Padlock
IT staff are taking advantage of poor security

A third of IT staff look at private data

Administrative passwords can give workers unfettered access, says study

Written by Neon Kelly

Computing, 20 Jun 2008

One in three IT staff admit to using their position to access confidential or sensitive materials in their business, through improper use of administrative passwords.

A third of the 300 senior IT professionals questioned by security vendor Cyber Ark said that they had secretly looked at private data. A further 47 per cent admitted to accessing information that was not directly related to their role.

These examples of unauthorised access are being facilitated by poor security structures. In 30 per cent of the companies approached, administrative passwords were only changed every three months.

And in nine per cent of cases, these passwords were never changed at all. This situation can leave systems open to anyone who has ever had knowledge of the access codes, including employees who have left the company.

"In some organisations there is little understanding or lack of controls in place to manage workers' access to systems," said Mark Fullbrook, UK director of Cyber-Ark.

"For most people, administrative passwords are a seemingly innocuous tool used by the IT department to update or amend systems. To those 'in the know' they are the keys to the kingdom, which can wield a great deal of power if left unprotected."

  • Have your say
  • Send to a friend
  • Print this
  • Share

reader comments

related articles

Computing comment logoGovernment

IT must lead the privacy debate

We are moving out of the era of techno-fear into one of IT literacy 19 Jun 2008

 
Security

Cabinet minister's PC stolen

Desktop contained sensitive details of Hazel Blears' government work 17 Jun 2008

Communications

BT "must face" legal action over Phorm

Expert from Cambridge University calls for repercussions over covert data-gathering trial 06 Jun 2008

Retail

William Hill improves data security

No more gambling with data as betting firm deploys encryption tools to protect staff laptops 04 Jun 2008

Security

Insider snooping on the rise

More than a third of IT staff admit to breaching corporate security and accessing critical data, says research 10 Jun 2009

Equality and Human Rights Commission

Profession under fire over gender pay gap

The financial sector is a breeding ground for gender discrimination 11 Mar 2010

Management

Survey reveals culture of IT admin snooping

IT staff admit to regularly accessing privileged information for personal gain 11 Jun 2009

related whitepapers

today's top stories

Internet

Face facts: social media is the future

No organisation can afford to ignore the way business communications are changing 18 Mar 2010

Security

Is the data watchdog about to pounce?

Experts believe the Information Commissioner’s Office is itching to use its new power to impose hefty fines for data breaches. Martin Courtney reports 18 Mar 2010

Management

Lloyd’s of London gears up for regulation

CIO Peter Hambling tells Angelica Mari about how the insurance market has updated its IT infrastructure to comply with new regulations 18 Mar 2010

Communications

Protests greet new Digital Economy Bill amendment

ISPs, digital rights groups and Liberal Democrat supporters cry foul 05 Mar 2010

Management

IT Leaders' Forum in association with IBM

A unique opportunity to hear from expert speakers and engage in a debate about the future of the CIO job function 29 Jan 2010

> More news

Advertisement

Subscribe

Keys to successful Serviceā€Oriented Architecture implementation

This white paper explores best practices and general design patterns for service oriented architecture (SOA).

The Roadmap to IT Maturity — Matching Strategy to Infrastructure for Business Success

This paper defines a roadmap for matching infrastructure strategy to business success.

Advertisement

Keep up to date with the latest products, services and technologies from the world's leading IT companies; ITHound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

More available - click 'submit' to view

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

IT Salary Checker

  • Are you being paid what you are worth?
Check salary here

Advertisement

Latest poll

NHS centralised data

NHS centralised data

Do you think the NHS can be trusted to safely look after personal data electronically?

View poll results

> More polls

Latest audio and video articles

Video

HP unveils S Series notebooks

'Prosumer' line overhauled 01 Mar 2010

Web Seminar Listings

Preparing for enterprise-scale Windows 7 migration

The web seminar on 18 Feb will discuss how Windows 7 migration can increase IT efficiency in large enterprises, freeing up budgetary and personnel resources to focus on business innovation. Our panel of experts will examine the strategies, tools and services IT leaders can use to migrate successfully and reap the rewards of increased efficiency. 19 Feb 2010

> More audio and video

Latest in-depth articles

Smiths Group CIO Brian JonesAnalysis

Q&A: Brian Jones, CIO, Smiths Group

How should conglomerates be looking at the new IT technologies coming through? Brian Jones explains. 19 Mar 2010

Analysis

What security strategy should enterprises adopt after the recession?

Act now to put your your firm on higher growth path advise CISOs 19 Mar 2010

> More in depth articles

Primary Navigation