Including symbols in passwords is considered a password security best practice because it enhances the complexity and strength of the password. Passwords that incorporate a mix of upper and lowercase letters, numbers, and special characters significantly increase the number of possible combinations that an attacker must try when attempting to crack the password. This higher complexity makes it much more difficult for unauthorized individuals to gain access through brute-force attacks or dictionary attacks.
Utilizing symbols is especially important in today’s threat landscape where attackers employ automated tools that can attempt millions of password combinations per second. A password without symbols may be easier to remember, but it also is more susceptible to being guessed or cracked, demonstrating why a strong password policy is essential in protecting sensitive information.
The other options illustrate practices that don’t enhance password security or may even weaken it. For instance, using only letters limits the diversity and complexity needed for a secure password, while storing passwords in plain text presents a significant security risk, allowing anyone who gains access to the storage system to read the passwords easily. Changing passwords infrequently does not keep pace with evolving security threats, making regular password updates an important aspect of maintaining security.