This is NOT a drill!

In a huge week for Hackers’ News, this is still huge.  On Monday it was announced that BILLIONS of passwords and other sensitive information was leaked on the dark web via a 100GB text file almost 8-and-a-half billion passwords.

It’s being called “RockYou2020.”

<font face=”Sarcasm”>Cute.</font>

While it’s likely that this is a massive conglomeration of stolen credentials throughout the decades, it is still, well… MASSIVE.  And while breaches such as these can feel overwhelming, the last thing you want to do is stick your head in the sand, because all that will do is make it harder to breathe while the cybercriminals steal your data.  This breach, combined with all the other breaches, is practically a disaster waiting to happen.  And while the details are relatively slow coming and also relatively unimportant at this point, what IS important is what you do from here.

Secure: Password Best Practices

  • Long, random mix of upper- and lower-case letters, numbers, and symbols
  • Never use the same password more than once
  • Change the password regularly

More Secure: Software Managers like lastpass or roboform

  • Online – More convenient but more vulnerable
  • Device-based – Less convenient, but vulnerable if a hacker hacks your
    personal device

MOST Secure: Hardware/Token-based solution token like Yubikey or Gatekeeper

  • Hardware (key fob, USB, etc…) eliminates the need for manual login
  • Efficient, convenient and secure – no need to create, change, or remember long, secure passwords
  • Protects against phishing attacks and keystroke loggers

Everyone knows that strong, unique passwords are an absolute necessity.  But with the vast number of breaches, we urge everyone, not just business owners, to employ the use of a password manager.  You can use software, like lastpass or roboform, but with breaches becoming just ridiculous at this point, we STRONGLY urge you to invest in a hardware/token-based solution.

Additionally, ALWAYS employ multi-factor authentication (MFA) when offered to you.

Even before this breach, it was only a matter of WHEN, not IF you were going to get hacked, but with this breach, it’s now a matter of “how much longer?”  And if you own a business?  That time is even shorter; as of this year, 50% of cyberattacks are now focused on businesses.

Are you ready?  Do you think your employees can spot a phishing email versus a real one?

If you aren’t sure, the answer, 99% of the time, is “no.”  And you are not alone.  But we are here to help.  It’s a well-known fact that US businesses’ cyber hygiene does not pass the sniff test.  That’s why we offer small businesses FREE consultations.   Just give us a quick call at  919-422-2607 or visit our online scheduler today.

The longer you wait, the more likely you will need a cure, as opposed to prevention, and prevention is a lot less costly.  It is scary out there, and hackers are only becoming more and more sophisticated.

The post Unless You WANT to Get Hacked? CHANGE YOUR PASSWORDS NOW! appeared first on Petronella Technology Group | Managed Services Raleigh, NC.