The Tech industry has slowly but surely trying to provide the masses a new way to authenticate themselves to web services. New technology as the Windows Hello built-in to all Windows 10 computers with a webcam and SQRL, a QR code-based login system are currently being polished in order to provide users a convenient alternative to usernames+password combo for user authentication.
However, it will be a hypocrite to say that the two technologies, as well as the fingerprint scanning and face recognition login will replace passwords. We will be using passwords for a foreseeable future due to its simple implementation and does not need additional hardware. Hence we at thethreatreport has compiled a short list on how to better manage user passwords, to protect our readers online, preventing everyone from falling for traps set by cybercriminals:
Clear maneuvers from the obvious
Using a password such as 12345, password1, abc123, 123456789, or similar. Such weak passwords will make it easier for hackers to compromise. Instead, come up with a unique password to avoid personal information, such as your date of birth or your child’s name.
By signing out of your account when you are not using them, make it easy for hackers to steal it and avoid the important company security information being painted over the Internet. Also, when finished, remove the application permissions.
Do not use dictionary words
Sophisticated hackers have programs that search tens of thousands of dictionary words. Avoid using dictionary words to avoid damage from dictionary attack programs. Choose a random password instead.
Protect your mobile phone
Mobile devices are becoming a major source of concern in the security community as the use of mobile phones to do business, shops, etc. increases. Help protect your phone and other mobile devices from hackers by protecting your phone with a strong password. Or better, use a fingerprint or face recognition password to back hackers.
Use the online test tool to make sure your password is strong. Microsoft’s Safety & Security Center has a password testing tool that helps businesses and individuals come up with passwords that are less likely to be hacked.
Create a strong password
Strong passwords make it extremely difficult for hackers to break into a system. A strong password is at least 15 characters long and consists of letters, numbers, and symbols. It contains both upper and lower case letters.
Make the password not too long
Passwords that sneak into over 10 characters can be very difficult to remember. 10 characters are considered optimal for security but a 15 character password is considered as very strong.
Warn about safety
No matter how powerful and secure your password is, your password is not secure if the hacker’s spy program is monitoring your keyboard input. Keeping your device updated regularly with the latest virus scanners makes the life of cybercriminals as difficult as possible.
Do not bundle numbers and symbols together
One often overlooked good password practice has overlooked spreading numbers and symbols across passwords rather than putting them together to make it easier to hack them.
Use a different password for each account
Remember to use the same password for all accounts, as it is attractive. However, this makes it easy for hackers to break into many accounts. Use different passwords for each account to diversify passwords.
Use two-factor authentication
Two-factor authentication helps protect your account and data from hackers. This very effective security measure requires you to enter an email, SMS, or PIN sent in the app. As a result, two-factor authentication protects against password theft and prevents outsiders from accessing your system or account.
Change password regularly
You may also want to save the same old password for many years, so you should not forget it. However, changing your password regularly is a good password practice to take advantage of your business’s security agenda to help hackers.
Change your password when your employer leaves your business
Unfortunately, it’s not unusual for a well-behaved employee to become the worst enemy of your business. Don’t get upset by the customary practice of an angry ex-employee breaking into your business account and changing passwords when the employee leaves your company.
Do not save the password in plain text
It may sound clear, but avoid storing the password in plaintext or on paper, as such information may be stolen by people with malicious motives. If you must save your password to your computer or smartphone, use a password manager. One excellent password vault is KeePass. More and more businesses and professionals use password managers as a means to practice and maintain a high level of security. With Password Manager, you only need to remember one password, as Password Manager saves and creates passwords for different accounts and automatically signs in when you log on.