Would you sell your boss's password?

Would you sell your password for money? At first glance, it seems like you would answer no without even thinking about it. But it doesn't seem to be so absolute.

If it is the password to a private cloud drive full of selfies, you probably won't sell it no matter how much money you are offered. Because you know that no matter how ugly or embarrassing the selfies are, once they are spread, the psychological shadow area caused to yourself cannot be measured by money. However, if a hacker is willing to pay for your work account and password, would you choose to talk to him?

Security company SailPoint conducted a small survey, and about 20% of people readily said that as long as the price is right, it is actually okay to sell their work accounts and passwords. However, in last year's survey, only 14% of people agreed to sell their passwords. It can be seen that a year has passed, and many more people hate their bosses.

As the saying goes: As long as you use the hoe well, there is no corner that cannot be dug down.

Among the foreign friends who agreed to sell their work passwords, 44% of them basically did not bargain. It only cost less than 1,000 US dollars (6,500 RMB) and the account password was handed over with both hands. Of course, the salary in the United States is relatively high. Considering the salary level of the vast majority of Chinese people who eat dirt, this price will be much lower.

Of course, you may say righteously, "I can lose my head and bleed, but I cannot lose company secrets!" Don't worry, the survey shows that some people say this out of a balance of pros and cons. Because the company may be able to find out the identity of the leaker from the characteristics of the leaked data.

Obviously, in many cases, the profit from selling account passwords is not enough to offset the loss of "losing your job". Many people do not sell out company privacy because they are worried about "exposing themselves" rather than caring about the safety of the organization and swearing to live and die with the company.

According to the survey, 65% of employees in enterprises share certain accounts. In this case, people will feel less pressure when selling their passwords. Because even if the company finds that the passwords have been leaked or even found that the passwords have been sold by employees, it is impossible to determine who did it.

As you might expect, if the company’s account involves personal data and information, 85% of people will immediately change their tune and say they will not disclose such information.

In fact, employee password management has always been the biggest hidden danger to corporate security.

Think about the intranet password you use at work. If your company does not force you to do so, would you set your password to a mixture of uppercase and lowercase letters and numbers? Would you rather use a password like "111111" or "123456"? This is the risk of weak passwords in many companies.

Wu Di, partner of Tangchao Cloud Security Platform, said: "Hackers can easily crack weak passwords using social engineering or brute force methods. The weak password problem that exists in many companies has become a major threat to corporate security. This is not just a technical risk, but more of a problem of concept."

In addition, there are many employees' irregular operations:

• 42% of former employees will log into their former company’s intranet.

• 33% of employees use unauthorized third-party work software to work;

• 70% of employees will upload work documents to cloud storage for easy editing at home.

All these may lead to the leakage of company secrets. It seems that there is still a long way to go to protect corporate information security.

So, how much would you sell your work passwords for? Speak your mind and make your boss cry in the toilet.