Did you lose your keys?
Note: The following is a “Vigilize Post.” If you want regular fodder for your security awareness reminders, along with catchy subject lines if you intend to use e-mail, consider following us on www.twitter.com/vigilize! Each week we tweet a post that you are welcome to customize to your own situation. The tweet itself is designed to be an e-mail subject line that will entice your users to at least open the message. This is in reaction to a very common complaint from our ISO clients: “They don’t even open my awareness reminder e-mails.”
Protect Your Passwords!
The password is the “key” to our systems. We must protect our passwords much in the same way we protect our keys.
Do not share your passwords with anyone. In addition, passwords must not be:
- Written in any format
- Revealed over the phone to anyone
- Revealed in an e-mail message
- Revealed on questionnaires or security forms
- Discussed about in front of others
- Hinted at or made easy to guess
- Used in sync with or duplicated by personal passwords or Web accounts
- Shared with family members
- Shared when out of the office
- Typed in or saved in electronic documents
In addition, do not use the “Remember Password” feature found with some applications (e.g. Outlook, Netscape, Messenger, Mozilla). Anyone gaining access to your system could then easily gain access to confidential information.
Click here for more information about User Awareness Training.
The purpose of Vigilize is to respond to ISO’s complaints that users never read ISO’s “ongoing security awareness training reminders.” Our tweets are designed to be copied into the subject line of your awareness reminder, with the language on these pages put into the body. The goal is that the user will have to read the subject line to know to delete the message, and if they understand the subject line the reminder is communicated. If not, they will go into the message and read the reminder.
Feel free to use Vigilize in your own Security Awareness Program. Let us know if you have any ideas, suggested tweets, or ways to improve this FREE service.
Leave a comment
Consolidating passwords and other account information can save time, but expose you t Read more
The FDIC has released new training material to help small banks start a discussion on Read more
New FBI statistics suggest compromised business email accounts have led to over 12 bi Read more
While already happening in practice, the new legislation would officially make it one Read more