Protect Your Business: Never Underestimate the Importance of Strong Passwords

May 4 is World Password Day, created by Intel several years ago to raise awareness about the importance of strong passwords and to promote better password habits. Passwords are critical gatekeepers to your (and your clients’) digital information, business records and identities.

Use today to review your password practices to ensure your first line of defense in your company’s cybersecurity plan is strong.

What are some good password practices? Here are several, courtesy of the Federal Trade Commission:

• Make your password long, strong and complex. That means at least twelve characters, mixed with uppercase and lowercase letters, numbers and symbols. Avoid common words, phrases or information in your passwords.
• Don’t reuse passwords used on other accounts. Use different passwords for different accounts so that if a hacker compromises one account, they can’t access other accounts.
• Use multi-factor authentication, when available. For accounts that support it, two-factor authentication requires both your password and an additional piece of information to log in. The second piece could be a code sent to your phone, or a random number generated by an app or token. This protects your account even if your password is compromised.
• Consider a password manager. Most people have trouble keeping track of all their passwords. Consider storing your passwords and security questions in a reputable password manager, an easy-to-access application that stores all your password information. Use a strong password to secure the information in your password manager.
• Select security questions only you know the answer to. Many security questions ask for answers to information available in public records or online, like your zip code, mother’s maiden name, and birth place. That is information a motivated attacker can obtain. Don’t use questions with a limited number of responses that attackers can easily guess – like the color of your first car.
• Change passwords quickly if there is a breach. If you receive a notification from a company about a possible breach, change that password and any account that uses a similar password immediately.

For more information on keeping your information secure visit NAHB’s data privacy and cybersecurity resources.