‘Hackers find it irresistible’ if you see these 6 greatest password errors, says safety knowledgeable

Elevated cyberattacks in 2022 have created a high-risk web panorama. However for many individuals, hitting “refresh” on their password habits nonetheless is not a precedence.

As a cybersecurity advisor, I constantly hear tales about folks getting their private info stolen as a result of they made a easy mistake like utilizing the identical password for a number of web site logins.

After 20 years of finding out on-line felony behaviors, ways, methods and procedures, I’ve discovered that hackers find it irresistible when folks make these six password errors:

1. Reusing the identical password.

2. Only creating unique passwords for ‘high-risk’ accounts.

Many users only create unique passwords for accounts they believe carry sensitive information, or that have a higher likelihood of being breached, like online banking or work applications.

But even basic user information that lives on “throwaway” accounts can contain data points that fraudsters use to impersonate legitimate users. Just your email address or phone number alone can be valuable to bad actors when combined with stolen information from other breaches.

What to do: Protect all accounts — even the ones you rarely use — with one-of-a-kind passwords.

3. Not using password managers.

4. Creating simple passwords that contain personal information.

The best passwords aren’t necessarily complex, but they are hard to guess. Passwords that provide the high protection are personal to you and don’t contain easily gleaned information, such as your name and birthday.

For example, strong password foundations may be a favorite song lyric or your go-to order at a restaurant.

What to do: Design passwords that are at least 12 characters long and avoid using personal information that can be easily guessed. They should also be memorable to you and contain a variety of characters and symbols.

5. Opting out of multi-factor authentication systems.

Even the most complicated passwords can be compromised. Multi-factor authentication creates an extra layer of protection by requiring verification beyond your username and password each time you log in.

Most often, this is done through one-time passwords sent to you via SMS or email. It’s an extra step, but it’s well worth it — and it creates another hurdle for attackers to jump through.

What to do: There is no way to add two-factor authentication to services that don’t natively offer it, but you should turn it on wherever it’s supported.

6. Being apathetic about password habits.

Leave a Reply

Your email address will not be published. Required fields are marked *

GIPHY App Key not set. Please check settings

Previous Story

No full consensus; meals safety, inflation, Ukraine conflict high agenda

Next Story

South Korea not frightened about capital outflows for now: Finance minister