400\"> and <\/span><b>90+<\/b><span style=\"font-weight: 400\"> passwords. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Other studies, including by <\/span><a href=\"https:\/\/blog.dashlane.com\/world-password-day\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Dashlane<\/span><\/a><span style=\"font-weight: 400\">, place the number of <\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/passwords-traditional-access-management-dead\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">passwords required for daily life<\/span><\/a><span style=\"font-weight: 400\"> at <\/span><b>150<\/b><span style=\"font-weight: 400\"> or more.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Dashlane expects the number of passwords to double to <\/span><b>300<\/b><span style=\"font-weight: 400\"> by 2022. <\/span><\/li>\n<li style=\"font-weight: 400\"><b>86%<\/b><span style=\"font-weight: 400\"> of users keep track of their passwords by memorizing them, according to a <\/span><a href=\"https:\/\/www.darkreading.com\/endpoint\/identity-management-where-it-stands-where-its-going\/d\/d-id\/1331199\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Pew Research Center study in 2017<\/span><\/a><span style=\"font-weight: 400\">. <\/span><\/li>\n<li style=\"font-weight: 400\"><b>39%<\/b><span style=\"font-weight: 400\"> of users find it challenging to keep up with their passwords as is. <\/span><\/li>\n<li style=\"font-weight: 400\"><b>32%<\/b><span style=\"font-weight: 400\"> of American adults favor biometrics over passwords, according to <\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/new-insights-stand-biometric-authentication-practices\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Callsign<\/span><\/a><span style=\"font-weight: 400\">. <\/span><\/li>\n<li style=\"font-weight: 400\"><b>58%<\/b><span style=\"font-weight: 400\"> of American workers prefer passwords over biometrics in the workplace.<\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify\"><b>What<\/b> <b>Can My Enterprise Do? <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">To reduce the risk of password vulnerabilities, you should deploy a next-gen identity and access management solution. Ideally the solution you select should offer password management and multifactor authentication capabilities. These will reduce the burden of passwords on your overall identity security and and help your business transition into the modern digital marketplace securely. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">In conclusion, passwords are an enduring relic of the past, for good or ill. Don\u2019t let them dictate your future. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Our regular readers may notice a pattern emerging on our identity and access management site; namely, we tend to focus in on password security and password vulnerabilities. We assure you, we do so deliberately. Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall. Passwords serve as [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3375,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[142,125,16,112,76,70,145,91,90],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>By the Numbers: Enterprise Password Vulnerabilities<\/title>\n<meta name=\"description\" content=\"Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/\",\"name\":\"By the Numbers: Enterprise Password Vulnerabilities\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg\",\"datePublished\":\"2019-02-08T15:13:19+00:00\",\"dateModified\":\"2019-02-08T15:13:19+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg\",\"width\":800,\"height\":425,\"caption\":\"Top-Tier Password Best Practices for World Password Day 2021\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"By the Numbers: Enterprise Password Vulnerabilities\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"By the Numbers: Enterprise Password Vulnerabilities","description":"Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/","url":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/","name":"By the Numbers: Enterprise Password Vulnerabilities","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg","datePublished":"2019-02-08T15:13:19+00:00","dateModified":"2019-02-08T15:13:19+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Password vulnerabilities may constitute the single greatest threat to your business\u2019 identity security and your digital security overall.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/07\/privileged-access-management-MOD.jpg","width":800,"height":425,"caption":"Top-Tier Password Best Practices for World Password Day 2021"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/by-the-numbers-enterprise-password-vulnerabilities\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"By the Numbers: Enterprise Password Vulnerabilities"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4243"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=4243"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4243\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/3375"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=4243"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=4243"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=4243"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}