One of the simplest steps you can take to strengthen the security of your IT infrastructure and to reduce the risk of attack is to ensure that you and all your colleagues are using strong passwords. If you don’t already have a password policy in place, perhaps now is the time to implement one? Failing to protect your electronic assets by using weak passwords is a basic error that’s easily avoided.

Consequences of weak passwords

As an individual, the consequences of sharing a password, or choosing a password that’s easy to guess, can be severe. Your personal information may be compromised, your email account hacked, or worse – you could end up being financially ruined. For a business, the consequences are potentially far more devastating. If financial data or sensitive company information is exposed, or if an unauthorised person gains access to customer information, the result could mean the failure of the business.

Education is essential

By educating your employees about the importance of good password security for their work accounts, they will be able to apply this knowledge when considering their personal online security, so everybody benefits. It may sound obvious, but not everybody will be aware of how to ensure their password is suitable, so circulate a list of ‘basics’ to follow:

  • Don’t choose something easy to guess (such as your pet’s name, favourite football team, your own name or date of birth)
  • Don’t write down your password or save it in an insecure location
  • Don’t tell anybody else your password
  • Don’t use the same password for multiple accounts

What makes a good password?

When creating an account with an online provider and choosing a password for the first time, many services impose particular requirements to ensure that your chosen combination is appropriate. These may include a minimum of 8 characters, a mix of uppercase and lowercase letters, at least one number.

  • For the most secure password, you should aim to follow all of these conditions if possible:
  • Make the password as long as possible – at least 8 characters, but ideally longer
  • Avoid dictionary words – even if you include numbers at the end, these are easy to crack!
  • Use special characters such as & £ * if the system allows you to do so

How can I remember multiple strong passwords?

The ideal password should be easy for you to remember, but difficult to guess. If you’re sticking to best-practice in terms of password composition, it’s going to be a hard task to commit multiple un-guessable passwords to memory. Many people choose to use a password manager service to deal with this problem. Random, highly secure passwords are generated on your behalf and stored in your password manager account, so you only need to remember one.

Should I change my password regularly?

It’s often advised that you should change your passwords frequently to avoid compromising your online security. Recent research has suggested that this may not necessarily be the case. Individuals who are required to change their password often can end up frustrated, and consequently, make poorer password choices than those who choose a secure option and stick with it.

Of course, you should always change your passwords as soon as you suspect any of your accounts may have been compromised.

Custard is excited to be working with Untethered Labs to provide GateKeeper, a revolutionary new security device which automatically locks and unlocks your computer for you. The security of your PC works in the form of a key fob which you keep on your person. When you’re close to your computer, it will unlock, and when you step away from it automatically secures your system for you. No more remembering and typing in a complicated password multiple times each day. Learn more about GateKeeper here.