Did you know. . . 81% of data breaches are caused by compromised, weak, and reused passwords?
Among the varied means and techniques used by the attackers to access passwords, there are:
- The guessing method
- Capture while browsing the network
- Direct access to folders where credentials are stored
- Social engineering techniques
- Observation via keyboard movements or mouse clicks on virtual keyboards
Here’s what you must do to prevent this:
1. Avoid generic errors and create strong passwords
- Avoid using information that is connected to yourself (first name, commemorative dates, and personal tastes) and words or expressions that can be found in dictionaries
- Do not share passwords with third parties nor send e-mails that include this type of information
- Avoid entering a password when someone is watching, even if they are not near your devices
- Create robust passwords, according to the security policy, use a high number of characters where you can mix uppercase, lowercase, numbers, and special characters
| 2. Minimize the likelihood of credential theft |
- Use multi-factor authentication via SMS or authentication app, whenever possible
- Avoid reusing or using variations of the same password
- Do not save passwords in authentication forms that belong to Internet browsers
- Create passwords and security questions that are different for every website, service, or account
- Use fictional information for questions concerning password reset
- Keep your passwords and devices up to date and have your antivirus enabled
3. Solve password saving and management problems
- Use password managers to generate random, extensive, and complex passwords, and then save them in a secure way
