• Products and Solutions
    • I.T. Support
    Partek 360 Managed I.T. Services
    Help Desk
    Projects and Consulting
    • Infrastructure
    Servers & Networking
    Business Continuity
    Business VOIP Solutions
    Wifi
    Managed Print Solutions
    • Cyber Security
    Ransomware Protection
    Managed Threat Response
    Email Security
    Endpoint Backup & Disaster Recovery
    • Cloud Solutions
    Microsoft 365
    SharePoint
    Private and Managed Cloud
    • Web
    Website Development
    Website Management
    Hosting and Security
    Email Marketing
  • Company
    We’re always up for a chat!
    Get in Touch
    • About us
    Meet the Team
    Careers
    Contact Us
    • Stories
    • Case Studies
    • Client Success Stories
    • Website Portfolio
    • Blog
    Latest Articles

    Topics

    • Cloud
    • Cyber Security
    • Email
    • Information Technology
    • Website Design
    • Wifi
    • Recent News
    Partek has achieved Sophos Gold Partner status! 🌟
    30Mar

    Partek has achieved Sophos Gold Partner status! 🌟

    What is Phishing?
    09Feb

    What is Phishing?

  • Contact
Support

How secure are your passwords?

  • Home
  • Archive
  • Cyber Security
  • How secure are your passwords?
Why every business should own a domain name
February 14, 2022
Why isn’t my website showing up on Google?!
March 9, 2022
March 4, 2022
Categories
  • Cyber Security
  • Information Technology
  • News
Tags

Partek manages over 4,000 passwords for over 500 organizations through our asset management tools. Keeping access to our client’s critical assets secure and maintained.

Every year, mainstream and tech media will report on the latest list of the “worst” passwords choices that everyday users make. And every year, I.T. Techs around the world cringe when they read them. As front-line technical support for many of our clients, an important part of our job consists of educating users about the importance of a strong and secure password. Business-critical data is just as important to the business you work for as your financial information is to you. What if anyone could access your bank account and make transactions? The same applies to business-critical data.

Check out NordPass’s list of the Top 200 Most Common Passwords for 2021 – Is your password on the list?

Why are bad passwords such bad news for I.T. techs and your business? Simple. As I.T. experts, it is our job to ensure the security of any business-related data contained on networks. One of the most common ways that hackers break access data is by guessing passwords, so a strong password is critical in providing essential protection from fraud and identity theft. The more challenging the password is, the lower the likelihood that one’s computer will fall victim to an unwanted intrusion. That’s why we’re always harping on about using password best practices!

These “worst password” lists are often based on how often a password appears in leaked or stolen databases of account passwords. It’s not the fact a password appears in such a list that makes it “worst”, it’s that passwords being used most often makes them an obvious and predictable guess for hackers, and thus a terrible choice.

What factors determine how secure… or terrible.. a password is?

Typo’s are welcome

A password consisting of a single word is about as bad as it gets. A hacker’s first attempt to gain access will often involve trying a list of common words or pass phrases – this is called a “Dictionary Attack”. A Dictionary Attack often involves a bot spamming login pages with millions of attempts using known common passwords or the most common words in a particular language. Though most current sites will lock after a set number of failed login attempts, hacks of this scale often involve bypassing the attempt limit or trying to decrypt a stolen database of encrypted passwords.

This won’t usually be the only tactic an attacker employs, but using a “real” word as your password puts you at much greater risk.

Size Matters

A brute force attack involves trying every possible combination of letters. Which, in this scenario makes longer passwords exponentially more secure. There are only 26 letters in the English alphabet, so it is guaranteed that you’ll guess a single letter correctly within 26 attempts. To guess two letters correctly you’d need to try 26 x 26 attempts or 676 total attempts. Including eight characters in your password makes for five trillion possibilities. Hence, the more letters involved in a password the more combinations are possible – better yet, throw some numbers and punctuation marks!

It only takes a few extra characters to increase the average time to crack a password from a few hours to thousands of years.

How fast would your password be cracked? Try out Security.org’s password security tester.
Special Characters

Using only letters in your password greatly decreases its security, similar to the same reason that the length of your password matters. For any single character in your password, including numbers takes the number of possibilities from 26 to 36. Adding punctuation marks increases that number by another 26 options. Including capital letters in addition to just lower case letters doubles the alphabet! Even with a (very much not recommended) four-character password, you’re talking about the difference between 11 million possibilities and nearly 6 billion.

No Repeats

While length and characters are important, the worst possible password is one you across multiple websites. If an unencrypted database of usernames and passwords gets leaked, the hackers almost always attempt to use those same login credentials across other websites, particularly websites that may grant access to sensitive personal data. So if you are reusing the same password across multiple platforms and accounts, you are effectively placing all of those accounts at the same level of risk.

When you know better, do better.

The most secure password is one that is:

  • unique to an account.
  • is a good length, minimum 12 characters.
  • uses a combination of upper and lower case letters, numbers, and symbols.

Sounds impossible to remember, right? Don’t let your memory be a limit to your security. The best way to generate and employ secure passwords is by using a password manager. DO NOT store your list of passwords in a plain text file on your computer or a Post-It note on your monitor.

Partek offers Password & Vendor Management as part of our Partek 360 Managed I.T. services.  Our secure, encrypted password management system allows us to manage every aspect of your I.T., including dealing with third-party software vendors.

Contact us to learn more!

Share

Related posts

March 30, 2023

Partek has achieved Sophos Gold Partner status! 🌟


Read more
February 9, 2023

What is Phishing?


Read more
January 9, 2023

Social Engineered Cyber Attacks


Read more
December 5, 2022

Define your cybersecurity risk


Read more

[email protected]
[email protected]

Medicine Hat

202 – 132 4th Ave SE
Medicine Hat, Alberta
T1A 8B5
(403) 488-3333

Swift Current

101 – 140 2 Avenue NW
Swift Current, Saskatchewan
S9H 0P2
(306) 437-0803

Get the latest from Partek

Email updates on the latest tech, cyber-security advice, best business practices, and Partek news.

  • Open a Support Request
  • Remote Support Portal
  • Make a Payment
  • Partek Client Portal
  • Careers
© 2023 Partek I.T. Solutions | All Rights Reserved | Privacy Policy