Password Awareness is a way to promote better password hygiene across your organization and educate your employees. Remember, all it takes is a single weak password to put your organization at risk. Make sure that all employees at all levels of your organization are not only familiar with the company’s password policy but also understand the risks and consequences of sharing their credentials, and are trained on how to create unique and strong passwords.
6 Password “Don’ts”
Protect the confidentiality of your passwords by following these six password “don’ts”:
- Don’t write passwords on sticky notes
Although you may feel that writing down passwords improves password protection and makes it more difficult for someone to steal your passwords online, it can make it easier for someone to steal your passwords locally.
- Don’t save passwords to your browser
This is because web browsers are terrible at protecting passwords and other sensitive information like your name and credit card number. Web browsers can easily be compromised and a wide range of malware, browser extensions and software can extract sensitive data from them.
- Don’t iterate your password (for example, PowerWalker1 to PowerWalker2)
Although this is a common practice among digital users, it is unlikely to protect against sophisticated cyberthreats. Hackers have become far too intelligent and can crack iterated passwords in the blink of an eye.
- Don’t use the same password across multiple accounts
If you do so, you are handing cybercriminals a golden opportunity to exploit all your accounts.
- Don’t capitalize the first letter of your password to meet the “one capitalized letter” requirement
Out of habit, most of us tend to capitalize the first letter of our passwords to conform with the “one capitalized letter” requirement. However, hackers are aware of this, making it easy for them to guess the capitalized letter’s position.
- Don’t use “!” to conform with the symbol requirement
However, if you must use it, don’t place it at the end of your password. Placing it anywhere else in the sequence makes your password more secure.
6 Passwords “Do’s”
Protect the confidentiality of your passwords by following these six password “do’s”:
- Create long, phrase-based passwords that exchange letters for numbers and symbols
For instance, if you choose “Honey, I shrunk the kids,” write it as “h0ney1$hrunkth3k!d$.” This makes your password harder for hackers to crack.
- Change critical passwords periodically
Passwords protecting sensitive data must be handled with caution because there is a lot at stake if they are compromised. If you use a password for a long time, hackers may have enough time to crack it. Therefore, make sure you change your critical passwords at least once every six months.
- Change passwords that are used on more than one site.
If you have a password you have repeated on more than once site, update them to be different.
- Use multifactor authentication
It’s your responsibility to do everything in your power to keep nefarious cybercriminals at bay. One of the best approaches is to barricade them with multiple layers of authentication.
- Always use passwords that are longer than eight characters and include numbers, letters and symbols
The more complicated things are for hackers, the better.
- Use a password manager
A password manager can relieve the burden of remembering a long list of passwords, freeing up time for more productive tasks.
Need a password manager? We can help.
Adhering to password best practices requires constant vigilance and effort on your part. As a result, it is best to work with an expert managed service provider (MSP) like us who can help you boost your security and put your mind at ease. Contact us for a no-obligation consultation.