Weak passwords and phishing are two of the most popular attack vectors for cybercriminals looking to steal financial information – in the case of regular users – or sensitive data such as medical records – in situations where bad actors are seeking to profit from extortion or ransomware. OpenVPN, the group behind the popular virtual private network application of the same name, recently conducted a study to assess employee cyber-hygiene and how it impacts corporate security strategies. It found that 25 percent of employees use the same password for everything (i.e. both work and personal), and 23 percent very frequently click on links without verifying where they lead – one of the main reasons phishing is so successful.
ORIGINAL SOURCE: Security Boulevard