A new report from Beyond Identity focuses on old, but very important issues—ending  access rights to network systems by terminated employees and the rampant sharing of passwords.

According to the report, it is estimated that almost 25 percent of previous workers still have access to their former employers’ networks through work accounts. This is concerning on many levels, including the ability for former employees (especially disgruntled ones) to have access to current company data to be able to view it, disclose it, and use it against the company.

The report also highlights that many employees continue to share their passwords with their co-workers. A whopping 41.7 percent of the 1,000 companies surveyed stated that passwords are shared with colleagues, contractors, family, and friends. This statistic blew my mind.

Take away from this report: 1) don’t share your corporate password with anyone else, and educate your employees to keep their passwords secure; and 2) tune up your processes around access controls, including by terminated employees.

Photo of Kathryn Rattigan Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security…

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.