Cybercrime is a growing threat to businesses and individuals alike. In this first part of our “Staying Safe from Cybercrime” series, we focus on one of the simplest but most powerful defences: your password.
Why Passwords Still Matter
Passwords are everywhere. You use them to:
- Send emails
- Access business systems
- Make online purchases
- Log into banking and cloud services
A weak password is like leaving your front door unlocked. It’s often the first thing cybercriminals try. That’s why your password needs to be strong, unique, and secure.
Should You Change Your Password Often?
It used to be common advice to change your password regularly. But experts now say this can do more harm than good. Frequent changes often lead to:
- Simpler, easier-to-guess passwords
- Reusing old passwords
- Writing them down or storing them insecurely
Best practice: Only change your password if you think it’s been compromised.
Add a Second Layer: Multifactor Authentication (MFA)
Even strong passwords can be stolen. That’s why most services now offer multifactor authentication (MFA).
MFA means you need:
- Your password
- A second form of ID – like a code from your phone or an app
This extra step makes it much harder for hackers to access your accounts, even if they have your password. It’s now standard for:
- Online banking
- Microsoft 365
- Social media
- Shopping platforms
MFA often refers to an app that runs on a user’s mobile device. When they try to log onto a service on their laptop or PC, it asks for a code from the mobile app to confirm the right person is logging in.
What Makes a Strong Password?
A good password should be:
- Unique to each account
- Hard to guess
- Easy for you to remember
The National Cyber Security Centre recommends using three random words. For example:
CardiganSnail!Moon
Also include:
- Upper and lowercase letters
- Numbers
- Symbols like ! or &
Avoid using personal info like birthdays or pet names.
How to Manage All These Passwords?
It’s hard to remember dozens of complex passwords. That’s where a password vault (also called a password manager) helps.
A password vault:
- Stores all your passwords securely
- Uses strong encryption
- Requires just one master password to access everything
- Can be protected with MFA for extra safety
- Works across devices and browsers
Avoid using browser-based password storage – it’s less secure.
What’s Next? The Future of Logging In
Passwords may not be around forever. New technologies are already changing how we log in.
Passkeys
- Use your face, fingerprint, or PIN
- No password needed
- Even if a hacker gets part of the system, they can’t access your account without your device
Hardware MFA
- Physical keys (USB or wireless) that confirm your identity
- Used after entering your password
- Very secure and easy to use
Biometrics & Behavioural Biometrics
- Facial or fingerprint recognition
- Future systems may recognise how you type or hold your phone
Final Thought
Cybersecurity doesn’t have to be complicated. Start with strong, unique passwords and turn on MFA wherever possible. Use a password vault to stay organised and secure. And keep an eye on new tools that make logging in safer and easier.
