Did you lose your keys?
Note: The following is a “Vigilize Post.” If you want regular fodder for your security awareness reminders, along with catchy subject lines if you intend to use e-mail, consider following us on www.twitter.com/vigilize! Each week we tweet a post that you are welcome to customize to your own situation. The tweet itself is designed to be an e-mail subject line that will entice your users to at least open the message. This is in reaction to a very common complaint from our ISO clients: “They don’t even open my awareness reminder e-mails.”
Protect Your Passwords!
The password is the “key” to our systems. We must protect our passwords much in the same way we protect our keys.
Do not share your passwords with anyone. In addition, passwords must not be:
- Written in any format
- Revealed over the phone to anyone
- Revealed in an e-mail message
- Revealed on questionnaires or security forms
- Discussed about in front of others
- Hinted at or made easy to guess
- Used in sync with or duplicated by personal passwords or Web accounts
- Shared with family members
- Shared when out of the office
- Typed in or saved in electronic documents
In addition, do not use the “Remember Password” feature found with some applications (e.g. Outlook, Netscape, Messenger, Mozilla). Anyone gaining access to your system could then easily gain access to confidential information.
Click here for more information about User Awareness Training.
The purpose of Vigilize is to respond to ISO’s complaints that users never read ISO’s “ongoing security awareness training reminders.” Our tweets are designed to be copied into the subject line of your awareness reminder, with the language on these pages put into the body. The goal is that the user will have to read the subject line to know to delete the message, and if they understand the subject line the reminder is communicated. If not, they will go into the message and read the reminder.
Feel free to use Vigilize in your own Security Awareness Program. Let us know if you have any ideas, suggested tweets, or ways to improve this FREE service.
Leave a comment
Many organizations spend time and money deploying endpoint protection, then think the Read more
Some small organizations continue to use customer data to generate initial passwords, Read more
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
Risk isn’t the only thing to consider when planning a decision tree. Another one of t Read more