Explore Elite Risk Management Services

Private Strategic Group
Solutions
Solutions
Critical Event ManagementTravel Risk ManagementRisk Intelligence & AnalysisGlobal Security AssistanceMass Notification SystemMedical Evacuation & Assistance
Solutions Overview
Capabilities
Capabilities
Medical & Security Consulting
Medical & Security Consulting
Duty of CareBusiness Continuity PlanningCyber Security Risk ManagementMedical ConsultingTraining & Capacity Building
Intelligence & Monitoring
Intelligence & Monitoring
Crisis Proactive MonitoringEmbedded Intelligence ServicesGlobal IntelligenceMaritime Crisis
Global Assistance & Response 
Global Assistance & Response 
Medical & Security AssistanceCrisis ResponseEvent Medical SupportMedical Staffing
Global Operations Centers
Global Operations Centers
Security Operations Center Services
Executive Solutions
Executive Solutions
Executive Protection
Capabilities Overview
Platforms
Platforms
TopoONE by Crisis24Crisis24 HorizonMass NotificationNonagon by Crisis24
Platforms Overview
Insights
Insights
Featured Insights
Insights Overview
Cropped image of US Capitol Building.

Intelligence Analysis

US Administration Policies To Pose Political, Security, And Economic Challenges Through At Least 2026

Crisis24 Intelligence explores how US policies will pose political, security, and economic challenges globally through 2026, impacting international relations and trade.

June 9, 2025

Intelligence
Intelligence
Global Risk Forecast 2025
Intelligence Overview
global risk forecast
Report

Global Risk Forecast Report

Stay ahead of emerging challenges with the Global Risk Forecast 2025.

November 18, 2024

About
About
About UsOur ExpertsCareersSustainability
global risk forecast
Report

Global Risk Forecast Report

Stay ahead of emerging challenges with the Global Risk Forecast 2025.

November 18, 2024

enfr

Search

Article

Password Safety & Security Best Practices from our Experts

25 NOV 2024

/

3 min read

Author

Saba Sattar

Intelligence Analyst III, Cyber Intel Lead

Jonathan Vincent

Cyber Intel Lead

Share

Jump to

Make long passwords
Use a Password Manager
Enable Multi-Factor Authentication (MFA)
Password Safety & Security Best Practices from our Experts

Poor password hygiene can create critical security risks. These unsafe practices make it easier for cybercriminals to crack or steal passwords using malicious software, tools, or social engineering to access employees' personal identifiable information, compromise websites and system data, and make organizations vulnerable to preventable cybersecurity breaches. Some of the most common poor practices include:

  • Using weak or predictable passwords, such as “12345” or “password” or names of family members or pets.
  • Using short passwords, or overemphasizing password complexity over length.
  • Reusing passwords across multiple accounts, even if the password is strong enough.
  • Storing passwords insecurely, such as on sticky notes, as plaintext files, or as unencrypted documents.
  • Sharing login credentials with colleagues or family members.
  • Not using password managers.

To maintain data security and protect the organization against cyberattacks, the following best practices can be put in place:

Make long passwords

Short passwords are easy for hackers to break using password-cracking software. Short passwords of six characters or less can be broken relatively easily; however, with each additional character the password becomes significantly more time-consuming, and therefore difficult, to crack. Passwords should be at least eight characters long as they are exponentially more difficult to crack than a six-character password.

Although password complexity (using upper case letters, numbers and special characters) is also desirable, according to the National Institute of Standards and Technology (NIST) it is not nearly as important as password length. A good password can be three random words or a phrase of appropriate length.

Use a Password Manager

Passwords are vulnerable when they are easy to guess or when they are made public after a data breach. Password managers mitigate both risks by generating and saving complex, random passwords unique to each of a user’s accounts. Complex passwords are difficult to guess, and if one is exposed in a data breach the damage is minimized because it is not shared among the user’s other accounts.

Password managers offer free and paid options. Standalone password managers (e.g., 1Password, LastPass, Bitwarden) are typically best due to their features and flexibility, but built-in browser or operating system password managers may also meet needs. Additional password manager features include the capability to store other sensitive information (credit card numbers, addresses, etc.) as well as options to share passwords without revealing them.

Enable Multi-Factor Authentication (MFA)

After they enter a password, MFA prompts users for another way to prove their identity, such as via mobile app notification, biometric scan, or text message (SMS) code. Even the best passwords aren’t immune to being cracked or exposed to a breach; MFA is a crucial layer of additional protection.

MFA availability varies, but many banking, shopping, social media, email, and other online services provide it. MFA can also be used to protect password managers for an additional layer of defense.

Related

Night planet earth from space with light lines of communication and connection. Business and finance, concept. Global communications system and the World Wide Web. Technologies and communications.
Intelligence Analysis

5G and Next-Generation Wireless Networks Likely to Reshape Global Digital Mobility and Geopolitical Competition

September 9, 2025

Dubai at night with a view of Museum of the future
Intelligence Analysis

AI Surveillance in United Arab Emirates Raises Stakes for Business Resilience and Risk Management

August 26, 2025

High angle view on the security check area Beijing Capital International Airport
Intelligence Analysis

China: Geopolitical Tensions Heighten Risks to International Business Operations and Travel

August 19, 2025

data leak concept image
Intelligence Analysis

Growth of Shadow AI Underscores Need for AI Governance

August 12, 2025

Tags

Cybersecurity

Sharpen your 
view of risk

Subscribe to our newsletter to receive our analysts’ latest insights in your inbox every week.

Intelligence & Insights

Intelligence 
Worth Gathering

Employing a team of 200+ analysts around the world, Crisis24 is the only source you need for on-point, actionable insights on any risk-related topic.
Aerial view of Port of Tripoli, Libya

Intelligence Analysis

Renewed Interest in Libya’s Oil Sector Sparks Economic Hope amid Operational Challenges

Growing international interest in Libya's oil sector brings hope and challenges for a renewal and stabilization of the country’s economy.

By Dyna Faid

September 17, 2025

Asian woman looking at a screen overlayed with code against a bokeh background

eBook

Empowering Resilience with Responsible AI

This eBook offers actionable strategies for the responsible use of AI tools that enhance threat detection, crisis communications and recovery efforts for security teams.

September 17, 2025

Surgeon Reviews Critical Brain Scans Displayed on a Monitor as Well as Health Data on a Tablet Computer.

Case Study

Medical Assistance and Cross-Border Repatriation for a Neurological Emergency

See how Crisis24 coordinated hospital care, cross-border medical transport, and a seamless repatriation for a stroke patient, ensuring a safe transition to rehab.

September 12, 2025

Aerial view of Doha, Qatar from the water

Intelligence Analysis

Implications of Israel’s Attack in Qatar in a Post-Oct. 7 World

Explore how Israel’s Doha strike reshapes Gulf security, strains US ties, and jeopardizes mediation efforts in the Israel-Hamas conflict.

By Crisis24 Middle East Intelligence Team

September 10, 2025

Explore All