Privileged passwords pose threat to data security

Posted by AccountingWEB PM | on Wed, 14/01/2009 - 12:48  2502  1 comment

The privileged user accounts and passwords used by many IT staff to carry out their day-to-day tasks pose one of the biggest risks to company data and are the industry's "dirty little secret", according to Cyber-Ark.


Password security tips
1. Provide a safe and reliable place to store passwords - including a back-up facility in case your main password store fails.

2. Change passwords regularly. The most secure location in the world will be undermined if you don’t change the passwords.

Continued...

» Register now

The full article is available to registered AccountingWEB members only. To read the rest of this article you’ll need to login or register.

Registration is FREE and allows you to view all content, ask questions, comment and much more.

Tags
security
passwords
Technology
More like this
Comments
Richard Holmes's picture

Password Issues

Richard Holmes | Wed, 14/01/2009 - 13:43 | Permalink

I couldn't agree more with your comments on passwords. Everyone knows that many users simply employ the same password for everything and with the increase in blogs and social sites, it's not hard to guess many 'weak' passwords. (often pet's or children's name).

That's why we have employed a company code and password in addition to the user's own details to login. Then if a user leaves, or has a falling out, the administrator can change the company p/w for all remaining users and reissue it immediately. This puts the control back with the owner of the system, not with the observant ex-employee, who simply copied the password post-its stuck to other people's screens!

Hope this helps

Richard
Liquid Accounts

Online Accounting Software Since 2001

Related links
The accounts production landscape: A new alternative?
Rebecca Benneyworth & Intuit deliver RTI Implementation Gripes: free whitepaper
Drive growth and boost profitability with these 10 steps: Free whitepaper