Do you use strong passwords? Below are excerpts from IR-2018-241. I recommend you read the entire message here.
There has been some new thinking as to what a strong password is. The latest guidance suggests using a passphrase, such as a favorite line from a movie or a series of associated words, rather than using a password. The idea is to create a passphrase that can be remembered easily and protect the account.
The IRS, like all federal agencies, follows the cybersecurity framework set by the National Institute of Standards and Technology or NIST, which is a branch of the Department of Commerce. NIST last year rethough its guidance on passwords.
NIST suggested these three steps to build a better password:
Step 1 -- Leverage your powers of association. Identify associated items that have meaning to you.
Step 2 -- Make the associations unique to you. Passphrases should be words that can go together in your head, but no one else would ever suspect. Good example: Items in your living room such as BlueCouchFlowerBamboo. Bad example: Names of your children.
Step 3 -- Picture this. Create a passphrase that you can picture in your head. In our example, picture items in your living room. The key is to create a passphrase that is hard for a cybercriminal to guess but easy for you to remember.