Identity Protection
Your username, password, and other login credentials are the keys to your online world. Losing control of these credentials can lead to stolen identities, compromised accounts, and even attacks on your organization or community.
Whether at home, school, or work, following a few simple best practices keeps your identity and data secure.
Password Guidelines
Weak or reused passwords are one of the easiest ways hackers gain access to accounts. Strong, unique passwords make it much harder for attackers to break in.
- Length: Use a minimum of 12 and no more than 64 characters
- Complexity: If possible, include uppercase, lowercase, numbers, and symbols
- Avoid: Writing your password down somewhere like a sticky note
- Uniqueness: Never reuse passwords across accounts
Avoid personal information like names, birthdays, or simple sequences like "123456". Always verify the login page before entering credentials.
Password Managers
A password manager securely stores all your passwords in one encrypted place. You only need to remember one master password.
- Generate complex, unique passwords for every account
- Automatically fill passwords on trusted sites
- Keep your login information encrypted and safe
Multi-Factor Authentication (MFA)
MFA adds a second layer of security—something you know (password) plus something you have (phone, token, biometrics, etc).
- Only approve MFA requests when you are actively logging in.
- Be cautious of unexpected prompts—this could indicate an attack.
- Use app or hardware tokens for the strongest protection.
MFA is especially important for administrator accounts, remote access, and any system containing sensitive data.
