Contact Us

|

Careers

|

Change Locale
close

Securing Passwords in Business: What You Really Need To Know

From the experts | Posted on June 11, 2012 by Stephen Perciballi

Another week, another breach! It seems like every week we’re hearing about another major website’s secure passwords being compromised. Personal information is either being leaked for malicious purposes, or hackers are showing off their prowess for accessing “secure” information.

Last week 3 major websites reported their customer passwords were compromised:

If you have an account on any of these sites, it is highly recommended that you change your password immediately. Also no funny business: make sure that you use a different password on each of them.

Imagine someone contacting your business relationships. Or using your identity to manipulate business relationships you have spent time building. Or just as bad, manipulating personal relationships you are developing. When you use the same password for most of your services (including work systems) you make it very easy for someone to get into many – or all – of them.

Here are my recommendations for password management best practices to reduce your risk of exposure.

Critical Best Practices for Passwords

  • Use different passwords for every website you have an account with. While this can be difficult to manage, it is the safest way to protect your other accounts.
  • Use a separate email address to create online accounts. This way you minimize the risk to your main email address, and also avoid unwanted spam.
  • Keep personal and work passwords separate.
  • Close old accounts you are no longer using. You would be surprised how many accounts you have out there!
  • Don’t use common words or anything too simple for your password  – here’s a list of the Web’s Worst Passwords.

Two Factor Authentications for Organizations

For organizations, protecting valuable corporate data assets is crucial to survival. When considering how to secure corporate passwords, we’ve found using a two-factor authentication system is the easiest and most effective solution. By using something you know (your username and a password you make up) along with something you have (a one-time password generator – a small token or an app on one of your devices) you mitigate a lot of the risk.

At Softchoice, we’ve worked with many customers helping them secure their data resources. There are several solutions in this space we have had success with. The best one for your organization depends on the other technology solutions you have in place. It also depends on whether you are looking for an on premise or SaaS solution.

Unfortunately, organizations wait until a critical event takes place prior to taking action on their underlying security issues.   We’ve determined that organizations that proactively act on assessing their security issues before a critical incident occurs generally have better outcomes, mitigating threats before they can become a problem.

Please feel free to contact me by leaving a comment below, or connect with your Softchoice Account Manager to discuss this or any other challenges in data protection.

Here’s the email that our own Information Security Officer Mark Sebastian sent to all our employees when it happened. Feel free to use it!

Good Morning, Last week 3 major websites reported their customer passwords were compromised: LinkedIn.com – 6.5 Million customers affected eHarmony.com – 1.5 Million customers affected Last.fm – numbers not yet known If you have account on any of these websites, it is highly recommended that you change your password immediately. As a reminder, if you follow these best practices, you can mitigate the risk of exposure when creating accounts on the Internet. Use different passwords for every website you have an account with. While this can be difficult to manage, it is the safest way to protect your other accounts. Use a separate email address to create online accounts. This way you minimize the risk to your main email address, and also avoid unwanted spam. Keep personal and work passwords separate. Close old accounts you are no longer using. You would be surprised how many accounts you have out there!

Related Posts

Times are a-changin’ in the network Networking is a word that for many causes trepidation and excitement at the same time, and I’m not necessarily talking only about networking equipment in IT, I’m also talking ...
A Softchoice IT forecast: Hot technologies to watch in 2012 As 2011 comes to a close, Softchoice customers are evaluating the success and challenges from the present year, and planning for the year to come. The Softchoice Advisor sat d...
Hooked On Storage Part 2: In-house solutions, heterogeneity and deep dives In Part 1, we took a look at some of the big picture challenges facing IT pros when it comes to the exponential growth in storage needs. But what about the solutions? What fac...

Related Articles

  An Interview with Softchoice’s SVP of IT, Jeff Reis When Canada’s most valuable public company Shopify announced it was going “digital by default,” it was a clear a sign that the brick-and-mortar office era was forever changed. “We cannot go back to the way things were. This isn’t a choice. This is the future,” […]

Each year, Softchoice hosts the Innovation Executive Forum, meeting with hundreds of CIOs and senior IT leaders at exclusive events across North America. We capture the best insights in an annual report to share what our IEF members have on their minds and what they’ve learned. Before we get into this year’s report, we wanted […]

The unanticipated changes forced by the global health crisis haven’t been easy for any organization. As an initial response to the situation, many IT leaders and executives had to shift their workforce to all-remote work, whether they were ready or not. Now, many are looking ahead to new challenges as their organizations work to stabilize […]