Join | Member Login
Arlington (VA) Chamber of Commerce | Arlington, VA 22201
  • Membership
    • Membership Benefits
    • Join Now!
    • Chamber Assisted Grand Openings
    • Chamber Member Retirement Program
    • ShopChamber
    • Advertising >
      • Website Ads
      • E-Newsletter Ads
      • Print Ads
    • Committees
    • LeadShare
    • Annual Corporate Sponsors
    • Member Login
  • Business Directory
  • Events
    • Chamber Calendar
    • Community Calendar >
      • Submit a Community Event
    • Networking Events >
      • Chamber 101
      • Breakfast Connection
      • Business After Business
    • Signature Events >
      • Arlington Business Gala
      • Hospitality Awards
      • Legislative Breakfast
      • Arlington Chamber Volunteer Day
      • AWE Women in Business Summit
      • Best Business Awards
      • State of the County & Public Safety Awards
      • Annual Meeting
    • Educational Events
    • Women in Business
    • Travel
    • Online Learning Center
    • COVID-19 Event Policy
  • Community
    • Arlington Restaurant Week
    • Small Business Accelerator
    • Early Childhood Financial Resiliency Accelerator
    • Coronavirus Resources
    • Coupons
    • Job Board
    • Scholarship Fund
    • About Arlington >
      • Business Resources
      • Map of the Area
      • Visiting Arlington
  • Business Advocacy
    • Public Policy Positions
    • Arlington Advocacy >
      • Budget & Taxes
      • Planning
      • Project Support
      • Economic Development
      • Processes
      • Retail & Signage
      • Transportation
    • Virginia Advocacy >
      • Budget & Taxes
      • Transportation
      • Economic Development
      • Other Topics
    • Recent Advocacy
  • About the Chamber
    • Board of Directors
    • Staff Directory
    • Chamber in the News
    • Strategic Plan
    • FAQs
    • Blog
    • Publications >
      • Arlingtonian Archives
      • Arlingtonian Archives
    • Press Releases
    • Contact Us
  • Membership
    • Membership Benefits
    • Join Now!
    • Chamber Assisted Grand Openings
    • Chamber Member Retirement Program
    • ShopChamber
    • Advertising >
      • Website Ads
      • E-Newsletter Ads
      • Print Ads
    • Committees
    • LeadShare
    • Annual Corporate Sponsors
    • Member Login
  • Business Directory
  • Events
    • Chamber Calendar
    • Community Calendar >
      • Submit a Community Event
    • Networking Events >
      • Chamber 101
      • Breakfast Connection
      • Business After Business
    • Signature Events >
      • Arlington Business Gala
      • Hospitality Awards
      • Legislative Breakfast
      • Arlington Chamber Volunteer Day
      • AWE Women in Business Summit
      • Best Business Awards
      • State of the County & Public Safety Awards
      • Annual Meeting
    • Educational Events
    • Women in Business
    • Travel
    • Online Learning Center
    • COVID-19 Event Policy
  • Community
    • Arlington Restaurant Week
    • Small Business Accelerator
    • Early Childhood Financial Resiliency Accelerator
    • Coronavirus Resources
    • Coupons
    • Job Board
    • Scholarship Fund
    • About Arlington >
      • Business Resources
      • Map of the Area
      • Visiting Arlington
  • Business Advocacy
    • Public Policy Positions
    • Arlington Advocacy >
      • Budget & Taxes
      • Planning
      • Project Support
      • Economic Development
      • Processes
      • Retail & Signage
      • Transportation
    • Virginia Advocacy >
      • Budget & Taxes
      • Transportation
      • Economic Development
      • Other Topics
    • Recent Advocacy
  • About the Chamber
    • Board of Directors
    • Staff Directory
    • Chamber in the News
    • Strategic Plan
    • FAQs
    • Blog
    • Publications >
      • Arlingtonian Archives
      • Arlingtonian Archives
    • Press Releases
    • Contact Us

ChAmber Blog

Password Management

12/3/2020

2 Comments

 
Picture
Jack Pittas, Co-Founder of PK Cyber Solutions Inc.

Password management tends to be one of those activities that most people choose to be lazier with. Thanks to the way that TV and movies poorly portray how most cyber breaches are conducted, people don’t realize the true importance of password discipline. But the one statistic that tells the whole story, is that a whopping 81% of data breaches are a result of password compromise (according to the Verizon Data Breach Investigations Report).

In addition to that, Microsoft had announced in early 2020 that over 44 million accounts were vulnerable to account takeover due to compromised or stolen passwords. Password management is a legitimate concern for both businesses and individuals, and therefore needs to be treated as such. When it comes to solid password management practices, we’ll divide it into three main categories: Password Design, Password Security, and Response to a Password Compromise.
 
Password Design
●Passwords should be between 8-15 characters in length using upper case, lower case, numeric and special characters in conjunction→ A high character count with a series of varied symbols minimizes a hacker's ability to break using “brute force attacks.” 
● Passwords should not contain any personal identifiable information(PII)→ A lot of personal identifiable information can be found online and is typically the first attempted.
● Passwords should differ across applications, systems and department teams→ If passwords are the same across platforms and teams, then one successful password breach could lead to multiple breaches. This is a common problem amongst small businesses, where members of teams or departments will share credentials across accounts which can increase the risk of a password breach and the severity of one.
●Passwords should NOT be recycled (Ex: Password#1→ Password#2) → If a password had been previously compromised without any action being taken by the hacker, recycling your password will only give a finite amount of time until you are compromised again.
           
Password Security
●Passwords should be changed every 60-90 days for each account→ Frequently changing your password creates a “moving target” for a hacker
●Passwords should only be shared under the RAREST of circumstances with team or department members→ Sharing credentials puts more devices at risk in the event a breach were to occur. Therefore it should be done cautiously and on the rarest of occasions.
●In the RARE event that credentials are shared, it should NEVER be done by electronic means (email, text, IM, etc.)→  Sharing credentials electronically creates more potential mediums that could cause compromise through communications interceptions.
●Passwords should NOT be stored in any company or computer databases→ If a database was compromised, all other systems would potentially be compromised as well.
● Avoid leaving a written down password visible and in plain sight→ Having passwords or other credentials in plain sight (on someone’s desk or cabinet) will risk internal password sharing. Even if someone trustworthy borrows it, they could be negligent in how they use the credentials, leading to a potential compromise. 
● Utilize multi-factor authentication whenever available→ Multi-factor authentication adds an entirely new layer of security to protect one’s credentials. 
●Utilize a password manager software if available→ Especially when you have a lot of different accounts, password manager software is a centralized place to store all of your passwords. They can be accessed with one master password and it encrypts the information when the software isn’t accessed, making it extremely secure. But be sure to manage the master password using these design and security practices.
 
Response to Suspected Password Compromise
●Immediately change all compromised passwords across platforms and teams→ This will minimize any potential loss across teams and platforms. Risk of loss is far greater if there isn’t cross-team or cross-platform differentiation.
●Notify pre-determined, designated team lead of potential cyber-related incident, and begin incident-response steps→ Notification of the designated lead will begin the formalized process of incident-response, minimizing any potential further damage. 
 
            It is critical and advised to follow these password management practices. Another good idea, especially if you have employees or subcontractors, is to have a formal, documented password management policy within your organization, and ensure they are being enforced. It is also wise to create an incident-response plan in the event credentials might be compromised, as well as one that addresses other potential scenarios. Be sure to consult with a cybersecurity professional or IT personnel to get those generated.
2 Comments
Collin Buchanan
12/3/2020 01:05:07 pm

This was super helpful! In the Digital world, nothing concerns me more than cybersecurity. Thanks for posting.

Reply
Cameron Eck
12/8/2020 03:37:34 pm

I have always been very careless about choosing my passwords, thinking I was the only one who needed to know it. Not anymore! Thank you for this valuable information.

Reply

Your comment will be posted after it is approved.


Leave a Reply.

    The mission of the Arlington Chamber of Commerce is to strengthen businesses and the economic environment for those who work, live and do business in Arlington.
    Picture
    Contribute to the blog!
    Educate the Chamber membership and Arlington business community by writing a post for our blog! To get started download the blog guidelines and blog template. For questions and more information, contact the Communications Manager.

    Archives

    February 2023
    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    August 2022
    July 2022
    June 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    December 2021
    November 2021
    October 2021
    September 2021
    August 2021
    July 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    December 2019
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017
    July 2017
    June 2017
    May 2017
    April 2017
    March 2017
    February 2017
    January 2017
    December 2016
    November 2016
    October 2016
    September 2016
    August 2016
    July 2016
    June 2016
    May 2016
    April 2016
    March 2016
    February 2016
    January 2016
    December 2015
    November 2015
    October 2015
    September 2015
    August 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015
    February 2015
    January 2015
    December 2014
    November 2014
    October 2014
    September 2014
    August 2014
    July 2014
    June 2014
    May 2014
    April 2014
    March 2014
    February 2014
    January 2014
    December 2013
    November 2013
    October 2013
    September 2013
    August 2013
    July 2013
    June 2013
    May 2013
    April 2013

    RSS Feed

© Copyright 2023 Arlington Chamber of Commerce. All rights reserved.
2009 14th Street, North  | Suite 100 | Arlington, VA 22201 | Directions
Tel (703) 525-2400 | chamber@arlingtonchamber.org
MemberClicks
Subscribe to This Week At Your Chamber
For Email Marketing you can trust.
Home | ​Join Now | Site Map