Keep your passwords strong and secure with these four best-practice tips
Passwords, when used correctly, are an extremely effective way to protect data and IT systems from unauthorised access. We’ve compiled 4 best practices to help you protect your passwords, information and identity online.
#1: Choose non-predictable passwords
Hackers have access to programs that guess trillions of different password combinations, so the more complex your password, the better. Strong passwords:
- Are long (at least 12 characters)
- Contain a mix of uppercase and lowercase letters, numbers and symbols
- Are not based on easy-to-guess information such as the names of children or pets that can be easily guessed by someone looking at your social media profiles
- Stay clear of dictionary words; even random words such as “superman” or “sunshine” are easily cracked
Make sure your staff are following best practices when setting screen lock and access passwords.
You might be surprised to learn that many devices come with pre-set, default passwords. These are usually easy to guess (like “admin” or “password”), which makes them a security risk. If you’re using any devices with default passwords, you should change them to something more secure as soon as possible.
You should also regularly check devices to detect unchanged default passwords.
81% of data breaches are due to weak passwords – Verizon’s 2021 Data Breach Investigations Report
#2: Use password alternatives
PINs and other authentication methods such as fingerprint or face unlock are tied to a device and are thus considered safer than passwords. PIN protection, for example, typically allows a maximum number of login attempts before shutting down. And it’s impossible to brute-force a fingerprint.
Password alternatives can facilitate a quicker, more usable experience. However, they’re only as good as the people using them. Don’t use National Insurance numbers, phone numbers, addresses, or other personally identifiable information as PIN codes. If someone gains access to this information, it will be among the first things they use to try to get into your account.
#3: Use two-step verification for sensitive accounts
Having one strong password is great; having two is better. Two-Factor Authentication (2FA), also known as two-step verification (2SV) requires you to prove your identity in two ways before you access a service, generally with a password plus a code that is sent to your phone. This makes it much harder for hackers to gain access to your account, as they would need both your password and your phone.
Many online services, including Microsoft Office, offer 2FA as an option. You should enable it for all accounts that support it.
#4: Use password managers to reduce password fatigue
A password manager or password ‘vault’ is a software program that helps you store passwords securely for all your online accounts. It can also auto-generate highly secure passwords. Password managers work by encrypting your passwords and locking them behind a master password. This means you only have to remember one master password to unlock the entire password vault.
Many password managers offer additional features, like two-factor authentication, time-saving password autofill and the secure synchronisation of passwords across multiple operating systems. So if your employees are using Windows at work and Mac at home, they will be able to quickly access their passwords regardless of which platform they’re on.
There are many free options available. Opt for a cloud-based system and you can access your password manager anywhere, from any device.
Summary
Passwords and PINS are an effective way to control access to your data, the devices you store
it on, and the online services you use. Create strong passwords in line with best practices, reset them regularly, and use 2FA on your important accounts. You can also use a standalone password manager to help you create and store strong passwords in a secure vault.
CNS IT provide managed IT solutions and support to small and medium sized organisations across North Wales, Cheshire and Wirral.
www.cns-it.co.uk