The misfortunate passwords of Fortune 500 companies

Researchers analyzed data from public third-party breaches that affected Fortune 500 companies. The analyzed data included 15,603,438 breaches and was categorized into 17 different industries.

Find out:

How many times passwords from Fortune 500 companies appeared in data breaches. What is the percentage of unique passwords in this industry. What are the top passwords in this industry

Methodology: The list of passwords was compiled in partnership with a third-party company specializing in data breach research. They analyzed data from public third-party breaches that affected Fortune 500 companies. The analyzed data included 15,603,438 breaches and was categorized into 17 different industries. The researchers looked into the top 10 passwords used in each industry, the percentile of unique passwords, and the number of data breaches affecting each industry.

Interesting facts

20% of passwords were the exact name of the company or its variation.

“Vacation” was one of the most popular passwords in the Health care industry.

The hospitality industry had the most passwords that were the company’s name or its variation.

“Password” is one of the most popular passwords across all industries.

The industry of human resources had the highest Unique Password Percentile, standing at 31%

Secure your business with NordPass - save the hefty costs of a security breach.

Keep your passwords safe

  • Passwords are your first line of defense. Weak, reused, or compromised passwords are frequently responsible for the majority of data breaches, yet many organizations still fail to apply proper security measures to protect their passwords. Generate strong and unique passwords with NordPass and defend your business against a data breach.

Even the biggest players struggle with password security

Tips to make your accounts more secure

Use complex passwords and update them regularly

Our research shows that employees use incredibly weak passwords, such as “password” or “123456”. Additionally, about 20% of the passwords are the exact name of the company the victim works at or a variation of it. This makes password brute-forcing attacks highly efficient. Security experts agree that a strong password contains at least 12 characters, uppercase and lowercase letters, numbers, and special symbols. To create a complex, strong password quickly and easily try out using our Password Generator. But keep in mind that due to frequent data breaches, which often expose passwords, it is critical not to reuse your passwords and schedule them for regular updates.

Use a password manager

Adopting a password manager for company-wide use is your best bet to ensure the security of your business accounts. A password management solution provides a secure way to store, share, and manage passwords in a single place. Additionally, password managers often provide a way to secure other sensitive information, such as credit cards, secure notes, and personal information. Most also offer additional security tools and features. For instance, a password generator, data breach scanner, and a password health tool are among the most common.

Use multi-factor authentication or a single sign-on

Multi-factor authentication (MFA) is an authentication method that requires the user to provide two or more verification factors to gain access to an online account or an application. MFA is a core component for ensuring strong online security. The main benefit of MFA is that it enhances your organization's security by requiring your users to identify themselves by more than a username and password. Using MFA verification allows businesses to feel more confident in their security against cybercriminal activity.

Another great idea is to leverage single sign-on and password synchronization. With a single sign-on, employees are less likely to revert to bad password practices, such as creating common passwords or writing them down.

Educate your employees

Education and knowledge of potential risks is vital. Help your employees be aware of the importance of password strength. Explain to them why mixing their work and personal accounts could be dangerous. This ensures that their personal identity is protected, and that all information related to the employer is protected in the event of a breach. Finally, consider setting company-wide password policies.

Get in touch

If you are interested in using our analysis for press purposes, drop us an email and we will get back to you with more information.[email protected]

This information will be used by NordPass to respond to your inquiry as provided in our Privacy Policy, Privacy Policy (Business).