Even employees at the world’s largest and most successful organisations use weak passwords, and frequently reuse corporate credentials as personal logins, regardless of security guidelines that prohibit such behavior. When those third-party sites are subject to data breaches, reused employee logins provide easy entry points to corporate systems and networks.
To provide a snapshot of the breach exposure affecting major enterprises, we examined SpyCloud’s entire database to see what exposed data we could tie to FTSE 100 companies and their subsidiaries. We found over 39 million breach assets, including 2.6 million plaintext credentials, tied to these employees. All of this data is available to cybercriminals and can be used for malicious purposes.
Download the report to see:
What kinds of stolen employee data criminals have on FTSE 100 employees, and the dangers it presents for these organisations
Which industries are plagued most by employee password reuse
The most popular passwords of FTSE 100 employees
How many employee and consumer credentials have been collected by keyloggers
Solution: Account Takeover Prevention
Reset stolen passwords before criminals can use them to defraud your users or access sensitive corporate data.
SpyCloud provides the earliest detection of potentially compromised accounts – those using credentials that have appeared in a third-party breach and are therefore at risk of account takeover. And we automate the remediation of exposed passwords, enabling enterprises to lock down accounts quickly, before damage is done.
SpyCloud safeguards more than 2 billion employee and consumer accounts from account takeover and follow-on attacks.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.