How to Ditch Sticky Note Passwords for Good

How many employees do you have who keep your company’s passwords on sticky notes stuck to their monitors? This simple, seemingly benign trick could be putting your business at risk. After all, if you can see the password on a sticky note, so too can others who happen to be wandering around the office—including potential threat actors.

This System is Putting Your Business at Risk

If your employees have to resort to sticky notes in the first place, this is a symptom of a failure in your password policy. The good news is that you can actually do something about this.

Why Employees Write Down Passwords

The big reason why employees write down passwords is because it’s more convenient than the alternatives you’ve provided, plain and simple.

You might want your team to use complex passwords, but if they have no way of keeping track of complex passwords for their multitude of accounts, it’s no wonder they’ll resort to a shortcut. The problem is that the shortcut they’re most familiar with is not secure for your business, and you’ve made the employee accept the lesser of two evils. They either suffer while trying to remember impossible passwords, or they take a little risk.

Convenience will always triumph over security… That is, unless you make security convenient.

The Password Reuse Problem

Password reuse is also a serious contender for “worst password problem” out there. If people reuse passwords for multiple accounts, it just creates more trouble when one leak happens. It suddenly puts all other apps and services that use that password at risk, including banking websites, social media accounts, or even your company’s network.

How These Hacks Happen

These hacks occur when a single hack occurs—perhaps even for a single, unimportant website or app—but the fallout is considerably worse.

If the hacker has stolen a bunch of passwords and usernames, they can then use a script to try these login credentials elsewhere. They might try to infiltrate your company network, email, or software. The worst part is that they might even gain access. Effortlessly.

And that’s just the beginning.

The Solution

We know at White Mountain IT Services that you can’t just blame the team for breaches, but what you can do is address their collective lack of knowledge about network security and password best practices. The trick is to empower them in the following ways:

Implement a Password Manager

The password manager addresses the problem that created all those sticky notes in the first place. You can generate strong passwords and store them in a secure vault for later use. These passwords are practically unhackable due to their complexity, and the password manager auto-populates them when needed.

Deploy Multi-Factor Authentication

Multi-factor authentication, or MFA, is another tool that stops most attacks dead in their tracks. If a hacker manages to steal a password, they won’t be able to log in without a secondary credential, like a one-time code sent to the user’s phone or a dedicated MFA app. This effectively eliminates the possibility of a stolen password leading to a breach of security.

If you find your business needs a hand with password management and the troubles it can bring, don’t wait any longer. Let White Mountain IT Services support your business’ efforts. Learn more by calling us at (603) 889-0800 today.

White Mountain IT

Related Posts

Smart Devices are Undermining Your Privacy

In a time when Internet connectivity is so important, manufacturers have met this demand by creating products that feature the ability to connect to apps or other Internet-based dashboards. Unfortunately for users, there is a lot that can go wrong when organizational practices don’t do enough to protect their customer’s privacy; or, simply look to exploit it. Let’s take a look at how the smart dev...

How to Minimize Cybersecurity Sprawl

Obviously, we won’t tell you to cut down on your cybersecurity. That said, it can be easy to overinvest and overreach if you aren’t careful about what you’re implementing. This phenomenon is known as cybersecurity sprawl, and if not prevented, it can easily have serious consequences for your business. Let’s go into how to avoid this sprawl. But wait, you may be asking, why shouldn’t I implement...

How to Avoid Becoming the Next Data Security Cautionary Tale

Data security isn’t a matter to be taken lightly, as too many businesses have found out the hard way. Unfortunately, there are far too many simple ways to correct common security issues - enough that it’s foolish not to do so. We’ll review a few ways to fix security issues, after discussing one of, if not the, most egregious security failings in modern history. The Equifax Problem Sometime bet...

Cover Your Security Bases with These Four Best Practices

Over 25 percent of data breaches target small businesses, and the impact can be huge. To protect your business, you need the right technology and smart strategies. In today’s blog, we go through some key steps to help safeguard your business from digital threats. Use Security Software You’ll want to invest in security tools like firewalls, antivirus programs, and encryption. Keeping these upda...