I’ve written quite a few words for CloudAccess on the importance of password management and cloud security, but I think this list I found through my friends over at iRise Security really hits the nail on the head.
Reuse and recycle passwords. If you do, a hacker who gets just one of your accounts will own them all.
Use a dictionary word as your password. If you must, then string several together into a pass phrase.
Use names of loved ones, dogs, birthdays, birthdays of loved ones or dogs. These are easily traceable online. Just think of how many pictures on Facebook you tagged with “Rover.
Use standard number substitutions. Think “P455w0rd” is a good password? N0p3! Cracking tools now have those built in.
Use a short password—no matter how weird. Today’s processing speeds mean that even passwords like “h6!r$q” are quickly crackable. Your best defense is the longest possible password.
Keep the password provided by an application/website: Always change it. If you don’t, the listing is somewhere easy to be found.
Enable two-factor authentication when offered. When you log in from a strange location, a system like this will send you a text message with a code to confirm. Yes, that can be cracked, but it’s better than nothing.
Give bogus answers to security questions. Think of them as a secondary password. Just keep your answers memorable. My first car? Why, it was a “Camper Van Beethoven Freaking Rules.”
Scrub your online presence. One of the easiest ways to hack into an account is through your email and billing address information. Sites like Spokeo and WhitePages.com offer opt-out mechanisms to get your information removed from their databases.
Use a unique, secure email address for password recoveries. If a hacker knows where your password reset goes, that’s a line of attack. So create a special account you never use for communications. And make sure to choose a username that isn’t tied to your name—like email@example.com—so it can’t be easily guessed.
Use self-service when offered. It’s only a matter of time until you forget the password to that application you need. So you’re bound to click “I forgot my password” In solutions like identity management there is a function that allows users to control and reset passwords without involving any other person. And if they provide a temporary password, change it the next time you access the application.
At CloudAccess our platform ensures that your sensitive information is highly encrypted for extra security. To learn more about how you can protect you and your clients’ from hackers visit our homepage to learn more.