Info Advantage Blog

Info Advantage was formed in 1992 for the purpose of specializing in Information Technology consulting, which encompasses business solution development, software development, and platform support from IBM’s midrange to a growing number of Intel based solutions.

Think Frequently Changing Your Password is Secure? Think Again.

You’ve heard it said that it’s a best security practice to routinely change your passwords. The idea here is that, if a password were stolen, then it would lose its value when the user goes to change it. While this sounds like solid logic, new research shows that it may actually be better NOT to change your passwords.

This may be a hard pill to swallow for IT administrators who have always required users to change their passwords every few months or so. However, seeing as this practice could make accounts less secure, it’s worth considering.

The idea behind this theory is that, whenever a user goes to change their password, they’re often rushed or annoyed and end up creating a new password that’s less secure. The Washington Post puts it like this: “Forcing people to keep changing their passwords can result in workers coming up with, well, bad passwords.”

Think about it, how often have you changed your password, only to change it from a complex password to one that’s easier to remember? Or, have you ever kept the same password and just added a number at the end of your new password? This covert move will do little to deter a hacker. Carnegie Mellon University researched this topic and found that users who felt annoyed by having to change their password created new passwords that were 46 percent less secure.

Plus, let’s consider the hypothetical situation of a hacker actually stealing your password. Truth be told, once they’ve gotten a hold of your login credentials, they’ll try to exploit the password as soon as they can. If they’re successful, they’ll pose as you and change the account’s password, thus locking you out of it. In an all-too-common situation like this, the fact that you’re scheduled to change your password at the end of the month won’t change anything.

Additionally, ZDNet points out yet another way that regularly changing passwords can make matters worse: “Regularly changed passwords are more likely to be written down or forgotten.” Basically, having a password written down on a scrap piece of paper is a bad security move because it adds another way for the credentials to be lost or stolen.

Whether you do or don’t ask employees to change their passwords is your prerogative. However, moving forward it would be in everybody’s best interest to focus on additional ways to secure your network, instead of relying solely on passwords. This can be done by implementing multi-factor authentication, which can include SMS messaging, phone calls, emails, and even biometrics with passwords. With additional security measures like these in place, it won’t matter much if a hacker stole your password because they would need additional forms of identification to make it work.

To maximize your company’s network security efforts, contact Info Advantage at (585) 254-8710.

Browsers Will Soon Support Fingerprint Sign-Ins
Exploring the Newest Gmail Security and Productivi...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 23 May 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Support Options

  • Phone Support +

    Speak to a support team member on the phone!

    Phone: (585) 254-8710
    Fax: (585) 254-8766

  • Ticket By Email +

    Send an email to the Help Desk to create a ticket automatically and communicate with your team or any member.

    Submit A Ticket

  • Ticket By Portal +

    Create and manage tickets via our secure online Help Desk Portal. (Members Only Requires login)

    Enter Support Portal

  • 1

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security technology Tip of the Week Best Practices Current Events Privacy technology solutions Hackers malware Software Business Management Ransomware backup cyber attacks Business practice Productivity Microsoft Innovation Hardware cloud Network Security Business Continuity Mobility Internet business Efficiency Quick Tips Mobile Devices hardware solutions Office tips Business Computing Windows 10 Computer Disaster Recovery Avoiding Downtime Law Enforcement Passwords Education cyber criminals Wi-Fi email Social Operating System Flexibility Laptop data breach Health Communication Antivirus Miscellaneous Humor Personal Information Risk Management Mobile Computing servers Money IT Support Information Technology Saving Money Office 365 Application data Automation internet user voip IT Services Smartphone Facebook History Small Business Upgrade cloud capabilities IT spam Update Google Net worth HaaS emails Reputation hardware refreshes How To ecommerce Microsoft Office intel time Marketing Managing Stress Search threats Windows Alert Cybercrime Apps Wireless virtualized servers Video Games Text Messaging Recovery Battery holiday Employer-Employee Relationship business continuity plan Remote Computing Point of Sale downtime Password Artificial Intelligence Managed IT Services content Virtualization Automobile Server Software-based phone systems Gadgets Legal byod phone systems Router iPhone cars Virtual Reality Identity Theft Government Internet Protocol Scalability Workplace Tips Encryption Data recovery VoIP right Touchpad Instant Messaging Work/Life Balance PDF Google Drive VPN Hosted Solutions computer network End of Support Telephone Systems ATMs Black Market Internet Exlporer User Tips Robot Telephony Advertising Entertainment Hosted Solution Relocation USB BDR Smartphones Private Cloud Users Social Media Worker Commute

Sign up for our Newsletter!

  • Company Name *
  • First Name *
  • Last Name