Massachusetts Division of Banks · MA
2025 Cybersecurity Awareness Month: Use Strong Passwords
October 13, 2025
Summary
The Massachusetts Division of Banks issued guidance for financial institutions to improve cybersecurity by mandating complex, unique passwords and the use of encrypted password managers. Firms are encouraged to adopt these standards for all staff to reduce the risk of credential-based data breaches.
- Division of Banks
- Office of Consumer Affairs and Business Regulation
What makes a strong password?
- Long
- At least 16 characters
- Random
- Upper- and lower-case letters
- Numbers
- Special characters
- Spaces
- Consider passphrases (5-7 unrelated words).
- Unique
- Different for each account
- NEVER reuse passwords.
Use a Password Manager
- Why use a password manager?
- Stores your passwords.
- Alerts you of duplicate passwords.
- Generates strong passwords.
- Fills in your login credentials on websites to make sign-in easy.
- Won't fall for a phishing website, even if you do.
- Encryption ensures that password managers never "know" what your passwords are, keeping them safe from cyberattacks.
Division of Banks
The Division of Banks (DOB) is the chartering authority and primary regulator for financial service providers in Massachusetts. DOB's primary mission is to ensure a sound, competitive, and accessible financial services environment throughout the Commonwealth.
Office of Consumer Affairs and Business Regulation
The Office of Consumer Affairs and Business Regulation protects and empowers consumers through advocacy and education, and ensures a fair playing field for the Massachusetts businesses its agencies regulate.
Image credits: Cybersecurity and Infrastructure Security Agency: CISA.gov
Source: https://www.mass.gov/news/2025-cybersecurity-awareness-month-use-strong-passwords
Common questions
- What does "2025 Cybersecurity Awareness Month: Use Strong Passwords" cover?
- The Massachusetts Division of Banks issued guidance for financial institutions to improve cybersecurity by mandating complex, unique passwords and the use…
- Which agency issued this update?
- This update was issued by Massachusetts Division of Banks.
- When was it published?
- It was published on October 13, 2025.
Related updates
- Lakeview Loan Servicing, LLC, Pingora Loan Servicing, LLC, Community Loan Servicing, LLC, and Bayview Asset Management, LLC Multistate Settlement Agreement and Consent Order issued by the Division of Banking
- Pionex, Inc. Consent Order issued by the Division of Banking
- Two Ocean No-Action Letter: Digital Asset Custody & Qualified Custodian Status
- Ultralight FS,. Inc., formerly known as Obopay, Inc., also doing business as Obopay USA
- Updated Nonbank Ransomware Self-Assessment Tool (R-SAT)
- ACI Payments, Inc. Settlement Agreement and Consent Order issued by the Division of Banking