Account Security Basics
Below are some basic security tips for all users to follow.
1. Never give out your password via e-mail or phone. IT will NEVER ask for it in this manner. If you do get a message requesting a password, even if it is from it@virginwines.co.uk or another member of IT , this e-mail is to be considered a threat and should be reported to IT immediately. This will help you to thwart Social Engineering techniques where an attacker tries to convince you they are legit and need information.
2. Do not share your password under any circumstances. This goes without saying and is a major security risk. If someone sends an email or edits a file while logged into your account, it will be practically impossible to prove it wasn’t you. If you need someone to access your account while you’re away, please contact IT with as much notice as possible and we can provide access. The same is true if you need to access someone’s account while they are away.
3. Passphrases are easier to remember than passwords and more difficult to crack if you use sentences. “Ilovefriedtoast1387.” Is a good example of a password that is very difficult to break and easy to remember. Avoid using names of children, pets or partners as these are easy to guess for someone who knows you. If you need to generate a memorable password this website can do so: http://correcthorsebatterystaple.net/
4. Never write down passwords. If you have a shared account that others need to be able to access then there is an encrypted password safe that can be used for this. Please raise a ticket if you need access.
5. Do not leave your computer unlocked. Similar to point number 2, if somebody does something from your PC while it is unlocked it will be hard for you to prove it wasn’t you. There are 2 simple ways to lock your computer without closing any applications. Hit Ctrl + Alt + Del and click Lock this computer or press Win + L; the Win button is that button between Ctrl and Alt with the Windows logo.
6. Do not use your password from the network for other accounts. We cannot guarantee the safety of your password in other locations, so if it gets compromised or sold elsewhere, it compromises our network. So make your password unique to Virgin Wines.
Guide on changing your password here: https://confluence.virginwines.co.uk/pages/viewpage.action?pageId=27230428