One of the best ways to prevent data breaches and keep businesses secure is through good use of password management. There are some myths about password management that we wanted to set the record straight on. 9 out of every 10 people in a business will unknowingly be leaving an opening for a cyber criminal to gain access to the business, it could be that they believe one of the below myths.
Myth One : There Should be a dedicated admin person to document and reset passwords.
The best practice is to set up an admin account for applications in the office. This account should have a log on created that is different than their user log in for email and have a different password and MFA. This should be used as back-up only. A file of user names and passwords and username information should not be kept in an easy to access location. There are applications that can assist admin users in re-setting passwords, An admin can log-in and send a password re-set link, without seeing any employees password information.
Myth Two: Using Long and complicated passwords will make them more secure.
Hackers now have sophisticated software to crack even the most complicated passwords, so the trick is to make sure you use different passwords for every log- in, never reuse the same password, and deploy MFA as an added security layer.
Myth Three: You can share passwords with people you trust
No one should have access to your password information but you, each employee should be responsible for their own password and MFA's should not be shared. Businesses can run reports on log-in activity and deleted or moved files. This is a great way to see if large amounts of data is being moved and can detect a breach early enough to prevent a large breach.
To protect the business all employees need to protect their identity and practice safe cyber hygiene, good password management can also help. A password management tool can store personal information with encryption. It can also identify week passwords and prompt you to change them, send a reset email. It is possible to use an autofill feature across several applications. We do recommend using a lock screen if you do use the autofill feature. Using Zero-trust applications can block unsafe downloading that can prevent malware being accidentally downloaded and shared among staff and email philters can prevent phishing emails using financial re-direction from even being seen by your team.
Book a meeting with our team today to see how else these best practices can help your business.
-1.svg "Attitude IT: Keeping Your Technology on Course")