With 80 percent of breaches involving privileged passwords, keeping them secure must be a top priority. However, in a recent survey, 88 percent of IT security professionals said they "have trouble managing privileged passwords."
The survey of 900 IT security professionals also found that 57 percent do not monitor all privileged accounts, and 21 percent are completely unable to monitor or record activity performed with administrative credentials. In addition, 18 percent use paper-based logbooks, and 36 percent use spreadsheets, to manage privileged accounts, neither of which are secure.
The survey also showed that 40 percent do not change default administrator passwords, and 86 percent "do not consistently change the password on their administrative accounts after each use." Alison DeNisco Rayome "Report: 40% of IT security leaders don't change default admin passwords," www.techrepublic.com (Nov. 7, 2017).