Is your pA55w0rD strong enough?

WCRC marks World Password Day.


To mark World Password Day, we wanted to take this opportunity to raise awareness of how important the choice of your password is in protecting yourself and your business against cyber criminals.


Did you know that 43% of all cyberattacks are aimed at small businesses and yet only 14% are fully prepared in the event of an attack?


As a business owner in Wales, it is likely that your accounts will hold personal data regarding yourself and your customers. Choosing one single password for all your accounts could put your company at more risk of a cyber incident, where your valuable data could be stolen.


The aftermath of a cybercrime such as this can put your business at legal or financial risk, as well as breaking the General Data Protection Regulation (GDPR).


So why do hackers want my passwords?

For hackers, obtaining your password is like a burglar stealing the front door key to your house or business premises. A password is the key to the front door of your business, and once they have the key, they have unpermitted access to the contents of your organisation.


Why do hackers want to access my emails?

If a criminal gets into your email, they could reset the passwords for your other accounts using the ‘forgot password’ feature or access information about yourself or your business.


How can I strengthen the security of my email accounts?



  • Use a strong and separate password for your email.

  • Your email password should be strong and different to all your other passwords. This will make it harder to crack or guess.

  • Using three random words is a good way to create a strong, unique password that you will remember.

  • You should also protect your other important accounts, such as banking or social media.

  • Two-factor authentication is a name for any login or entry system which requires two different methods of identifying yourself. It’s one of the most recommended security features for online accounts, and for good reason.

Here at The Cyber Resilience Centre for Wales, we offer a range of services for businesses to help identify your digital vulnerabilities and weaknesses or, if you are a victim of a data breach, we can run an individual internet investigation that would identify what personal or private information is publicly available online.


We also offer a range of membership packages that are designed to help your business become more cyber resilient.




The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of The Cyber Resilience Centre for Wales is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others. Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. The Cyber Resilience Centre for Wales provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.

The Cyber Resilience Centre for Wales does not accept any responsibility for any loss which may arise from reliance on information or materials published on this document. The Cyber Resilience Centre for Wales is not responsible for the content of external internet sites that link to this site or which are linked from it.