ThreatList: Admin Rights for Third Parties is the Norm

The majority give outside partners, contractors and suppliers administrative access — without strong security policies in place.
Source: Threadpost