If someone shares secure data by mistake, this could cause serious repercussions to them, and the business they work for. In most cases, we (humans) are our own worst enemy. Most secure data “incidents” occur due to human error.
Unfortunately, there are many criminal entities that exist solely to obtain compromised sensitive information. This technique known as business email compromise focuses on using Phishing techniques to get at files and folders. Whereas if the files and folders are password protected, they would require a password to open.
One of the most prominent examples happened nearly 14 years ago. When an external consulting agency lost a USB drive containing over 80,000 files on prisoners within HM Prisons.
The drive was in an insecure area of the business and likely lost or stolen. This led to a financial loss of millions in contracts for the consulting firm. Seriously damaging their reputation. Afterward, it is likely they made significant changes to their security policies, including password-protected folders and encrypting contents to secure against unauthorized use.
When you password-protect files or password protect a folder, you protect a folder or the files contained within. Impeding any criminal activity relating to lost or stolen files.
It is sometimes unnecessary to password protect entire folders. For instance, some information contained within may be less restricted. In this case, it would be better off to password protect individual files, this would ensure only the select file would require a password.
All of our cPanel customers can use the directory privacy utility. This feature is inbuilt into cPanel software and allows you to password protect directories when accessed via a URL. You might have a few reasons for wanting to do this, if you’re running a WordPress you could use this feature to lock access to your /wp-admin page or any page on your site.
This provides another layer of authentication and gives you a little more peace of mind. Password protecting a directory also means that you can restrict sensitive information to yourself or other “higher level” users.