We are living in an era of large-scale data breaches. More and more high-profile companies are hacked; as a result, the personal data of millions of customers is leaked online. Cybercriminals with different motivations and interests take advantage of this data in order to mount attacks at both individuals and other organizations. As passwords are still the main method to authenticate users to platforms and systems, this article aims to provide tailored recommendations for improved cyber hygiene. Source
Recommendations to improve password security
- Activate multifactor authentication functionality whenever possible for all of your accounts.
- Do not re-use your passwords. Cybercriminals work under the assumption that many users re-use passwords, hence their high success rates for compromising accounts.
- Use single sign-on functionality combined with multifactor authentication in order to reduce the risk of account compromise.
- Use a password manager.
- Generate strong and unique passwords or passphrases according to the latest guidelines available, for each individual website and service. This is where password managers come in handy.
- Check if any your accounts appear in existing data breaches and act immediately by changing your passwords for the services identified.
- Many websites offer password reminder functionalities. Make sure you do not rely on easily retrievable personal information to reset your password, e.g. name of your pet, your date of birth, your high school, etc.
- Make use of VPNs or at least mobile access points when accessing e-Banking or other private services from public WiFi.
- Be aware of your surroundings in lounges, airports, trains and cafés, and make sure there is nobody behind you trying to snoop your password. This is where screen privacy filters come in handy.
- Do not leave your devices unattended/unlocked in public spaces such as hotels, public transport, lounges, etc.
iTM covers all aspects of cybersecurity from Home cyber security managed solutions to automated, manage threat intelligence, forensic investigations and cyber security training. Our objective is to support organisations and consumers at every step of their cyber maturity journey. Contact Us for more information.