Yesterday I attended a webinar in advanced security settings for Microsoft 365 which was interesting in a nerdy way. As ever with these types of webinars it has raised questions within our organisation to look at how we administer the security solutions for our clients – and we made some changes. The threat landscape is always changing and a security company that thinks it has all the answers laid out in a PowerPoint presentation but does not keep its education up to date and is afraid of changing in case it makes them seem weak to their clients – is doing it wrong. The bad actors like you not to change as it leaves you weak.
However it did remind me that we all still rely on passwords as our key into security (I among other professionals think passwords have had their day – but that is another story) and the use of weak passwords or having a weak password policy is really an open door to the malicious actors.
Please run some training with your teams in good password practice and couple that with multi-factor (MFA) training.
Also:
You need a different password for each “thing” you log into
Most Common Passwords [2021] – Is Yours on the List? | CyberNews
If you need help with this type of basic cybersecurity training or are a micro-company and would like to join one of our online training sessions then please get in contact.
Clive Catton MSc (Cyber Security) – by-line and other articles
