It seems as though news about hacks and compromised accounts are becoming a monthly occurrence within large companies and retail outlets as hackers continue to exploit the misinformed practices of password protections of employees to a great part.
Fortunately, businesses are getting hip to the cracks in their employee secutiry chain and are socially engineering best pracitices when it comes to accessing secure software and hardware.
As part of Microsoft’s Business Academy’s epxanding course lessons, the Office 365 team is helping companies try and prevent user-error security breaches.
The problem—simple passwords
Simple or reused passwords open the door to hackers. According to SplashData, the top five worst passwords of 2015 were:
But even a great password can pose problems when used on multiple sites. Hackers know that people like to reuse passwords, so when they crack one, they test it on multiple sites, especially those that may contain higher value information.
Your solution—Educate employees on how to create a strong password. Then put a policy in place to ensure passwords meet minimum complexity requirements and require that users change them often. Also, encourage secure password-keeping practices such as using third-party services that store passwords in the cloud and secure them all with a master password.
The Office 365 team also touch upon ways companies can also address employees regarding phising scams, BYOD practices and how to resolve issues surrounding stolen devices.
The bottom line, educate, educate and more education. Assuming employees know what to do regarding email, passwords and device handling is proving to be the wrong approach lately.