[James Settle]

Excellent post Teisha. I pointed out poor user behavior as an issue as well. Leaving passwords out in the open, or written down on a post it, taped to the monitor, leaving a workstation unlocked on breaks and lunches. All user behaviors that increase the likelihood of vulnerability to cyberattacks. Companies have attempted to curb such behavior by adding features to change passwords every 90 days & not being able to add incremental numbers to the end of existing passwords. Even though things have become more frustrating for employees, any and all efforts to create stronger more complex combinations of alphanumeric passwords with requirements to have at least one number, one capital letter, and one symbol as well as minimum password length requirements are all considered best practices.