How long would it take a hacker to guess your email password? I think most of us will be shocked at the way in which a computer can crack our passwords instantly. This is a scary thought, especially when you are running a business with confidential information to protect.
Once a hacker gains access there are endless ways in which they can use this information to their advantage including by accessing all other accounts linked to this email address, often allowing them access to financial information. Your reputation as a business is also at risk if customer information gets out.
So, what can be done to strengthen your internal procedures to ensure that your systems are as secure as they can be?
First of all, the longer the password the better – we can see that passwords of less than 6 characters can be cracked instantly, even where they include uppercase, numbers and symbols.
Another method used by hackers is to use readily available information found about you online. This means passwords with personal information such as your name, date of birth, hometown, school or even your pets name are all commonly breached and should be avoided. Common passwords such as variations of “password” or “qwerty” are also vulnerable.
Hackers may also search the web for accounts involved in data breaches – if you have the same password for multiple accounts this could grant access not only to the account that was originally breached but all accounts using that password (or similar!).
Two-factor authentication requires users to enter another form of identification before gaining access to an account, this may be a code sent to a phone number or through use of apps such as Microsoft Authenticator. Enabling two-factor authentication provides another hurdle for hackers to get over before gaining access to your accounts and can be a crucial step in preventing cyber attacks.
Many businesses have moved online since the pandemic without a real understanding of the risks and prevention methods, leaving them vulnerable to be targeted. We have put a password policy together to encompass these issues and reduce the risk to your business.
Get in touch at [email protected] to discuss the implementation of a tailored password policy to safeguard your systems.