4 important do’s and don’ts in password storage
By Cynthia Lodite, October 6, 2025When it comes to cybersecurity, how you store passwords can make or break your system’s safety. Storing passwords in plain text is like leaving your house keys on the front door; it’s an open invitation for attackers.
To protect users and systems from breaches, passwords must be securely scrambled using proven techniques that make them unreadable, even if stolen. Here’s how to do it right.
Also Watch: “ Ukiitisha password kuna kitu unatafta na utapata “
Firstly, never store passwords as plain text because if someone steals them, they can use them instantly. Instead, scramble them using special tools so even if they are stolen, they become useless. How to safely store passwords.
Also, it is important to hash your passwords. Think of hashing like turning a password into a secret code. It’s a one-way; hence, once scrambled, you can’t turn it back.
Another option for storing your passwords safely is by salting; this basically involves adding a random value (called a “salt”) to each password before hashing. This makes sure that even if two people use the same password, their codes look different.
Also Watch: Identity theft syndicate: Stolen ID’s used to commit crime
Similarly, another better way of storing your passwords properly is through peppering. This involves adding a secret value that only the server knows—extra protection.
In addition, key stretching can also make the scrambling process slower and make it harder for hackers to guess passwords quickly.
Use of MFA
Likewise, ensure extra safety while creating emails by using strong password reset systems (no sending passwords by email).
Also, keep logs of who changes passwords while ensuring you follow privacy laws like GDPR to protect users’ Multi-Factor Authentication (MFA).
Worth noting, multi-factor authentication means using more than one way to prove who you are when logging in. It’s like having a backup lock on your door.
MFA uses something you know—like your password—or something you have, like your phone or a special key.
In addition, MFA uses something you are familiar with, like your fingerprint or face. In MFA, even if someone steals your password, they still can’t easily get in without the other part, which is very secure.
Cyber Security month
Meanwhile, worth noting is that cybersecurity Awareness Month is celebrated every October, globally. It’s a collaborative effort between government and industry to raise awareness about the importance of cybersecurity and provide resources to help individuals and organizations stay safe online.
The campaign, which started in 2004, aims to educate people about common cyber threats like phishing, ransomware, and social engineering tactics. Each year, Cybersecurity Awareness Month focuses on a specific theme, with 2025’s theme being “Secure Our World”.