Passwords on the Wall

Despite the constant news of identity theft and account compromises, people are still not taking password security seriously. This week alone, two examples of this came up at Identropy.




The first is courtesy of my darling and ever-vigilant wife. She snapped this picture while out grabbing a sandwich for lunch. This establishment decided to post their DoorDash login for everyone to see. In the picture, you can even see how they rotate the password. Good info that I am sure no one will take advantage of.








Second is a rather famous professional sport franchise that rhymes with “ed ox”. A televised interview was conducted with the Yankees in front of a very nicely printed sign that included WiFi SSID and password for the clubhouse at Fenway. They don’t even use a very secure password…

Side note: One of my esteemed colleagues wanted me to let the world know that this picture was taken in the clubhouse at Fenway Park, home of the Boston Red Sox. This individual would like to make it known that the security lapse is on the Red Sox and NOT on the Yankees. It was very important that I make this clear who the fault lies with and I hope I have.

It’s clear that security awareness is still a problem for organizations large and small. Despite the efforts of talented security professionals, it can come undone by the lowest of tech and the lack of understanding, awareness, and engagement from users. You can throw as much technology as you want at a problem, but all of that time, money, blood, sweat, and tears it took to get in place goes out the window with just a sharpie and a piece of paper.

We are getting close to a password-less future, but we are not there yet, and I expect we are still many years away from the point where the password will die. Until that day, we have to take security awareness seriously and make sure we are teaching good security habits to our employees, contractors, staff, coaches, and sandwich artists. Often times, they are the first line of defense in the security of any size organization. Treat them like it.


Jeff Steadman

Jeff Steadman

As part of our advisory practice, I partner with our clients to help plan their IAM strategies. Prior to joining Identropy, I spent over a dozen years managing, building, and running Identity & Access Management programs, projects, and teams for SC Johnson and Walgreens.