Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Tip of the Week: Why You Should Rethink Routinely Changing Your Password

Tip of the Week: Why You Should Rethink Routinely Changing Your Password

One of the main ways to keep an account’s credentials secure is by changing them consistently. However, we ran across an article recently that plays “devil’s advocate” on the password security issue, and they made some fair points about how changing passwords too frequently can lead to decreased security as a whole.

At first, this idea may not make a lot of sense. The reason that we change passwords so often is to prevent them from being used in attacks on sensitive accounts. If hackers steal passwords that don’t work, they can’t access the accounts. IT administrators often require user passwords to be changed on a regular basis, which may prompt users to choose passwords that are easy to remember or less complex than they should be.

In reality, there are several news outlets and security websites that suggest changing passwords regularly will lead to less-secure passwords as a whole. ZDNet, The Washington Post, and WIRED magazine, all suggest that frequently changing passwords, despite its intended purpose, can lead to watered-down security. Consider this scenario: you’re using a password, but are suddenly forced to change it. Would you be more likely to create a whole new password, or use a slight variation of your current password?

The Washington Post writes, “forcing people to keep changing their passwords can result in workers coming up with, well, bad passwords.” This statement is backed by research from a study performed by Carnegie Mellon University, which found that those who feel that their organization’s password policy was annoying, created passwords that were 46 percent less secure. Additionally, users who need to update their passwords constantly often leave patterns that connect old passwords to new passwords, like replacing a letter with a number or special character.

ZDNet explains that changing passwords for the purpose of securing accounts in case of stolen credentials doesn’t make sense, simply because “stolen passwords are often exploited immediately.” The security website also cites that “regularly changed passwords are more likely to be written down (another vulnerability) or forgotten,” which only seems to add to the frustration of changing passwords on a regular basis.

The fact remains that passwords may not be the most reliable way of keeping accounts safe, but there are ways that you can make using passwords, and account security, easier to handle. One way is to use an enterprise-level password manager. You can store all of your organization’s credentials in one secure location, where they will be called from and propagate in the required fields when needed. This helps you utilize complex passwords without needing to remember all of them.

Another way that you can improve account security is through two-factor authentication. This adds a second layer of security to your accounts by requiring a secondary credential, which can be sent to a smartphone via SMS message, voicemail, an alternative email account, and more. There are also biometric or GPS-tracking two-factor authentication methods that are viable (and effective).

If you’re ready to improve your business’s security practices, reach out to Total Tech Care at 866-348-2602.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, 24 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Network Security Google Business Microsoft Internet Email Malware Workplace Tips Backup Innovation Data User Tips Computer Mobile Devices IT Services Hardware Disaster Recovery Android VoIP communications Communication IT Support Business Continuity Smartphones Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Upgrade Phishing Windows Managed IT Services Outsourced IT Ransomware Data Backup Windows 10 Server Save Money Data Recovery Cloud Computing Office Passwords Windows 10 Gadgets Social Media Chrome Virtualization Tech Term Saving Money Holiday Automation Microsoft Office Managed Service Managed IT Services Facebook Operating System Artificial Intelligence Cybercrime Computers Internet of Things IT Support Hacking Wi-Fi Health BYOD Mobile Device Management Networking Managed Service Provider Alert Information Technology Covid-19 Information Spam Office 365 Remote Telephone Systems Social Engineering Mobility Recovery Employer-Employee Relationship Router Bandwidth BDR App History Big Data Password Money Human Resources Encryption Mobile Computing Applications Remote Monitoring Data Breach Application Law Enforcement Office Tips Private Cloud Training Blockchain How To Paperless Office Managed IT VPN Apps Data Storage Patch Management Remote Computing Mobile Office Government Data Security Wireless Gmail Bring Your Own Device Settings Data Management Work/Life Balance Two-factor Authentication Flexibility Infrastructure Vulnerability Voice over Internet Protocol Marketing WiFi Windows 7 Mouse Word HaaS IT solutions Entertainment Google Drive Website Budget Servers Avoiding Downtime The Internet of Things Lithium-ion battery Save Time Vendor Managed Services Telephone System Staff Software as a Service Display Machine Learning Cleaning Remote Work Firewall Connectivity Employee/Employer Relationship Virtual Reality RMM Conferencing Apple End of Support Scam Education Physical Security Social Safety User Error Sports HIPAA Redundancy USB Meetings Vendor Management Keyboard Data Protection Risk Management Hacker Current Events Business Technology Content Management Document Management Telephony DDoS Solid State Drive Wireless Technology Samsung Access Control Managed Services Provider How to Downtime Virtual Assistant SharePoint Value Authentication Database Data storage Electronic Medical Records Remote Workers Automobile Spam Blocking Customer Service Processor Environment Computing Infrastructure Hiring/Firing Update Virus Fax Server Going Green Hard Drive Google Docs Unified Threat Management Identity Theft Computer Accessories SaaS Battery Shadow IT Computing Legal Business Intelligence Network Congestion eWaste Audit Internet Exlporer Worker Augmented Reality Fraud Printer IT Management Bluetooth PDF Remote Worker Botnet Digital Signage IT Plan Cryptocurrency Wearable Technology Proactive IT Unsupported Software Retail Hard Drives Instant Messaging Best Practice IT Consultant Procurement Robot YouTube Charger Workplace Strategy Excel Comparison Net Neutrality Black Market Biometrics Compliance CES Humor Help Desk OneNote Virtual Desktop Computer Care Printing Evernote ROI Search Wire Video Conferencing Two Factor Authentication Sales Bitcoin Travel Shortcuts iPhone Netflix Root Cause Analysis Printers Point of Sale Science Personal Consultant Millennials Cryptomining Wireless Charging Analytics HBO Knowledge Music Smart Office Supply Chain Management Monitoring Batteries Skype Files Distributed Denial of Service Data loss Customer Relationship Management Chromecast Virtual Private Network Windows 8.1 Digitize Best Available Workforce WIndows 7 Cables Windows Server 2008 R2 Outlook Leadership Analyitcs Troubleshooting Programming Uninterrupted Power Supply Customer relationships Start Menu Colocation Telecommuting Manufacturing Screen Mirroring Loyalty Project Management Email Best Practices Nanotechnology IT Assessment Cortana Frequently Asked Questions Monitor Books Antivirus Windows 10s Computer Tips Digital Signature Managed IT Service Mobile Security Cameras Biometric Security Cast Warranty Virtual CIO Windows 8 OneDrive Streaming Media Emergency HVAC Peripheral User Google Apps PowerPoint Tip of the week Windows Media Player IT service Reputation webinar Public Cloud Tech Support Employer Employee Relationship Digital Security Cameras Analysis Using Data Content Professional Services 5G Techology Laptop Assessment Administrator Tablet Devices Copiers Enterprise Content Management Quick Tip Managing Stress Windows Server 2008 Domains Customers MSP Ergonomics Accountants Audiobook Tools Smartwatch Credit Cards OLED Cameras IaaS Maintenance Touchpad Television Microchip Thought Leadership Development Bloatware Password Management PCI DSS Password Manager Virtual Machine Advertising 2FA Fiber Optics Politics Multi-Factor Security Employee Cabling Public Computer Search Engine Tablets Twitter Messaging Entrepreneur Notifications Transportation NIST Policy Business Mangement Hypervisor Regulations Computer Fan Rootkit Dark mode Smart Tech Trend Micro Trending Amazon Default App Printer Server Shortcut Addiction SMS Cost Management Benefits Procedure Recycling Saving Time Relocation Workers FENG Social Networking Wiring dark theme Practices Shopping Google Search Amazon Web Services IT Infrastructure Video Games IBM Cache AI Smart Technology Safe Mode FinTech Criminal Worker Commute Flash Bing Running Cable GDPR Hosted Computing Social Network Experience Online Shopping Investment Scalability Software Tips Supercomputer Memory Wireless Internet File Sharing Employees Employee/Employer Relationships Business Owner Sync Emails NarrowBand Camera Windows 365 Inventory Specifications ISP

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code