12 Password Best Practices

With the business world heavily dependent on technology in this day and age, the use of computers in your organization is unavoidable. Although technology can undeniably give your business an advantage in increasingly competitive markets, there are many flawed areas to keep an eye on. This is why focus in cybersecurity has risen in recent years.

‍

Password protection is the best place to start if you want to ramp up your cybersecurity immediately. Setting a password to secure an entity’s data is called password protection. Only those with passwords can access information or accounts once data is password-protected. However, because of the frequent use of passwords, people tend to overlook their importance and make careless, stupid mistakes, which could lead to huge breaches in security.

‍

This makes it critical for businesses to create strategies to educate employees about best practices when using passwords.

6 Password “DON’Ts”

Protect the security and confidentiality of your passwords by following these six password “don’ts”:

1. Don’t write passwords on notebooks or sticky notes!

Although you may believe that writing down passwords can improve password protection and make it more difficult for someone to steal your passwords online, it can make it easier for someone to steal your passwords in person which can be just as bad!

2. Don’t save passwords in your browser

This is because web browsers are terrible at protecting passwords and other sensitive information like your name and credit card number. Web browsers can easily be compromised, and a wide range of malware, browser extensions and software can extract sensitive data from them in an instant.

3. Don’t iterate your password (for example, PowerWalker1 to PowerWalker2)

Although this is a common practice among digital users, as it makes remembering newer passwords easier because you’re basically keeping everything the same, it is unlikely to protect against sophisticated cyberthreats. Hackers have become far too intelligent and can crack iterated passwords in literal milliseconds.

4. Don’t use the same passwords throughout multiple accounts

If you do so, you are handing cybercriminals a golden ticket to exploit all your accounts at the same time!

5. Don’t capitalize the first letter of your password to meet the “one capitalized letter” requirement

Out of habit, most of us tend to capitalize the first letter of our passwords to adapt with the "one capitalized letter" requirement. However, hackers are aware of this, making it easy for them to guess the capitalized letter's position.

6. Don’t use “!” to conform with the symbol requirement

However, if you must use it, don’t place it at the end of your password! Placing it anywhere else in the sequence makes your password more secure. Breaking up actual words with punctuation can be much more secure.

6 Passwords “DO’s”

Protect the confidentiality of your passwords by following these six password “do’s”:

1. Create long, phrase-based passwords that exchange letters for numbers and symbols

For instance, if you choose "Honey, I shrunk the kids," write it as "h0ney1$hrunkth3k!d$." This makes your password harder for hackers and systems to figure out.

2. Change critical passwords every three months

Passwords protecting ultra-sensitive data must be handled with caution because there is a lot at stake if they are compromised. If you use a password for a long time, hackers may have finally had enough time to crack it. Therefore, make sure you change your critical passwords every three months. Keep difficulty just as challenging.

3. Change less critical passwords every six months

This necessitates determining which password is crucial and which is not. In any case, regardless of their criticality, changing your passwords every few months is a good idea.

4. Use multifactor authentication

It’s your responsibility to do everything in your power to keep evil cybercriminals at bay. One of the best approaches is to barricade them out with multiple layers of authentication and protection.

5. Always use passwords that are longer than eight characters and include numbers, letters and symbols

The more complicated things are for hackers, the better it is for you!

6. Use a password manager

A password manager can relieve the burden of remembering a long list of passwords, freeing up time for more productive tasks.

Need a password manager? We can help!

Adhering to password best practices requires constant vigilance and effort on your part. As a result, it is best to work with an expert managed service provider (MSP) like us who can help you boost your security and put your mind at ease. Contact us for a no risk consultation!

‍