I finally persuaded my team to ditch email for passwords, and what happened next was pure chaos.

After months of complaining, I got management to agree that sending passwords in emails was a bad idea. They decided we should all use a shared Google Doc instead, with the link sent via email. Last week, the intern accidentally made the doc public for an hour while trying to fix formatting. We had to change all passwords for our internal tools, which took all afternoon. The moral is to use a proper password manager instead of half baked solutions. Now I'm the office security buzzkill, but at least we're not broadcasting our logins.

3 comments

3 Comments

singh.olivia27d ago

Oh man, my friend's company did the exact same thing once.

ross.riley27d ago

Yikes, that's the real problem, the shared link itself. Even if the doc stays private, that email with the link is a huge target. If someone gets into just one person's email, they now have the master key to everything. It's like locking your valuables in a box but then taping the key to your front door. The email is the weak link they never fixed.

bensingh27d ago

Wait, they just moved the passwords into a Google Doc? That's somehow even worse than the emails.