Don’t Pass on Password Managers

Article Authors

Recent Cyber Security industry statistics show that weak, default, or stolen passwords are involved in up to 80% of data breaches each year.

Passwords figure prominently in many areas of our daily functions such as logging onto work computers, doing online banking, sending email, accessing social media accounts and making most online shopping possible. A consistent, clear, repeated warning from Cyber Security experts and insiders is: creating complex passwords (i.e. comprised of both upper and lower case letters, numbers, and special characters) that are unique and lengthy is one way to ensure safe online activity.

Practicing healthy Cyber Security hygiene by implementing unusual passwords is outstanding in theory; it’s just that the average person has multiple password-protected accounts. Remembering which password aligns with each one of those accounts can be a challenge. That’s why using a password manager is helpful.

Advantages of Password Managers:

    1. It provides a centralized password storage location (i.e. vault) – with only a master password to remember.
    2. It is able to automatically generate strong passwords for all of your accounts requiring a password.
    3. It is equipped with strong encryption, which protects your vault.
    4. It can simultaneously support multiple devices.
    5. It offers the ability to safely store other sensitive information, such as credit card numbers, in the vault.

    There are several good, highly-recommended options to choose from such as LastPass, Keeper, Dashlane and 1Password. Be sure to research each of the tools you are considering before making your decision to ensure that you are comfortable with the features and capabilities of the password manager you ultimately pick.

    Action Items:

      1. Research and choose a reliable Password Manager.
      2. Choose a long and complex Master Password (Remember, with a Password Manager, you only need to remember one).
      3. Be sure to take precautions to remember your new Master Password such as selecting one that has meaning to you but does not necessarily lend itself to hackers.
        Note: This is important because most providers have little or NO ability to assist you with finding/resetting a lost or forgotten Master Password.
      4. Begin using your Password Manager as soon as possible and migrate all of your existing passwords to it.

      HBK can assist you with questions on this or any other Cyber Security topic. For more information, contact William Heaven at WHeaven@hbkcpa.com.

Speak to one of our professionals about your organizational needs

"*" indicates required fields



Equifax Breach is a Warning to Businesses

Date September 18, 2017
Categories
Article Authors
HBK CPAs & Consultants

Cyber threats create havoc on many levels. Unfortunately, data breaches are a grim reality in life and business today.

Equifax recently revealed a data breach of more than 143,000,000 of its U.S. customers. Unlike other public data breaches in the recent past, the information stolen from Equifax likely includes extremely personal identification information such as social security numbers, e-mail addresses, dates of birth and similar “static” data. Such data cannot be changed by the victim without an extraordinary investment of time, effort and expense because it has been used to identify the victim over the course of his or her lifetime.

In addressing the breach, Equifax will waive all of its fees until November 21 for customers who want to freeze their credit files as well as to offer a refund of fees to those who have paid for services since September 7, 2017. For a full list of options and other details, visit www.equifaxsecurity2017.com PLEASE NOTE: We recommend that you revisit the site often because Equifax has already made numerous changes to these options.

There are many potential points of entry for cyber threats. It behooves you and your business to remain attentive to your company policies and practices regarding e-mail, transmission and storage of data. Just as critical to your data security efforts are those of your business partners and sub-service organizations. Attestation to your cybersecurity and information assurance program is of critical importance as these attacks grow increasingly more sophisticated and use a myriad of methods to exploit vulnerabilities in technology, staff, business processes and combinations thereof.

Consequently, it is essential to ensure your cybersecurity transcends traditional network security and becomes organizational security. Compliance with industry leading frameworks facilitates simply that.

Data security is crucial to your business structure. We urge you to take measures now to protect your business. Please contact us for more information on cyber security methods and options or for a related business consultation.

Speak to one of our professionals about your organizational needs

"*" indicates required fields