Weak password hygiene and password reuse across FTSE 100 firms
Target Trend
Summary
Hide ▲
Show ▼
A FTSE 100 credential-hygiene snapshot shows 59% of companies still have at least one employee using “password” as a password, raising account-takeover risk across major UK enterprises. The same exposure set includes 460,000 compromised credentials, and password reuse was common across known leaks. Financial services was especially affected with 70,000+ credentials. The trend matters because trivial and reused passwords make stolen credentials easier to replay in later intrusions.
Related Happenings
UK employees at large firms selling corporate credentials over the past year
Target Trend
First: 06.05.2026 11:40
Last: 06.05.2026 11:40
Sources 1
About this happening:
**UK employees** at **large firms** are continuing to sell corporate credentials, with a survey finding **13%** admitted doing so or knew someone who had over the **past 12 months...
UK employees at large firms selling corporate credentials over the past year
Target TrendAbout this happening: **UK employees** at **large firms** are continuing to sell corporate credentials, with a survey finding **13%** admitted doing so or knew someone who had over the **past 12 months...
Sharp rise in brute-force attempts against SonicWall and Fortinet edge devices
Target Trend
First: 15.04.2026 12:30
Last: 15.04.2026 12:30
Sources 1
About this happening:
A **sharp rise** in brute-force attempts against **SonicWall** and **Fortinet** edge devices is increasing risk of perimeter-device compromise across organizations that rely on VP...
Sharp rise in brute-force attempts against SonicWall and Fortinet edge devices
Target TrendAbout this happening: A **sharp rise** in brute-force attempts against **SonicWall** and **Fortinet** edge devices is increasing risk of perimeter-device compromise across organizations that rely on VP...
W3LL Microsoft 365 adversary-in-the-middle phishing campaign
Campaign
First: 13.04.2026 21:55
Last: 13.04.2026 21:55
Sources 1
About this happening:
The **W3LL** phishing operation turned into a high-volume **Microsoft 365** credential-theft campaign, exposing **more than 17,000 victims worldwide** to **BEC** risk. The kit use...
W3LL Microsoft 365 adversary-in-the-middle phishing campaign
CampaignAbout this happening: The **W3LL** phishing operation turned into a high-volume **Microsoft 365** credential-theft campaign, exposing **more than 17,000 victims worldwide** to **BEC** risk. The kit use...
2025 Rise in legitimate-access intrusions across enterprise sectors
Target Trend
First: 01.04.2026 17:05
Last: 01.04.2026 17:05
Sources 1
About this happening:
**Legitimate access abuse** is now a leading intrusion pattern across **2025** investigations, increasing the risk of stealthy compromise across **manufacturing, healthcare, MSPs,...
2025 Rise in legitimate-access intrusions across enterprise sectors
Target TrendAbout this happening: **Legitimate access abuse** is now a leading intrusion pattern across **2025** investigations, increasing the risk of stealthy compromise across **manufacturing, healthcare, MSPs,...
LastPass customer password vault backups exposed
Data Leak
First: 05.01.2026 11:30
Last: 05.01.2026 11:30
Sources 1
About this happening:
The **2022 LastPass data leak** exposed backups of about **30 million customer password vaults**, leaving more than **25 million users** with a **long-tail risk** of offline crack...
LastPass customer password vault backups exposed
Data LeakAbout this happening: The **2022 LastPass data leak** exposed backups of about **30 million customer password vaults**, leaving more than **25 million users** with a **long-tail risk** of offline crack...
Timeline
-
18.11.2025 11:45 2 articles · 6mo ago
FTSE 100 credential exposure and weak password hygiene
Initial DisclosureSocura and Flare monitored clear and dark web cybercrime communities for FTSE 100 company domains and identified 460,000 compromised credentials tied to employees at UK’s largest firms. Some companies had as many as 45,000 leaked credentials, 15 companies had more than 10,000 each, and financial services accounted for 70,000+ credentials; the same exposure set also included 28,000 corporate credentials in stealer logs, CXO email addresses and passwords on sites like Doxbin, and widespread weak password hygiene with 59% of FTSE 100 companies having at least one employee using “password” as a password. The findings pointed to infostealer malware and password reuse as major drivers and recommended MFA using passkeys, exposure monitoring, and rapid detection of suspicious logins.
Show sources
- Half a Million Stolen FTSE 100 Credentials Found on Criminal Sites — www.infosecurity-magazine.com — 18.11.2025 11:45
- Half a Million Stolen FTSE 100 Credentials Found on Criminal Sites — www.infosecurity-magazine.com — 18.11.2025 11:45