According to an expert from ESET, a single password can cause more damage than expected. Security specialist Jake Moore suggests that cyber criminals can easily steal data if they gain access to a password related to an email account.
As a result, there is a high demand for email credentials on the dark web, with a set of just 1000 active email credentials selling for £75 or more if it belongs to an enterprise network. Data breaches, phishing, and poor security practices often result in such data leaks, leading to significant embarrassment.
One factor contributing to this trend is the use of easily guessed passwords, such as a celebrity’s name or a favorite football team.
Another significant danger is people using the same password to secure different accounts. In many cases, technology companies encourage this practice, such as Google, which offers a single password to access all its service platforms, including email, Drive, YouTube, and more.
ESET suggests that the best way to avoid data leak embarrassments is to use a single password consisting of at least 15 characters and including 1-2 special characters. Enabling biometric or 2FA authentication adds an extra layer of security to the password, making it more challenging for cyber criminals to bypass these security measures.
For enterprise environments, avoiding clicking on email links sent by unknown senders also improves their in-house security.