Password Best Practices
5 Significant Risks IoT Devices Pose for Data & Privacy
March 3, 2021
Implementing Ongoing Risk Management as a Standard Practice
June 6, 2022Password Best Practices
With the business world heavily reliant on digitalization in this day and age, the use of technology in your organization is unavoidable. Although technology can undeniably give your business an advantage in increasingly competitive markets, there are many troublesome areas to keep an eye on. This is why interest in cybersecurity has risen in recent years.
Password protection is the best place to start if you want to ramp up your cybersecurity. Setting a password to secure an entity’s data is called password protection. Only those with passwords can access information or accounts once data is password protected. However, because of the frequent use of passwords, people tend to overlook their significance and make careless mistakes, which could lead to breaches in security.
This makes it imperative for businesses to devise strategies to educate employees about best practices when using passwords.
Get in Touch
6 Password “Don'ts”
Protect the confidentiality of your passwords by following these six password “don’ts”:
- Don’t write passwords on sticky notes
Although you may feel that writing down passwords improves password protection and makes it more difficult for someone to steal your passwords online, it can make it easier for someone to steal your passwords locally. - Don’t save passwords to your browser
This is because web browsers are terrible at protecting passwords and other sensitive information like your name and credit card number. Web browsers can easily be compromised and a wide range of malware, browser extensions and software can extract sensitive data from them. - Don’t iterate your password (for example, PowerWalker1 to PowerWalker2)
Although this is a common practice among digital users, it is unlikely to protect against sophisticated cyberthreats. Hackers have become far too intelligent and can crack iterated passwords in the blink of an eye. - Don’t use the same password across multiple accounts
If you do so, you are handing cybercriminals an excellent opportunity to exploit all your accounts. - Don’t capitalize the first letter of your password to meet the “one capitalized letter” requirement
Out of habit, most people tend to capitalize the first letter of our passwords to conform with the "one capitalized letter" requirement. However, hackers are aware of this, making it easy for them to guess the capitalized letter's position. - Don’t use “!” at the end to conform with the symbol requirement
However, if you must use it, don’t place it at the end of your password. Placing it anywhere else in the sequence makes your password more secure.
6 Passwords “Do’s”
Protect the confidentiality of your passwords by following these six password “do’s”:
- Use two-factor / multi-factor authentication
One of the best approaches is to barricade nefarious cybercriminals is with multiple layers of authentication. For example, Two-factor authentication requires that you both know the password for an account as well as possess a device that is linked to that account in some manner. - Always use passwords that are longer than eight characters and include numbers, letters and symbols
The more complicated things are for hackers, the better. - Create long, phrase-based passwords that exchange letters for numbers and symbols
For instance, if you choose "Honey, I shrunk the kids," write it as "h0ney1$hrunkth3k!d$." This makes your password harder for hackers to crack. - Consider spelling words or phrases incorrectly
Intentional misspellings can make it more difficult to guess a password. For example, the word “Additives” might be guessable, however the word “Addotoves” would be harder to crack. - Change critical passwords at least every three months
Passwords protecting sensitive data must be managed with caution because there is a lot at stake if they are compromised. If you use a password for a long time, hackers may have enough time to crack it. Therefore, make sure you change your critical passwords every three months. - Change less critical passwords at least every six months
This necessitates determining which password is crucial and which is not. In any case, regardless of their criticality, changing your passwords every few months is a good practice.
Adhering to password best practices requires constant vigilance and effort on your part. As a result, it is best to work with an expert managed service provider (MSP) like Hixardt who can help you boost your security and put your mind at ease.
Need assistance managing your critical IT infrastructure? Contact Hixardt for a no-obligation consultation.
About Hixardt Technologies
Hixardt is an integrated network infrastructure, cloud services, and professional information technology (IT) solutions provider. These resources are meant as guidance and instruction and do not account for any laws, regulations, or restrictions. We suggest you seek professional counsel as applicable.
Curated content used with permission.
Password protection is the best place to start if you want to ramp up your cybersecurity. Protect the confidentiality of your passwords by following these password “do’s” and “don’ts”.
