We all know the importance of strong password security. Still, easily cracked passwords remain the biggest reason that hackers gain access to computer networks to steal data and use it for criminality.
With the incoming GDPR legislation, data breaches like these leave your organisation liable to large fines, not to mention a significant loss in reputation. Fines for breaching the GDPR can reach up to €20 million, or 4% off global annual turnover, with some saying that fines could even reach up to €1 billion if larger organisations do not comply.
It has been reported that around 63% of data breaches were due to poor password security (Verizon 2016 data breach investigations report). Therefore, cyber and password security should be a priority for businesses in the lead up to the GDPR coming into force and beyond to avoid hefty fines that could be detrimental to business.
Blue Rock Managing Director Lorraine Mills, our expert on cyber defence strategy, is happy to share with us her top tips for implementing and maintaining a strong password security policy.
Tips for password security
- Minimum password length should now be at least 12 characters. It has been suggested that 8 characters is enough, however as cyber criminals become more advanced and technology evolves, 12 characters should be the minimum for optimum security.
- Criteria should involve both lowercase and uppercase letters, numbers and symbols.
- Aim to reset passwords every 60-90 days.
- Do not allow previous passwords to be re-used.
- Implement account lock-outs in the event of incorrect passwords.
The worst passwords
The below list includes some of the most easily cracked passwords that most hackers would be able to access in less time than it takes to type them! Avoid these passwords or similar to ensure you are not allowing hackers the opportunity to steal your data.
These may all seem like basic passwords that would be obvious not to use, however even passwords such as ‘P4ssw0rd!’ can take only 4 seconds to crack.
10.00am – 29 Club, Royal Exchange Square, Glasgow
Interested in finding out more about cyber security and how it relates to incoming GDPR legislation? Want to find out more about how we can help make life as difficult as possible for hackers, by improving your overall password security stance? Then why don’t you register for our free seminar which takes place on Thursday 26th April at the 29 Club in Glasgow’s City Centre?
During the session, Lorraine Mills will be on hand to dispense helpful tips and advice about data protection and cyber security in general. She will also be telling you more about Blue Rock’s bespoke password security service. This involves pinpointing password weaknesses, educating your people so that they become more diligent with password security and then undertaking regular auditing to make sure you stay one step ahead of hackers.
Registration is easy, simply contact us here and we will be delighted to add you to the guest list.