6
That one week I ran a full network audit without a password manager was a nightmare
My last week at a client site in Phoenix turned into 12-hour days after I found 40% of their 200+ devices still using the same default admin passwords from 2018, and the IT manager just shrugged when I showed him, has anyone else run into a company that refuses to update their credentials even after you prove they're vulnerable?
2 comments
Log in to join the discussion
Log In2 Comments
the_sandra12d ago
Honestly, are we really acting like default admin passwords from 2018 are that big of a deal? Most of those older routers and switches can't even be exploited remotely without being on the same physical network already. I've seen way worse, like a medical office that still uses 'password123' on their patient portal because "it works fine." As long as nobody's actively trying to break in, it's usually just a lot of drama over nothing.
3