Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Email Security

Study Reveals 75 Percent of Individuals Use Same Password for Social Networking and Email

According to a week-long study conducted by Internet security company BitDefender, over 250,000 user names, email addresses, and passwords used for social networking sites can easily be found online.

According to a week-long study conducted by Internet security company BitDefender, over 250,000 user names, email addresses, and passwords used for social networking sites can easily be found online.

The study also revealed that 75 percent of social networking username and password samples collected online were identical to those used for email accounts.Social Networking Password Trends

The sensitive user data was gathered from blogs, torrents, online collaboration services and other sources. It was found that 43 percent of the data was leaked from online collaboration tools while 21 percent of data was leaked from blog postings. Meanwhile, torrents and users of other social hubs were responsible for leaking 10 percent and 18 percent of user data respectively.

BitDefender warned social media users to be careful when setting up passwords for social networking platforms and email. The researchers managed to verify the leaked email accounts and found that 75 percent of users had one common password for social networking and accessing their email. Additionally, the study revealed that 87 percent of email IDs, user names, and passwords gathered from various sources were still active.

RelatedPassword Purgatory – Are we Ever Going to Get Passwords Right?

Cybercriminals could easily use this sensitive user data to hijack email accounts and social networking profiles and can further be used to spread spam and malware across those platforms.

BitDefender has advised users to be extra careful while creating passwords for social networking and email accounts and avoid using the same password just for the sake of convenience. Considering the fact that online collaboration tools are not that adept in protecting sensitive user information, users have been told to be more careful the next time they decided to share their emails, user names and passwords with a third party website.

The study conducted by BitDefender follows the release of a torrent containing a list of 171 million Facebook users, complete with their names and Facebook URLs. The security researcher who released the list for download explained that he was able to extract the names and URLs of Facebook users from a directory offered by the website itself. Facebook has maintained that the directory only contains the information users have themselves chosen to make public and can also be found via search engines.

Related Reading: Move Over ‘123456’: Passwords Go High-Tech Too

Advertisement. Scroll to continue reading.

Related Reading: Password Purgatory – Are we Ever Going to Get Passwords Right?

Subscribe To SecurityWeek RSS Feed

Follow SecurityWeek on Twitter

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

Compliance

Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Email Security

Many Fortune 500, FTSE 100 and ASX 100 companies have failed to properly implement the DMARC standard, exposing their customers and partners to phishing...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Phishing

The easiest way for a cyber-attacker to gain access to sensitive data is by compromising an end user’s identity and credentials. Things get even...

Fraud & Identity Theft

Famed hacker Kevin Mitnick has died after a battle with pancreatic cancer.  At the time of his death, he was Chief Hacking Officer at...

Cybercrime

Enterprise users have been warned that cybercriminals may be trying to phish their credentials by luring them with fake emails that appear to be...