password protection multifactor authentification

Password Protection Best Practices 

Studies show that 81% of hacking-related data breaches involve stolen or weak passwords. Here are some password protection best practices that will help any business or individual to strengthen their security.  

Password protection best practices: 

Adopt long passphrases.  

Most of us combine numbers and symbols to create stronger passwords, however, cybercriminals have caught onto the practice of substituting letters in a word with numbers or symbols, (ex: “Rocket$pac3”) like E with 3 and S with $. Consider creating long passphrases that are easy to remember but difficult to crack. Secure passphrases should be at least 19 characters long (ex: Space camp MashedPotatoes4!) and include punctuation and spaces between words or letters.  

Avoid periodic changes.  

A popular password security practice is to force users to change passwords periodically, every 90 days or 180 days, for example. Recent guidelines advise companies to instead ask employees for a password change only in a case of potential threat or compromise.  

Use multi-factor authentication.  

Multi-factor authentication requires users to confirm their identity with a one-time code sent to their phone, or by using a personalized USB token. With this layered approach, guessing or cracking the password alone is not enough for an attacker to gain access.  

Use a secure connection.  

Hackers can easily steal passwords if employees use unsecured Wi-Fi or devices that don’t belong to them. Don’t every access your corporate email from a free Wi-Fi hotspot or a shared computer and use a VPN when you can.  

Consider a password manager.  

A password manager assists in generating and retrieving complex passwords. The encrypted database is either stored on the user’s device or remotely through an online file-hosting service. Password managers typically require a user to remember a master password to unlock and access the information stored in their databases.  

Don’t write down passwords. 

Keep passwords and usernames off sticky notes or in plain view. Under your keyboard is not a safe place for a password. 

Don’t share passwords  

“Sharing is caring” is a common phrase we’ve all heard since childhood, but there are times when sharing can be more harmful than good. One of those situations is sharing your passwords. Your passwords hold the key to your personal information and sharing them can have serious consequences. To stay safe, always keep your passwords to yourself. 

Protect your password, protect your company 

Remember, stolen or weak passwords are still the most common reason for data breaches, so always pay close attention to password security policies and management.  

With these best practices you’ll provide stronger protection against hacking-related breaches that will protect you and your business. 

Let us help you implement these password best practices and help keep your passwords secure. Contact us today to schedule a free consultation.  

Leave a Comment