2022 Password Decisions Survey
IT decision makers shed light on enterprise password management
The 2022 Password Decisions Survey posed questions to IT decision makers about password sharing practices, technologies in use, security risks, and the Great Resignation. While there are bright spots, password and security practices remain a challenge many companies still need to address.
Download Full Survey
In November 2021, Bitwarden partnered with Propeller Insights to poll over 400 independent IT decision makers across a wide range of industries who play a key role in enterprise purchasing decisions. The findings show an uptick in password manager usage, indicating its increasingly mainstream appeal. Concurrently, IT decision makers continue to struggle with adhering to security best practices and express security-related unease about remote work.
While password best practices are improving among IT decision makers, there is still a long way to go:
2FA (two-factor authentication) is now mainstream, with 88% of respondents using it at work
Despite the increase in password manager use and 2FA, more than half (53%) of IT decision makers still share passwords with colleagues via email, a 14% jump from last year due in part to the sudden shift to remote work
Nearly half (41%) share passwords over chat and 31% share passwords in conversation
.avif?eu=d7db02e4e5cca88e5c68a18b6123686ab23c57a3aa0362d63530e2ac4aadcd8071f3185429c672b8786e5fd782b443bf669278601ebcd0dac9ea4df4ea35fe5c06d05dbf63e17253522fc3f6b1f155456cc7135ff283cf0fa33c2480b6b0e4751e034f22fe29bad3ebfd3f3cf4c76f71e0a9b9773893fc2da30c0d109d4932bf31ffd3c06d4baad1b75db1b5a8f3089b94ba6a005fdcb4545730486031ea4fc9c2e55e034e743b59729ccb47ce6090b5351562750c5f52f2353dd903f83e35cbb1adf45fdd7b7ce7fa9c672699c1ae82ef75cc7b35a48878ebd6540e5b5ef550f4e325b4bd07434cc77fb3fa51dd6360473cfb6fe64b21b6261fd250&a=w%3D850%26h%3D478%26fm%3Davif%26q%3D75&cd=2022-12-28T00%3A35%3A22.329Z)
Ransomware, phishing, and cyberattacks continue, yet many organizations still lack a mitigation strategy:
More than half (54%) of IT decision makers admit their organization has experienced a cyberattack
While two-thirds of organizations have a ransomware mitigation strategy in place, 25% do not have one or are not sure
Phishing attacks remain a scourge: emails purporting to be from financial institutions (35%) or a government entity (22%) are the most common
Remote work and the Great Resignation are impacting cybersecurity:
Almost two-thirds (61%) of respondents are “more concerned” about cybersecurity this year and attribute this to the fear that employees working remotely may be more lax about their overall security hygiene
Almost half (48%) are working more hours than last year, with 58% faulting turnover (29%) and difficulty hiring (29%) as the primary culprits
