User and privileged authentication continues to present as risks to most organisations.
With most security audits that we have done at Seccom Global, this area remains one of the top concerns that we continue to identify. The fact is even with authentication having come such a long way in the past years, credential theft through weak passwords still remains a major issue.
The issue with passwords is they are generally easily guessed or hacked. When we make passwords complex, users simply write them down to remember them. When passwords are required to access multiple sites such as ecommerce sites, we tend to use autofill technologies, so we do not have to remember them
Even with everything we know, users still tend to use the same password or combination of passwords that have some relative meaning to them, and they use these in multiple locations.