Digital Security Best Practice (Passwords and Logins)
When was the last time you changed your business email password? Chances are it was either a long time ago or worse, never.
Modern businesses rely on digital systems to operate and these systems should be as secure as possible. In this article we are going to cover security vulnerabilities, security best practice and share some useful tools.
What is a security vulnerability?
Quite simply it’s a possible hole or risk in your security. Imagine writing your pin number on the back of your credit card. Clearly not a wise thing to do.
Passwords used on the internet – on average a business professional will have at least 8 different online accounts. It’s common practice to pick one password and use this for all the different accounts. This is extremely dangerous. If someone discovers your password then they have access to all your accounts. There are lots of terrifying stories on the net about people losing control of one account and then they realise their entire digital life has been taken over. Don’t let this happen to you.
Passwords you share with others – Sometimes you need multiple people to be able to login to your various online accounts. Such as a shared Twitter or Pinterest account. Obviously the more people you share your login details with the less control you have over your accounts. Try to avoid this if you can. If you can’t then review often!
Not using passwords or using default settings – If you have anything that doesn’t have a password but could have one, you should set this up immediately. Likewise, many hardware systems come with default passwords, these are usually easy to guess or require a quick Google search and that person is then into your business phone account or wifi network administration panel.
Digital Security Best Practice
When it comes to passwords there are a set of best practice rules to remember:
Make passwords strong – a strong password is something that looks like: “161-sgsJKJ235!#36” a weak password would be: “password1” or “companyname1”. Clearly the later ones are pretty easy to guess.
Don’t use one password for multiple accounts – I know what you are going to say! “I can’t remember one strong password, let alone 10+”. Well the good news is you don’t have to…
Use a Password Manager – This isn’t an actual person you employ to manage all your login details. It’s a simple but secure application that you can safely store hundreds or thousands of login details. There are even some password managers aimed at businesses where you need multiple people to access various accounts. A short list is at the end of this article.
Change your passwords at least once per year – If you have never changed them it is a good idea to do this now.
Regularly review who has your passwords or access to them – Has anyone left the company that had a copy of any? Did they have access to your password manager?
List of Password Managers
Usually you set one master password that will allow you access to your password manager. These apps vary in their security access. For example the one I use personally has an encrypted key file, without it, even if you had my password you could never access the database.
- http://keepass.info/ (Windows)
- http://www.keepassx.org/ (Mac)
- https://lastpass.com/ (online)
- https://www.dashlane.com/ (online)
- https://agilebits.com/onepassword (online)
There are plenty more out there. We’ll put together a more detailed look at password managers and how to choose the best one for your needs later.
In summary, it’s always a good idea to review your digital security. Make time to do it as you will lose a lot more time if you get hacked or someone gets into your accounts and starts deleting stuff.
If you would like help with digital security strategies please get in touch. We would be happy to review your current setup and advise you on improving your security.