If your password is compromised, you jeopardize:
- Your privacy & reputation: Intruders may gain access to your email, bank account, and other sensitive information. Your identity may be stolen. Your email can be used to send defamatory messages in your name and your computer can be used to host illegal materials.
- Your files: The contents of your computer may be destroyed or compromised.
- Other computing resources: Hackers could use your computer to attack other machines in the same network.
It is critical that you create strong passwords that you maintain appropriately. Remember, in computer security, passwords are always the weakest link!
Use Different Passwords for Different Services
Change Your Passwords with Daylight Savings
Do Not Share Your Password
Do Not Save Your Password
Do Not Write Down Your Password
Use Different Passwords for Different Services
If you are using the same password for your email, bank account, and computer, and one account is hacked, all other are at risk. Create at least three different passwords. For:
- Your OIT Account
- Accounts that contain sensitive personal information (e.g., your bank account)
- Web sites that require registration (e.g., Amazon)
To keep track of your passwords, use one of our password tricks.
Change Your Passwords with Daylight Savings
Passwords become vulnerable over time. To prevent random attacks, we recommend that you change your passwords at least twice a year, on the same day you update your clocks for daylight savings. If you suspect that your password has been stolen or compromised, change it immediately. Learn how to change your OIT Account password in SPIRE.
- Malware and other viruses are known for stealing passwords. Please change all your passwords after cleaning up from a virus infection. If you suspect your computer has a virus, do not access any service that requires you to enter a password (e.g., online banking).
- If you have administrative access to the Human Resources system, you are required to change your OIT Account password every 180 days. more...
Do Not Share Your Password
By making your passwords available to others (even people you trust), you put your personal information at risk. Please do not share your passwords!
Never send passwords or other sensitive personal information via email even if
the original message appears official. Learn more about phishing
scams.
Note: OIT will never ask for your OIT Account password or
other sensitive information via email.
Do Not Save Your Password
Some applications will offer to save your passwords. Always choose 'No' when prompted to save a password online. We recommend that you create a reminder for your OIT Account password and use our password tricks to create strong passwords that you can actually remember.
Do Not Write Down Your Password
Storing passwords on post-it notes on your monitor is an open invitation to access your information. At OIT, we believe no location is safe enough for storing passwords. If you absolutely must write down your passwords:
- Write down password hints, not the actual password.
- Keep your user name and passwords separate, not in the same document.
- Use a safe location (e.g., your wallet, a locked file cabinet, or password storage software).
