Thousands of employees in the US Department of the Interior are using accounts that are easily hacked::The Interior Department is tasked with protecting the country’s natural resources, like gas pipelines. Hundreds of its senior officers even used “password-1234” on their accounts.

  • body_by_make
    link
    fedilink
    English
    91 year ago

    My wife works for the govt and says the password rules also require being changed every 90 days for her, which has been proven to cause weak passwords and/or people writing them down because they can’t remember their current one.

    The govt uses pretty antiquated password security guidelines, this article is no surprise.

    • @Ilikepornaddict
      link
      English
      51 year ago

      This is the most likely cause. My work has this too, but it’s every 30 days, and you can’t use the same password as any of your last 21 passwords. Which means I need 21 unique passwords. So it’s Password1, Pasword2, etc until Password 21, when I then loop back around. Great job security team!

      • TornadoRex
        link
        fedilink
        English
        11 year ago

        Which also means your company is storing your old passwords which is a big security issue

        • @Ilikepornaddict
          link
          English
          21 year ago

          My company’s IT department is terrible. Nothing is done right. And they’re a multi-billion dollar company.

        • @[email protected]
          link
          fedilink
          English
          1
          edit-2
          1 year ago

          Not necessarily, it could mean they’re storing the old salted hashes.

          I’m pretty sure this is a setting in Windows group policy, I assume Microsoft does it correctly.