Tips to consider when using passwords.
Your devices contain a lot of your organisations critical data, customer information, and details of your online accounts, it is important to protect this data from unauthorised access.
Passwords are a free and easy way to prevent unauthorised access to your devices and data. The following 5 tips will help you protect your devices and data.
Tip 1: Turn on password protection for your devices
Set up a screen lock password, PIN, or another form of authentication (like fingerprint or face unlock).
Remember, protecting your devices with passwords is important and is not just for mobile devices. Make sure that your organisations devices (laptops and PCs) are secured with encryption tools (like BitLocker for Windows) with a Trusted Platform Module (TPM) and a PIN, or FileVault (for macOS) during startup. Although most modern devices come with built-in encryption, you might still need to activate and set it up, so double-check your settings.
Tip 2: Use two 2 factor authentication on your accounts
If you have the choice to enable 2 factor authentication (also called 2FA) on any of your accounts, it's highly recommended; it significantly enhances security with minimal additional effort. 2FA requires two different methods to verify your identity before accessing a service, typically involving a password and another form of verification. This could involve a code sent to your smartphone or generated from a bank's card reader, which you must enter along with your password.
Tip 3: Use strong passwords
You should ensure that your staff use strong non predictable passwords for their accounts and devices. Staff should avoid using common and simple passwords such as ‘P@ssw0rd!’ or other easily guessable passwords.
Tip 4: Help staff manage their passwords
Consider using password managers, which are tools that generate and secure your passwords, that you can access with a 'master' password. As this master password protects all your other passwords, ensure its strength, such as by incorporating three random words.
Tip 5: Change all default password
One common error is not changing the default passwords provided by manufacturers on smartphones, laptops, and other equipment. Make sure all default passwords are changed before giving devices to employees. Additionally, routinely inspect devices (and software) to identify any unchanged default passwords.