A Bad Password Can Lead to a Breach.
CyberNews found the most used passwords of 2021 are still “123456”, “password” and “qwerty”! Unfortunately, many still do not understand the importance of passwords, or even what a complicated password consists of. An easy, predictable password is easy to hack. Once a hacker has gained access to your credentials, they can move laterally through your network.
Do not panic!
There are ways to mitigate the risk of user credential compromise. By implementing strict password requirements and multi-factor authentication (MFA), your organization will create passwords and credentials that are harder for hacking.
> PASSWORD REQUIREMENTS:
What do strict password requirements include?
- A 16+ character password that includes letters, numbers, and symbols
- Changing your passwords every 90 days.Note: Your policies documents should outline your password guidelines and best practices. If you do not have one, it is best to consult with an outside firm, such as iSECURE to have those written and in place ASAP.
> MULTI-FACTOR AUTHENTICATION:
MFA is another layer of protection against week passwords. MFA requires a user to provide two or more forms of identity verification before access.
While a firewall and other security measures can mitigate risk of a breach, it becomes a moot point if a hacker is utilizing a stolen password…. And, let’s face it, attackers tend to go along the path of least resistance. MFA is the resistance hackers do not like.
At the end of the day, it is best to have a policy for your organization’s password requirements.
Don’t have an MFA Solution? Ask Us!