The Singaporean workforce generally adopts good password behaviour in the workplace, with two-third of them (76 percent) using variations or several different passwords, according to a recent LogRhythm study.
The online study which was conducted in Singapore, Australia and Hong Kong, also revealed that the same number of respondents use variations of the same password, and a different password for each service at 22 percent respectively. Singaporean workers were found to require an average of three passwords to access all their work services and documents.
Additionally, 73 percent of Singaporean workers also reported that they have made an effort to change their passwords within the last six months. This puts the nation ahead of Hong Kong (56 percent) and on par with Australia (73 percent).
Singaporean workers were also noted to change their passwords more frequently - with 69 percent changing their passwords at least once a year. This is more frequent than Hong Kong (56 percent) and Australia (59 percent) workers.
Another interesting finding of the study is that only a mere one percent of passwords are automatically changed and generated by companies in Singapore. With this in mind, Intel believes that it will be helpful if organisations have systems in place to 'force' password change.
"Passwords are the first line of protection against attacks and it is good to note that enterprises are getting that right. It is important to have good password policies because without that, you might as well leave the door open to anyone who wants to access your company's information," said Bill Taylor-Mountford, Vice-President Asia-Pacific and Japan for LogRhythm.
"With the threat of cyberattacks growing in numbers and sophistication, hackers typically look to target workers as the weak link in an organisation's cyber defense. Good password hygiene is simple but is also critical as compromised user credentials continue to be a popular vector through which hackers penetrate the networks of their targets," he added.
Along with the study, LogRhythm has also provided five recommendations for workers to better protect their own personal data as well as their organisation's network:
- The longer the password, the better. To improve the password strength, create one that is a combination of four or more different words.
- Don't use passwords that are simply keyboard patterns or easily guessable such as 'zxcvbn', 'qwerty' or 'company123!'. Such passwords are usually the first guesses made against an account.
- Make sure to reset temporary passwords on newly created accounts. All too often, attackers gain access by guessing temporary password such as 'Changeme!1'. When creating temporary passwords, make it a point to create complex ones.
- Use different passwords for every application.
- Use a password manager to help create and store complex and dynamic passwords for multiple services.
Sign up for Computerworld eNewsletters.