Opening external access for IT service providers can cause potential security risks. Vendors with authorized access rights to corporate networks or various applications may not meet an organization's strict security requirements. They might use weak passwords or default passwords, possibly sharing credentials with multiple people.
BeyondTrust's Privileged Access Threat Report documents that an average of 182 third-party vendors access IT systems from outside each week. One in four companies with more than 5,000 employees say that they have an average of 500 external service providers logging into their IT environment. This development has negative effects on their trust in suppliers: 62 percent of the IT experts surveyed suspect security breaches through compromised access by third-party providers.
Read the full story here: https://www.sysbus.eu/?p=22333