Blogs & News

Back to articles

How to have a more secure sign-in process

One of the most important ways to ensure the safety of your online accounts is to keep your sign-in process secure.

Follow this advice to help keep your accounts out of the wrong hands.

Hackers don’t break in; they sign-in. If you use passwords as part of your sign-in process, you’ll need to make sure they are as strong as possible.

Strong passwords are:

  • At least 12 characters long (but 14 or more is better)
  • A combination of uppercase letters, lowercase letters, numbers, and symbols
  • Not a word that can be found in a dictionary or the name of a person, character, product, or organisation
  • Significantly different from your previous passwords
  • Easy for you to remember but difficult for others to guess
  • Allow Microsoft Edge to generate and save a highly secure password for your account

Once you’ve created strong passwords that hackers can’t crack, you must keep them secure. If they can’t break your passwords, criminals will try to trick you into revealing them.

To keep your passwords as safe as possible, follow these guidelines:

  • Don’t share a password with anyone—not even a friend or family member
  • Never send a password by email, instant message, or any other means of communication that is not reliably secure
  • Never re-use the same password—all your passwords should be unique
  • Update your passwords frequently
  • Always access websites using trusted links
  • Don’t hesitate to change passwords immediately on accounts you suspect may have been compromised

Creating strong passwords and keeping them secure can be a lot of work, especially when you have multiple passwords to remember and manage across all your accounts.

But what if you didn’t have to manage passwords at all?

Password less sign-in methods like the Microsoft Authenticator App, physical security keys, and biometrics are more secure than traditional passwords, which can be stolen, hacked, or guessed.

** As of November 2023, Microsoft are phasing out the MFA to text sign-in option. Microsoft recommends that users switch to a more secure and convenient MFA option as soon as possible. 

You can find out more about the importance of MFA and the changes that are coming in our blog.

Further Information

If you have any questions about how to keep your organisation safe from phishing attacks, or would like more information about how to keep your organisation protected, then please contact the GCC Group Support Team on 0345 260 1151 or

GCC Security Services

The threats to businesses are not only increasing in number, but also in sophistication. GCC Security Services ensures your business is protected and can stay productive no matter what happens.


GCC Security Packs

Last year alone Microsoft blocked more than 70 billion email and identity threat attacks.
Source: Microsoft, 2023.

To help protect organisations, GCC have developed a range of ‘Security Packs’:

  • GCC Security Base Pack
  • GCC Security Pro Pack
  • GCC Security Pro Plus Pack

Each pack adopts the latest Microsoft technologies, and other cloud-based services to manage, monitor and protect an organisation’s IT infrastructure & data.

Read more

Security Awareness Training

Old school Security Awareness Training doesn’t hack it anymore.

Today, your employees are frequently exposed to sophisticated phishing and ransomware attacks. More than ever, your users are the weak link in your network security.

With Security Awareness Training your business can help create a ‘Human Firewall’ which can protect against malicious emails.

Read more

Cyber Essentials

Cyber Essentials is a UK certification scheme for a business to show a level of protection in cyber security. This scheme will help you protect your business against a range of the most common cyber attacks.

The scheme is backed by the UK Government and overseen by the Cyber Security Centre.

Read more