Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Tip of the Week: Why You Should Rethink Routinely Changing Your Password

Tip of the Week: Why You Should Rethink Routinely Changing Your Password

One of the main ways to keep an account’s credentials secure is by changing them consistently. However, we ran across an article recently that plays “devil’s advocate” on the password security issue, and they made some fair points about how changing passwords too frequently can lead to decreased security as a whole.

At first, this idea may not make a lot of sense. The reason that we change passwords so often is to prevent them from being used in attacks on sensitive accounts. If hackers steal passwords that don’t work, they can’t access the accounts. IT administrators often require user passwords to be changed on a regular basis, which may prompt users to choose passwords that are easy to remember or less complex than they should be.

In reality, there are several news outlets and security websites that suggest changing passwords regularly will lead to less-secure passwords as a whole. ZDNet, The Washington Post, and WIRED magazine, all suggest that frequently changing passwords, despite its intended purpose, can lead to watered-down security. Consider this scenario: you’re using a password, but are suddenly forced to change it. Would you be more likely to create a whole new password, or use a slight variation of your current password?

The Washington Post writes, “forcing people to keep changing their passwords can result in workers coming up with, well, bad passwords.” This statement is backed by research from a study performed by Carnegie Mellon University, which found that those who feel that their organization’s password policy was annoying, created passwords that were 46 percent less secure. Additionally, users who need to update their passwords constantly often leave patterns that connect old passwords to new passwords, like replacing a letter with a number or special character.

ZDNet explains that changing passwords for the purpose of securing accounts in case of stolen credentials doesn’t make sense, simply because “stolen passwords are often exploited immediately.” The security website also cites that “regularly changed passwords are more likely to be written down (another vulnerability) or forgotten,” which only seems to add to the frustration of changing passwords on a regular basis.

The fact remains that passwords may not be the most reliable way of keeping accounts safe, but there are ways that you can make using passwords, and account security, easier to handle. One way is to use an enterprise-level password manager. You can store all of your organization’s credentials in one secure location, where they will be called from and propagate in the required fields when needed. This helps you utilize complex passwords without needing to remember all of them.

Another way that you can improve account security is through two-factor authentication. This adds a second layer of security to your accounts by requiring a secondary credential, which can be sent to a smartphone via SMS message, voicemail, an alternative email account, and more. There are also biometric or GPS-tracking two-factor authentication methods that are viable (and effective).

If you’re ready to improve your business’s security practices, reach out to Total Tech Care at 866-348-2602.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Software Efficiency Google Business Network Security Internet Microsoft Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices IT Services Hardware Android VoIP Disaster Recovery communications Smartphones Communication IT Support Business Continuity Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Phishing Managed IT Services Windows Upgrade Data Backup Outsourced IT Ransomware Windows 10 Cloud Computing Data Recovery Office Server Save Money Passwords Windows 10 Chrome Gadgets Virtualization Social Media Saving Money Holiday Tech Term Microsoft Office Automation Managed Service Managed IT Services Operating System Artificial Intelligence Facebook Computers Cybercrime Internet of Things Hacking Wi-Fi BYOD Mobile Device Management Health Networking IT Support Remote Office 365 Alert Telephone Systems Information Technology Covid-19 Information Managed Service Provider Spam Social Engineering Mobility Recovery Employer-Employee Relationship Bandwidth Router BDR Big Data App History Password Money Mobile Computing Data Breach Encryption Application Human Resources Applications Remote Monitoring Law Enforcement Private Cloud Managed IT Data Storage Patch Management Office Tips Training Blockchain Apps Paperless Office VPN Remote Computing Government How To Mobile Office Flexibility Vulnerability Bring Your Own Device Data Management Wireless Work/Life Balance Windows 7 Marketing Word WiFi Gmail IT solutions Entertainment Servers Website Settings Budget Google Drive Two-factor Authentication Infrastructure Data Security Voice over Internet Protocol Mouse Avoiding Downtime HaaS Meetings Data Protection Save Time Risk Management Hacker Conferencing Vendor Managed Services Cleaning Scam Display The Internet of Things Lithium-ion battery Telephone System Staff Software as a Service End of Support Vendor Management Employee/Employer Relationship Machine Learning USB Physical Security Education Connectivity RMM Firewall Remote Work Safety HIPAA Sports Redundancy Virtual Reality Apple Keyboard Social User Error Net Neutrality Workplace Strategy Cryptocurrency Document Management Wearable Technology Help Desk Retail Hard Drives Solid State Drive Wireless Technology Hiring/Firing Printing Downtime Instant Messaging How to Excel Comparison Robot Virus Data storage CES Biometrics Automobile Managed Services Provider Unified Threat Management Virtual Desktop Computer Accessories Content Management Database Business Intelligence Business Technology Computing Infrastructure Access Control DDoS Audit Remote Workers Going Green Worker IT Management Virtual Assistant SharePoint Authentication Processor Botnet Printer Bluetooth IT Plan Battery Hard Drive Shadow IT Customer Service Environment Legal Unsupported Software Update Fax Server Internet Exlporer Charger Computing IT Consultant Google Docs PDF SaaS Compliance Identity Theft Computer Care OneNote Humor Current Events Telephony Proactive IT Samsung Digital Signage Network Congestion Augmented Reality Best Practice eWaste YouTube Fraud Black Market Value Remote Worker Spam Blocking Procurement Electronic Medical Records Social Network Loyalty Recycling Cost Management Search WIndows 7 Screen Mirroring Frequently Asked Questions Wiring iPhone Practices Investment Books Social Networking Mobile Employees Windows 10s Cache Employee/Employer Relationships Amazon Web Services Criminal ISP Windows 365 Cast Safe Mode Tip of the week GDPR Video Conferencing Files webinar Hosted Computing ROI Running Cable Emergency Shortcuts Memory Professional Services Sales Public Cloud Wireless Internet Bitcoin Chromecast Employer Employee Relationship Online Shopping Personal PowerPoint Assessment Cryptomining Windows Media Player Point of Sale User File Sharing Windows Server 2008 Camera Supply Chain Management Colocation Inventory Uninterrupted Power Supply Specifications Tools Monitoring Wire Batteries Evernote Digitize Monitor Television Travel Windows 8.1 Managing Stress Science Printers Windows Server 2008 R2 Millennials Customer relationships Smart Office Cameras Wireless Charging IT Assessment Reputation Public Computer Manufacturing Streaming Media Email Best Practices Content Regulations Virtual Private Network Tech Support Distributed Denial of Service Transportation Workforce Customer Relationship Management Rootkit Cables Security Cameras Analyitcs Computer Tips Techology Computer Fan Managed IT Service Laptop OneDrive Customers Biometric Security Programming Virtual CIO Audiobook Project Management Peripheral Workers Nanotechnology Benefits Telecommuting Printer Server Cortana Digital Security Cameras FENG Using Data Touchpad Copiers IBM Digital Signature 5G Antivirus Windows 8 Politics Flash Warranty Quick Tip Advertising Smart Technology Google Apps Smartwatch IT service Ergonomics HVAC Software Tips Development Supercomputer Analysis OLED Notifications Tablet Sync Administrator PCI DSS Emails Devices Virtual Machine Employee Domains 2FA Enterprise Content Management Fiber Optics MSP Messaging Relocation Accountants Cabling Maintenance Microchip Policy Netflix Thought Leadership Hypervisor IaaS Two Factor Authentication Credit Cards Password Manager Bloatware Dark mode Video Games Root Cause Analysis Password Management Trend Micro Worker Commute HBO SMS Knowledge Default App Music Multi-Factor Security Tablets Experience Skype Search Engine Procedure Consultant Twitter Saving Time Shopping Analytics Business Mangement Google Search Entrepreneur dark theme Scalability Data loss NIST Business Owner Outlook AI Leadership Smart Tech IT Infrastructure Troubleshooting Trending Bing Shortcut Start Menu FinTech Best Available Addiction NarrowBand Amazon

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code