Intelligent CISO Issue 22 | Page 27

WHAT BEST PRACTICE APPROACH SHOULD BUSINESSES TAKE TO PASSWORD SECURITY? P assword protection is a critical component of a strong business cybersecurity strategy. Riaan Badenhorst, General Manager of Kaspersky in Africa, said that cybercriminals’ tactics have grown in sophistication and at an alarming rate over the last few years. “Threats are becoming more targeted and specific with advanced threat actors being used to carry out damaging attacks,” Badenhorst said. “Our research shows that threats will only become more targeted and dangerous in 2020. No one business is immune to this reality and threat – especially as businesses and their employees continue to operate and conduct daily work operations in the digital landscape – and so appropriate protection measures must be considered.” Badenhorst continued by saying that while the evolution of technology and www.intelligentciso.com | Issue 22 people’s lifeline both in a personal and professional capacity – just think about email as an example. In fact, it is rare to find someone who doesn’t feel somewhat lost or unproductive if they don’t have access to their laptop, smartphone device or emails throughout the day.” all things digital has reshaped and revolutionised the way people work and conduct business today – offering a convenience that is simply considered unsurpassed – the digital world brings with it risks that businesses need to be aware of and prepared for. “One such risk, and where many businesses are being compromised today, is that of a lack of sufficient password protection. Various types of technologies, devices and accounts are used to carry out work tasks and to communicate on a daily basis,” he said. “Many of these aspects become Badenhorst is correct in saying that as these devices and accounts become more entrenched into daily life, they continue to exchange and store an increasing amount of data – and often very valuable data, including business critical and sensitive information. If these devices and/or accounts are not adequately protected and do not have strong passwords, they are at an increased risk of cybercriminal attacks, which if happens, could lead to devasting consequences for a business – think financial and reputational loss. “Password protection and password- based strategies must be a top priority for businesses driving forward a digital approach, and with this must form a core part of any strong cybersecurity policy,” said Badenhorst. 27