They’re complex, they’re everywhere and we forget them far more than we would like.
Passwords! We use them to secure the most private parts of our lives.
World Password Day reminds us of the importance of protecting our personal information, identity thieves are everywhere, and this is the first digital line of defence. The strength of passwords as an authentication control is more important than ever before. Cyber-criminals are increasingly using automated password cracking tools to identify passwords in a matter of seconds.
Business Insider did research to determine just how vulnerable accounts were. They discovered that 10,000 of the most common passwords allow access to 98% of all accounts.
Only a day to crack a password
In 2015 a Trustwave Global Security Report reveals that it can take only one day to crack an eight-character password, whereas it takes an average of 591 days to crack a 10 character password. With this in mind, the recommendation is that organisations should have policies in place that requires employees to change their passwords on a regular basis, for example, every 60 days.
We are all inundated with passwords we must remember. Website logins, email accounts, social media accounts, bank accounts, smartphone passcodes, cash machine pin numbers. That is before you start to add in passwords for systems used for your job – all require some type of password.
Changing your password
73% of users have the same password for multiple sites, 33% use the same password every time.
We’ve seen an escalation of security breaches. Even major brands have had systems compromised exposing user passwords. While administrators quickly respond their efforts are limited to their own site.
Changing a password with one site is not always enough. Chances are that compromised passwords are being used elsewhere, leaving users vulnerable to hackers.
For extra security, it is advisable to add an extra step to your login process. This could be either scanning a fingerprint on your phone or typing a PIN that’s sent to your phone. A simple but effective way of giving you more protection against cyber crimes like identity theft and social media account hijacking.
These single-use codes are either sent to your phone or generated by an app on your phone which, generally, only you have access to.
With fingerprint scanning available on most smartphones and many laptops and tablets, adding a fingerprint ID to your logins is a powerfully convenient protection.
Company policies and procedures
As mentioned above, every business should have policies and procedures in place which covers company security. Passwords are an important aspect of computer security. A poorly chosen password may result in unauthorised access and/or exploitation of a company resources. All users, including contractors and vendors with access to systems, are responsible for taking the appropriate steps to select and secure their passwords.
At Kidwells we can provide training for your staff on internet security. With the onset of the new GDPR laws coming in at the end of May involving strict personal data security, training your staff to a high degree of understanding is paramount.
All our training sessions are interactive, engaging and offer practical tips that you can apply to your daily HR practice.
How to Celebrate World Password Day
The best possible way to celebrate the World Password Day is to make sure you have stronger password protection for your internet based accesses. Ensure you don’t use the names associated with you and your family. Anniversary dates, birthdays, birthplace, the word password as they were all found to be the most commonly used passwords which are considered to be insecure. Opt for the multi-factor authentication for all your important accounts to add extra security and encryption. Share your views and thoughts about the Password Day on the social media using the hashtag #PasswordDay.
Treat every day like Password Day and #LayerUp your login to make the internet a more secure place.