Microsoft recently updated its cybersecurity recommendations, introducing a significant change in password management.
Setting a periodic password expiration is no longer recommended., a practice now considered outdated, as it can push users to choose weaker and more easily predictable credentials, reducing the effectiveness of protection measures.
In its place, Microsoft promotes a more modern and secure approach, which is based on three fundamental pillars:
Using complex and strong passwords, difficult to guess or force;
Removing automatic password expiration, unless there is suspected compromise;
Adopting multi-factor authentication (MFA), for advanced access protection.
👉 We encourage all users to update their credentials, where necessary, and to follow these new best practices to ensure greater security of their accounts and company data.
Vertigo is here to provide support and analysis.
