Block title

-

The Curse of the Password – What must I do? I’ve been hacked

- Advertisment -

By cyber security expert and J2 Software CEO John Mc Loughlin

With all the hype around cyber-attacks and every single cyber security enterprise talking about cyber resilience to improve a business’ security posture, nobody really knows what to do once they’ve been hacked. These terms are being used extensively and yet it still does not really help anyone to understand their importance or exactly what it means and what they can do to lower their risk.

Often the focus on corporate risks and acceptable use policies is lost on the end user. Constantly referring only to the policy will not influence staff to adjust behaviour. In order to make real change, one needs to focus more on procedures, steps and the personal impact of better cyber hygiene to help employees be more secure.

More importantly, when employees know what to do and what to look out for, they will be better protected at home and automatically, by association, more secure at work.

Companies need to address the pressing aspects of cyber security and try to cover these issues in a way that will make sense to the non-technical user. It is amazing how making small adjustments can positively influence the behaviour of staff and improve security at the same time. When the employee makes the changes themselves, positive results follow.

Passwords passwords passwords

Before anybody says that passwords are not the best form of security, or they are outdated and the like, the truth is that we live in an interconnected world and every single system we interact with needs a password. Every system, cloud storage, app and network that we place our information and login credentials into, increases our risk landscape.

When you use a single password for every platform, a breach of one is a breach of them all. You may practice safe cyber activity and still have your credentials compromised in a third-party app that has poor security measures.

John Mc Loughlin

Password policy

A password policy is not only something that you should have in the office. It is a good idea to come up with, follow and assess compliance to a policy for your personal passwords as well. This policy, at work or home, must be practical for your situation. Have a look at the systems and platforms that you work with and follow the policy to ensure password security.

If you make use of a password manager, ensure that it is secure and use it correctly. How often will you change your passwords and will you only do this when something is compromised – monthly or quarterly? Whatever the decision, this is your policy and make sure you follow it.

How will you monitor for compliance and breaches? Please ensure that you keep your eyes open for breach notifications, update managers and regularly check for multiple online sessions or logins on all your platforms. Also, register for a breach notification service on your personal email accounts.

Contract a service to monitor and search for stolen, compromised and leaked credentials online and on the cyber underground. Breaches happen every single day and knowing that credentials have been part of a breach allows you to take the required steps to stay secure.

Implement multi-factor authentication on every platform possible. The reality is that the extra two  or three seconds it takes to punch in the code or verify the login is far simpler than trying to recover data, chase lost money or explain how your credentials were used to drop ransomware on those around you.

Make sure your passwords are unique to you. With the growing number of platforms and passwords, take the steps necessary to secure yourself and always follow your policy. If you need any guidance or professional advice, contact J2 Software to discuss real and practical methods to remain cyber secure.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest articles

Coronavirus-themed security attacks on the increase

By Indi Siriniwasa, Vice President at Trend Micro Sub-Saharan Africa When there is a crisis, there are those who will try and take advantage. Unfortunately,...

IoT will become the biggest user of edge computing amidst increasing security concerns

From less than $1.5 billion in 2017 to an anticipated $9 billion by 2024, the worldwide edge computing market is set to show significant...

ICASA calls on licensees to make communication services more freely available, while making regulatory concessions

Considering the recent developments with regards to the spread of the COVID-19 pandemic, the Independent Communications Authority of South Africa (ICASA) has written to...

Nine South African students attended US Space and Rocket Centre for 10th annual space camp

Nine South African students recently travelled to the U.S. Space and Rocket Centre (USSRC) in Huntsville, Alabama, as part of the 10th annual Honeywell...

The global outbreak of COVID-19 has brought the world’s digital divide into sharp focus.

ITU News reports that the Internet is a vital communications tool for people and communities affected by the outbreak of the Coronavirus. As schools...

Cybersecurity in automotive industry presents a major challenge

Luxury vehicles are not exempt from cyber-attacks, even if a vehicle is designed with state-of-the art security and maintained with over-the-air software updates during...
- Advertisement -

Surveillance and security service providers must be PRiRA accredited

Any business operating as a surveillance or security service provider, be it for the installation, configuration, support and monitoring of CCTV equipment, for a...

Go cashless, boost SA’s informal sector and reduce COVID-19 spread

COVID-19 has unintentionally encouraged an increase in cashless spending. As a result of the World Health Organisation (WHO) announcement, people are being advised to...

Free coronavirus legal and risk guide

webberwentzel-coronavirus-bookletWebber Wentzel has prepared a legal and risk coronavirus guide in collaboration with their alliance partner, Linklaters. The guide offers practical tips to consider...

Space science: Cosmic rays are increasing at aviation altitudes

Over the past three years, cosmic radiation at aviation altitudes has increased by 12%. In January 2020, students of Earth to Sky Calculus and Spaceweather.com travelled to...

Ethical hacking now part of BT security advisory services

British Telecom (BT) Security’s ethical hacking team provides ‘penetration testing’ or ‘red team’ services, using the same tools and techniques as cybercriminals to attack...