Does Your Company Have a Password Policy?
I recently discovered an employee of one of my clients was using the user id "admin" for access to their company's website administration panel. The password? "admin123"
Not exactly secure. Unfortunately not all that uncommon. Business owners and office managers often overlook the need to periodically discuss - and enforce - password policy with their employees. Many organizations don't even have password policies. (Does yours?)
In this particular case, if this employee's password had been cracked, the site could have been brought down and a considerable amount of customer information stolen. Potentially irreparable damage.
Here's a handy workplace poster about passwords from ZoneAlarm. Print it out and hang it right next to the other poster about what to do when someone's choking.
(Click to see full size image)