Home / IT / Telecom / Tech/ Fortinet: 6 best practices for password security

Fortinet: 6 best practices for password security


Comments / {{hitsCtrl.values.hits}} Views / Tuesday, 2 July 2019 00:00


Fortinet, a global leader in broad, integrated and automated cybersecurity solutions, today reminded IT teams and stakeholders to maintain strong passwords and have a password strategy as an essential cybersecurity effort so that every employee and individual plays a crucial part in protecting corporate data. 

According to the Verizon Data Breach Investigations Report, 81% of breaches leveraged either stolen and/or weak passwords. That problem is compounded because one of the biggest risks to data security is the reuse of passwords across accounts. 

If one of the accounts is compromised and your username and password are posted on the dark web, cybercriminals who know how often passwords are reused will simply begin to plug that information into other possible accounts until they unlock one that uses the exact same credentials.

This is a common risk, as 83% of people have admitted to reusing passwords across multiple sites. Even if it is safe to reuse passwords on accounts that don’t house sensitive data – a breach there can be used as an entryway to move laterally across networks in search of critical business data or personally identifiable information (PII).

“Cyber adversaries are constantly tweaking their tradecraft to ensure successful intrusions in order to generate consistent revenue and profit. If your password is guessed or stolen, you may never know it happened until anomalous purchases appear in your bank account. And even more challenging data accessed by leveraging your compromised account may simply be used to move up the chain,” said Fortinet India and SAARC Regional Vice President Rajesh Maurya. 

“Implementing a strong passphrase is one of the easiest ways to protect yourself, your devices, personal and corporate data from cyber threats. The basic rule of thumb is, the longer and more complex the password, the more difficult it is to crack.”  

Short, simple passwords take fewer resources for hackers to compromise. In fact, hackers maintain databases of the most common words, phrases, and number combinations that they can run your password through to find a quick match. Some of the most common passwords are baseball and football team names, any variant of 123456789, and QWERTY. Avoid using common password themes when creating a passphrase, such as the following:

 

  • Birthdays
  • Phone numbers
  • Names including movies and sports teams
  • Simple obfuscation of a common word (“P@$$w0rd”)

     

The best password is a strong passphrase, impossible to forget and difficult to guess, even for someone who knows personal details of your life like the name of the street you live. When creating new accounts or updating well-used passwords Fortinet security experts recommend to keep these six best practices in mind to minimise password-based cyber risk:

  1. Add an extra layer of security, use multifactor authentication wherever possible. This confirms your identity by utilising a combination of multiple different factors, such as something you know or something they have, such as a token generator on your smartphone

     
  2. Never repeat the same password for different accounts

     
  3. Change your passphrase at least every three months. This will lock out cybercriminals who may be using your account, protect you from brute force attacks, and remedy the issue caused by cybercriminals who purchase lists of usernames and passwords obtained through data breaches

     
  4. Ensure no one is watching as you enter passwords

     
  5. Be cautious when downloading files from the internet as they may contain key loggers as well as password grabber malware variants that will compromise your password. A good practice is to regularly scan for the presence of such malware

     
  6. Use a cloud-based password manager to enable you to create and store strong passphrases. This is especially important if you require strong passwords for dozens of accounts. Password management tools allow you to securely store an encrypted list of passwords in the cloud that can be accessed from any device. Not only will you only need to remember one password to access your password locker, the passwords you store there for your various accounts can be even stronger because you don’t have to remember them

 


Share This Article

Facebook Twitter


DISCLAIMER:

1. All comments will be moderated by the Daily FT Web Editor.

2. Comments that are abusive, obscene, incendiary, defamatory or irrelevant will not be published.

3. We may remove hyperlinks within comments.

4. Kindly use a genuine email ID and provide your name.

5. Spamming the comments section under different user names may result in being blacklisted.

COMMENTS

Today's Columnists

Writing on the wall

Thursday, 27 February 2020

Quick! Pick between reading this and opting to do something that really makes you happy. I suspect 99% of you would be more fulfilled getting to work half-an-hour earlier, going to market or school sooner than later, or simply goofing off at home or


Geneva: Right cause, wrong tactics

Thursday, 27 February 2020

The Geneva 2015 resolution is a hidden tripwire linked to a maze of claymore mines, some buried, some planted in ditches, others nested in trees. When this article appears, Sri Lanka may have nudged that tripwire. There was another, smarter, safer wa


Let my country awake

Thursday, 27 February 2020

‘Let My Country Awake’ is a poem Rabindranath Tagore wrote in 1910. The original Bengali poem was under the title ‘Chitto Jetha Bhayashunyo’. I do not know Bengali. But I suspect Tagore refers to the mind – Chitto and conquering fear – bh


Economy vs. environment – What you see in the mirror

Wednesday, 26 February 2020

Do we buy organic vegetables? Or are we cost conscious and buy the regular vegetables? Would we rather live in United States or United Kingdom which have higher air pollution levels, or would we live in Myanmar or....


Columnists More