Skip to the main content.

blog-img-4

Managed IT Services

Responsive and innovative managed IT services to support your business and drive growth.

Learn More

 

IT Services

Responsive technical services to support your business and drive growth.

Professional Services

Leverage our team's deep experience to drive key business outcomes and transform your business.

Productivity

Supercharge your productivity and drive collaboration for employees, clients, and vendors.

Infrastructure

High performance cloud and network solutions to accelerate your business.

nav-img-0002

Events

Join our team for our insightful
online and in-person events.

Resource Library

Dive into our growing content library and learn how we partner with clients to achieve success.

Industries

Learn how we partner with clients in key verticals to solve challenges and drive growth.

Quest logo

Request support, track orders, and access self-help on our advanced online platform.

Client Portal

cus-img

Chat with a Solutions Specialist to learn about our IT services and solutions.

Get Started

‘Tis the season to… review your passwords?

 
‘Tis the season to… review your passwords?

The start of the new year is a good time to take inventory of your cybersecurity readiness, and one of the best places to start is with your password management strategy.  Given that the average user often maintains well over 100 passwords, the best course of action continues to be the use of a password manager configured with Multi-Factor Authentication (MFA).  However, research has shown that users should still examine their passwords periodically to make sure they are as secure as they can be. 

First, users must be diligent about using complex, randomly generated passwords.  Most password management platforms have a “generate password” feature that will recommend a randomly created string of characters, often leveraging all four character types – number, upper case letter, lower case letter, and special character. Freed from the need to memorize, there is no reason to avoid the use of complex passwords.  

Second, be sure to review the saved passwords in your vault for any legacy weak or reused passwords. Some users may have adopted a password management system and simply imported insecure legacy password into the database. Most password management systems now feature the ability to spot commonly repeated, passwords used across different accounts, or weak passwords in their vaults – it’s best to follow their advice when offered and change accordingly.  

Third, your password vault must be protected by a complex, randomly generated password. In a work environment, it’s common to tie a user’s network login credentials to their password management vault, allowing for the enforcement of complex password requirements. However, if setting the password on your vault is controllable by the end-user, this must be the most complex and lengthy password as can be remembered.  

Fourth and possibly the most important and simplest of all.  Do not ever share your passwords with anyone.  This is especially true of the password to your vault. 

Thomas Flores is the Sourcepass Director of Cyber Security Incident Response