One in eight workers admit to selling company logins

New findings from fraud prevention service, Cifas,  has revealed a shift in attitudes towards insider‑enabled fraud, with 13% of employees saying they have either sold their company login details to a former colleague, or know someone who has, in the past 12 months.

For organisations, the normalisation of credential sharing significantly increases exposure to insider threat, cyber, and financial crime, by providing criminals with a trusted route into internal systems.

Cifas’ Workplace Fraud Trends report shows that 13% of respondents also believed selling access to company systems was ‘justifiable’. While three quarters (75%) said the act was completely unjustified, the level of acceptance suggests a growing complacency around internal controls and staff responsibility.

The research further shows almost one third of senior managers (32%) and one in three directors surveyed (36%) said the behaviour was justifiable. Among C‑suite executives, this figure rose to nearly half (43%). Business owners were the outliers – with four‑fifths (81%) saying selling login details was justifiable.

The results serve as a timely reminder that effective fraud prevention relies not only on secure systems, but on strong access governance, regular staff training, and a clear organisational stance on misuse of credentials.

Rachael Tiffen, Director of Learning at Cifas, said “Selling login details might seem insignificant to those involved, but it can open the door to serious fraud and financial harm. These findings show how vital it is for organisations to build fraud‑aware cultures, where employees at all levels understand their responsibilities and the consequences of their actions.
“Counter‑fraud training plays a central role in helping staff recognise manipulation, appreciate the risks associated with insider activity, and act with integrity when handling access to systems and data.”

Joby Carpenter, Fraud and Emerging Threats Lead at ACAMS, the anti-financial crime certification and intelligence company, said  “These findings point to an unsettling reality: for a meaningful minority of staff, selling company logins is no longer beyond the line – and that should concern every employer.

“The sale of credentials gives bad actors a ready‑made route into trusted systems and can enable fraud, cyber intrusion and broader illicit activity. Cifas’ survey suggests insider risk is not only persistent, but in some settings it’s becoming normalised. For firms, this underlines the need to treat insider threat as a core fraud and financial crime issue, supported by strong culture, proportionate controls, targeted training, and effective access governance.”