Strong password standards in 2024: Changes and best practices

Did you know that your formerly strong password may no longer be secure? Sad, but true – because cybercriminals are able to break previously hard-to-crack passwords with the help of artificial intelligence (AI) as well as hacking systems and programs that are growing ever more effective and efficient. And as the threat levels increase, so do the requirements for a secure password. ?

by Alyssa Schmitt

The evolution of password standards

Due to the rise in cybercrime, the security requirements of companies and government agencies are becoming stricter. ?With good reason: given all the sensitive customer information handled by email services, online stores, healthcare providers, educational institutions, etc., it is essential that they guard against unauthorized access and data theft.With this in mind, institutions and businesses take the security of access data very seriously, and part of this is a strong password policy. Since the passwords and PINs of their employees and customers are potential targets for hackers, they must meet increasingly strict minimum password requirements. ?A password like “Mom2010” no longer makes the grade. When users create a new password, it must meet the service’s password rules or else it will not be accepted by the system.??

What is a password policy?

A password policy is the set of requirements for the passwords used by the customers and/or employees of a company, a government agency, etc. For example, a password policy might include:

• Minimum standards for password length
• Password complexity requirements
• Rules against reusing passwords or using ones that have appeared in a data leak
• Expiration dates for passwords
• Limits on the number of incorrect password entries

How do I know if an old password is too weak?

If you save your passwords in a password manager – whether with a third-party tool, iCloud Keychain on your Apple device, Google Password Manager in your Google account, etc. – any weak, compromised, or recycled passwords will usually be flagged. For example, if you open the password manager on your iPhone you may see Security Recommendations at the top, and by tapping you see a list of which of your passwords should be updated in keeping with current password recommendations.If your old password no longer meets the strong password policy standards of a service such as your online bank, sometimes that service will notify you with a pop-up or a message AFTER you have logged in.

However, if you receive an email telling you to click a link to “update your password” you should NEVER do it – this is a common phishing scam and will most likely result in your password data being stolen.

Would you like to find out how to create a password that meets strong password requirements in 2024? Read the full article!