We all have passwords. Secret, hidden things that only we and everyone we tell the password to are meant to know.
Sadly, it is often the case that gleaning a little knowledge of the life of a particular person allows us to guess passwords with a degree of ease (and software).
Passwords are muscle memory more than anything else: patterns arise and so even if your current password is secure, it is possible that it is not dissimilar to one of your previous passwords.
A solution: Passbolt is a Cloud-Ready, Open Source password manager. We highly recommend it, and use it ourselves. Password managers are important because there is the risk that 1. someone can see you typing your password and 2. there is something called a ‘Keylogger’ that records what your type, most anti-virus do not detect these and so typing a password repeatedly can become a big risk.
And to keep an eye on data breaches out in the wild, the famed Cyber Security expert Troy Hunt has a website especially for you. HaveIBeenPwned is an excellent tool to ensure that users of your domain are aware of other firms’ data-breaches which would necessarily also jeopardize your firms’ footing. You simply put in your domain or email address and this tool scours the usual suspects to see if your these details have been compromised at say, an online shop you buy chocolates from that suffered a databreach.
Alongside stronger alpha-numeric passwords (e.g. H@Yach!S3rvic3s) the NCSC recommend the use of two-factor authentication, which means even though your password is right there is a secret ‘handshake’ that only you and the system can recognise. It proves you are indeed physically, and digitally, you.
Want to go a step further? Drop us a note or a call us and we will be happy to talk tech and discuss making your firm more cyber-secure.