New revelations have shattered the notion that a 15-character password provides ironclad protection. Yes, you heard that right – length doesn’t always equate to strength, and the password landscape is far more treacherous than it appears.
In the realm of passwords, the eight-character password reigns supreme as the most commonly compromised. But even if you’re relying on a longer one, don’t let your guard down just yet. Surprisingly, 15-character passwords also find their way into the list of the top ten most compromised lengths.
You may wonder, “How can this be?” The answer lies not only in the password’s length but also in its content and whether you recycle the same password across multiple platforms.
The infamous “password” stands as the most compromised eight-character password, while the 15-character password championing this ignoble list is none other than “Sym_newhireOEIE.” It’s far from reassuring, isn’t it?
This issue extends beyond individuals; businesses like yours are equally vulnerable. A staggering 86% of all cyberattacks kick off with stolen credentials, meaning nearly nine out of ten attacks begin this way. Can you afford to be complacent?
Certainly, longer passwords do offer increased resistance against brute force attacks. An eight-character password can be cracked in mere minutes, while a robust 15-character one, devoid of any discernible patterns, could withstand an astonishing 37 million years of cracking attempts. Impressive, indeed.
But here’s the caveat: password length alone won’t safeguard you against the perils of stolen credentials via phishing attacks.
So, what more can you do?
Unique & Complex: To enhance password security, consider using a passphrase consisting of multiple words, making it longer and more memorable.
If you construct a passphrase with a at least 12 characters, incorporating both uppercase and lowercase letters, it will take a machine approximately 300 years to crack.
Passwords shouldn’t be reset frequently: This sounds counter-intuitive however the more often passwords are reset the greater the likelihood they are written down or similar variations of the same password are used. Passwords should also be reset immediately if compromised or suspected of compromise.
Always use Multifactor Authentication: This is an important Cybersecurity tool that provides an additional layer of protection. If a hacker ever gets a hold of your password even after following the above standards this makes accessing sensitive data much more difficult.
If you’re seeking comprehensive protection for your business, reach out to us. Your security is our priority.