This article details the list of words not to be used within a password for an IWU Employee.
Organizations often have lists of words that should not be used in passwords for security reasons. These lists are usually referred to as "password blacklists." The primary purpose of such blacklists is to enhance the overall security of user accounts by preventing the use of easily guessable or commonly used passwords. Here are some reasons why organizations implement these lists:
Common Passwords: Blacklists often include commonly used passwords that are easily guessable or have been widely exposed in data breaches. Using these passwords makes it easier for attackers to gain unauthorized access.
Industry-Specific Terms: In some cases, organizations might include industry-specific terms or jargon that could be easily associated with their business. This is done to prevent attackers from exploiting domain-specific knowledge to guess passwords more effectively.
Sensitive Information: Organizations may include words or phrases related to their specific business or industry that are considered sensitive or confidential. Using such terms in passwords could increase the risk of unauthorized access, especially if the passwords are exposed or leaked.
Protecting Against Social Engineering: Password blacklists help defend against social engineering attacks, where attackers attempt to guess passwords based on personal information or details specific to the target. By excluding certain words or terms, organizations aim to make it more difficult for attackers to exploit personal information.
Compliance Requirements: Some industries and regulatory standards (e.g., PCI DSS, HIPAA) mandate the use of strong and secure passwords. Maintaining password blacklists is one way organizations can demonstrate compliance with these security standards.
Preventing Dictionary Attacks: Password blacklists help prevent the use of easily guessable passwords by excluding dictionary words or common phrases. This helps protect against dictionary attacks, where attackers systematically try every word in the dictionary as a potential password.
Please refrain from including the following words in your password. If the IWU system sees these words in your password they may be rejected and not permit you to keep the password by forcing a change or blocking an attempt to change your password.