{"id":170222,"date":"2022-11-03T14:25:31","date_gmt":"2022-11-03T14:25:31","guid":{"rendered":"https:\/\/ccbtechnology.com\/?p=170222"},"modified":"2025-09-05T10:30:59","modified_gmt":"2025-09-05T16:30:59","slug":"guidelines-for-creating-strong-passwords","status":"publish","type":"post","link":"https:\/\/ccbtechnology.com\/guidelines-for-creating-strong-passwords\/","title":{"rendered":"Guidelines for Creating Strong Passwords"},"content":{"rendered":"

Strict <\/span>password hygiene is a major tool in your organization<\/span>‘<\/span>s defense against cybercriminals. <\/span>While most<\/span> users <\/span>have moved beyond<\/span> “<\/span>12345<\/span>“<\/span> and <\/span>“<\/span>password<\/span>,”<\/span> 41% of users admit to using<\/span> a pet\u2019s name<\/span> –<\/span> information likely found through social media. <\/span>Additionally<\/span>, 64% of passwords are reused to keep up with the growing volume of accounts we as users <\/span>have to<\/span> manage – another critical problem for your business!<\/span><\/span>\u00a0<\/span><\/p>\n

Weak<\/span> passwords <\/span>exist<\/span> because <\/span>of<\/span> the <\/span>simple <\/span>convenience of being easier to remember<\/span>. <\/span>Strong passwords should be complex, random, and unique for <\/span><\/span>each <\/span>account<\/span><\/span> and at least 1<\/span>2<\/span> varied characters long<\/span>.<\/span> Obviously, not something easy to commit to memory<\/span>! <\/span>So how do you train users<\/a> and ensure they\u2019re creating strong <\/span>passwords?<\/span><\/span>\u00a0<\/span><\/p>\n

What End<\/span> U<\/span>sers<\/span> Can Do<\/span><\/span><\/strong><\/h4>\n

Let<\/span>‘<\/span>s start with the basics. <\/span>Here are <\/span>important<\/span> password practi<\/span>ces<\/span> to share with employees to teach and inspire better password habits.<\/span><\/span>\u00a0<\/span><\/p>\n

1. Don<\/span>‘<\/span>t reuse passwords.<\/span><\/span><\/h5>\n

If <\/span>hackers<\/span> access one account, they could gain access to other accounts that reuse that password.<\/span><\/span>\u00a0<\/span><\/p>\n

2. Don<\/span>‘<\/span>t leave passwords unsecured.<\/span><\/span><\/h5>\n

No post-it notes, notebooks, or unencrypted text files.\u00a0<\/span><\/span><\/p>\n

3. Don<\/span>‘<\/span>t share.<\/span><\/span><\/h5>\n

Keep your accounts and your passwords safe by keeping them to yourself. <\/span>Never<\/span> give coworkers access. Every employee should have unique login credentials.<\/span><\/span><\/p>\n

4. Make long, complex passwords.<\/span><\/span><\/h5>\n

A 7-character complex password can be hacked in roughly 31 seconds. Compare that to a <\/span>12-character <\/span>version that uses <\/span>upper and lower case<\/span> letters, numbers, and symbols – it would take 3000 years!\u00a0<\/span><\/span>\u00a0<\/span><\/p>\n

5. Change breached passwords.<\/span><\/span><\/h5>\n

The only thing worse than using a weak password is continuing to use one that has been breached! In 2021, 70% of users still reused compromised passwords found in breaches from the previous year.<\/span><\/span>\u00a0<\/span><\/p>\n

6. Use <\/span>a password manager.<\/span><\/span><\/h5>\n

If<\/span> your company offers one, <\/span><\/span>learn<\/span><\/span> how to use it. You only need to remember one password since the password manager will create and store them for all your accounts.<\/span><\/span><\/p>\n

7. Change passwords at least annually.<\/span><\/span><\/h5>\n

The more vulnerable an account or site is, the more frequently your password should be changed, but at a minimum, change all your passwords <\/span>annually<\/span>.<\/span><\/span><\/p>\n

What Your Organization Can Do<\/span><\/span>\u00a0<\/span><\/strong><\/h3>\n

When you consider that more than 40% of all breaches involve stolen credentials, managing passwords for your organization should be a vital part of your security strategy.<\/span><\/span><\/p>\n

1. Use an<\/span> Identity Access Management (IAM) solution.<\/span><\/span><\/h5>\n

An IAM authorizes the right users the <\/span>proper<\/span> access to your organization<\/span>‘s<\/span> applications, systems<\/span>,<\/span> and data. Once you have policies and procedures, adding and deleting access based on roles and responsibilities<\/span> becomes efficient and quick.<\/span><\/span><\/p>\n

2. Implement <\/span>Multi<\/span>f<\/span>actor Authentication (MFA).<\/span><\/span><\/h5>\n

Multifactor authentication (MFA) is one of the best security measures to protect against attacks. It<\/span> forces potential hackers to bypass multiple authentication measures before gaining access to an account<\/span>. Get it done if you’re still among the 50% of companies that still haven’t implemented it.\u00a0<\/span>\u00a0<\/span><\/p>\n

By adding a second verification step,\u00a0you can stop attackers before they access credentials, increasing the chances of stopping an attack before it starts. But because passwords are the main factor in MFA, authentication will be strongest when you also protect your passwords with a credential management solution.<\/span><\/p>\n

3. Offer and require a password manager.<\/span><\/span><\/h5>\n

Passwords <\/span><\/span>generat<\/span><\/span>ed with a password manager<\/a> are <\/span><\/span>fundamentally<\/span><\/span> impossible to crack<\/span><\/span> and take things like <\/span>a pet<\/span>‘<\/span>s name out of the equation!<\/span><\/span> A password<\/span><\/span> m<\/span><\/span>anager gives <\/span><\/span>you<\/span><\/span> more control over password quality, reduces the need for password resets, and <\/span><\/span>alleviates the<\/span><\/span> issue <\/span><\/span>of<\/span><\/span> reused, shared<\/span><\/span>,<\/span><\/span> or stolen passwords. <\/span><\/span>Use a password manager wherever you can. <\/span>It\u2019ll allow users to create completely random passwords without having to create or re-type them.<\/span><\/span><\/p>\n

An Offer Worth Considering<\/span><\/span>\u00a0<\/span><\/strong><\/h3>\n

With WatchGuard’s Corporate Password Manager, users can retrieve their corporate, personal, and shared vault passwords using the AuthPoint app and\/or browser extension when they need to access their apps or systems. This allows organizations to add non-SAML Cloud applications to the Web SSO Portal for more robust authentication and a smooth SSO experience.<\/span><\/p>\n

Want to learn more about your MFA and IT Security options?<\/b><\/span><\/h3>\n

Talk to your CCB Account Manager<\/span><\/a>. CCB offers security choices that allow you to choose the right solutions for your needs. We<\/span>‘<\/span>ll help you get secure and stay secure.<\/span><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

Strict password hygiene is a major tool in your organization‘s defense against cybercriminals. While most users have moved beyond “12345“ and “password,” 41% of users […]<\/p>\n","protected":false},"author":5,"featured_media":170227,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[7],"tags":[],"class_list":["post-170222","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security"],"acf":[],"_links":{"self":[{"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/posts\/170222","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/comments?post=170222"}],"version-history":[{"count":0,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/posts\/170222\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/media\/170227"}],"wp:attachment":[{"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/media?parent=170222"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/categories?post=170222"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ccbtechnology.com\/wp-json\/wp\/v2\/tags?post=170222"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

WatchGuard recently introduced AuthPoint Total Identity Security. It contains everything you need for a complete MFA solution available as one package. Total Identity Security includes the AuthPoint MFA solution<\/a>, Corporate Manager, and Dark Web Monitoring services so that you can enforce a strong password policy with the best user experience.\u00a0<\/span>\u00a0<\/span><\/p>\n