10 common security mistakes that should never be made

From Tech Republic

The following is a list of ten security mistakes I see all the time. They’re not just common, though — they’re also extremely basic, elementary mistakes, that anyone with a modicum of security knowledge should know better than to make.

• Sending sensitive data in unencrypted email


• Using “security” questions whose answers are easily discovered


• Imposing password restrictions that are too strict


• Letting vendors define “good security”


• Underestimating required security expertise


• Underestimating the importance of review


• Overestimating the importance of secrecy


• Requiring easily forged identification


• Unnecessarily reinventing the wheel


• Giving up the means of your security in exchange for a feeling of security

Nothing very difficult. In fact some are obvious, although one or two are counter-intuitive. It just helps to think about security a little bit. Click on the link to see more detail.