In dentistry, we are committed to ensuring the health and well-being of our patients.
As our practices become increasingly digitized, our responsibility extends to the protection of our patient data as well.
What can happen with stolen passwords?
One online threat that we must be aware of is what happens when our credentials end up on the dark web. The dark web is where cybercriminals post our data when they have stolen it.
This usually happens because we’ve been involved in a breach, or have been tricked into handing them over when we interacted with a phishing website. Cyber-criminals take this data and use it in a tactic known as credential stuffing.
What the heck is “credential stuffing”?
Credential stuffing is a type of cyber attack where hackers use stolen usernames and passwords from one breach to gain access to other online accounts.
It’s really like using the same key for multiple locks. If someone gets a hold of that key, they can potentially get into all of the locks.
This type of attack relies on the common, but unsafe practice of using the same credentials across multiple websites or services. It’s hard to avoid because it is difficult to remember all of those different combinations of credentials for all of our online accounts.
However, these attacks are very common and can be particularly damaging by leading to unauthorized access to sensitive data, financial losses, and potentially damaging the reputation of your dental practice.
Other issues related to stolen passwords
- Phishing Attacks: Stolen passwords can be used in phishing attacks. Where cybercriminals trick individuals into providing their login credentials by posing as a legitimate entity. This can lead to unauthorized access to sensitive information and accounts.
- Identity Theft: Stolen passwords can facilitate identity theft. This is where cybercriminals impersonate individuals to carry out fraudulent activities, access financial accounts, or commit other crimes using the stolen identity.
- Data Breaches: Stolen passwords can be part of a larger data breach, where a significant amount of sensitive information, including login credentials, is exposed. This can have severe consequences for both individuals and organizations. It can lead to financial losses, reputational damage, and legal implications.
Easy steps to protect you and your practice
Just as we strive for unique dental solutions for each patient, we must also aim for unique credentials for each of our online accounts. This helps keep you and your practice safer from things like credential-stuffing attacks.
Because it’s crucial to use strong, unique passwords for every single online account, implementing a password manager can help manage this process by securely storing complex passwords for each online account. Let the password app create strong passwords, or create strong and unique passwords only you can decipher. Opt for something like “Floss1nj@Sm!le” over “temp123”.
In addition to that, activating two-factor authentication adds an extra layer of security by requiring a second step to verify the user. This is usually facilitated by sending a special code through a text message, app, or email. Everyone should activate this feature whenever possible.
Together we can make dentistry safer online.