
How Safe is My Password?
It’s generally recommended that you change your password once every three months or so, but it can be easy to forget or push it off. You may be wondering if it’s really such a big deal? Yes, it is because cybercrime is on the rise. In a 2018 survey of adults, almost 33% said they personally had experienced a hack of their social media and email accounts. This may be because up to 50% of them use the same password for multiple accounts. Read this article to help you secure your passwords and online accounts before you get hacked.
LESSON CONTENTS
What makes a secure password?
Ideally, your password should be made up of a string of random letters, numbers and symbols. Some password manager websites recommend at least 12 letters, numbers and characters.
The most common password of 2020 was 123456. This password was used by 2.5 million users. As you might guess, hackers can crack this password in less than a second. Other common passwords for 2020 included:
- 123456789
- Picture1
- Password
- 12345678
- 1111111
These are weak passwords and can be cracked in a short amount of time. You also want to avoid using anything that would be easy to figure out such as your birthday, your spouse’s name or birthday or your kids’ birthdays.
How do hackers steal passwords?
Hackers are a creative and technologically adept bunch. There are all sorts of ways a good, or even an average hacker can crack your password. Here are some of the most common ways.
Brute force attack
A hacker will simply try to guess your username and password, often by using programs. This allows them to try many combinations of letters and numbers until they find one that works.
Dictionary attack
A dictionary attack is similar to a brute force attack, but it uses a list of passwords that have a high probability of success. They use all the most common passwords, plus passwords like popular sports teams, organization names and other easy-to-remember passwords people like to use. They often try variations of spring, summer, winter and fall in the corresponding season because they know some people do change their passwords with the seasons.
Phishing
Phishing is when someone tries to get your personal information by asking you to click a link or verify information over the phone. Many cybercrimes begin with phishing attacks. These emails often say there’s a problem with your account and your response is needed, or sometimes they send you a fake invoice for something you know you didn’t order. Then they ask you to click a link. If you have any questions at all about whether an email is legitimate, it’s best to go to the company’s website and log into your account there. Don’t click anything.
Credential stuffing
Credential stuffing tests databases or lists of stolen credentials. Hackers can purchase these lists and personal information from the dark web or other illegal sources. If you use the same password across multiple accounts, they have access to all of them.
How to Create a Secure Password
These are the steps you should take to create a strong password:
- Passwords should be 16 characters or more.
- Use a combination of random letters, numbers and symbols.
- Also use a combination of upper and lower case letters, LiKeThiS.
- Don’t share passwords with anyone.
- Don’t use passwords that contain any personal information, such as your maiden name, your address or your pets’ names. Anyone can find this information on social media.
- Do not use the password “password” or “PaSSwOrd.” Do not use the same letter or number repeated over and over, such as aaaaa or 12121212.
You should change your passwords every so often, and don’t reuse passwords you had before. Some experts say you should change your password every three months, while others say if you have a strong password you don’t have to change it unless it’s been compromised. This is especially true if you use multi-factor authentication.
You can also use a password strength checker. These are available online and some of them are free.
What else should I do to protect myself online?
You’re probably wondering how you’re going to remember these random strings of letters and numbers for all the websites you visit. The answer is a password manager. These can keep your passwords safe in an encrypted vault, and you can change and update them as often as you like. Some password managers will fill your passwords in for you and look for weak or compromised passwords and send you an alert if it finds any.
What else should you do to keep yourself protected from online criminals?
Use antivirus software
Antivirus software will scan your computer for malware, ransomware and other security compromises.
Use a VPN
A VPN is a Virtual Private Network and using one will prevent hackers from keeping track of all of your online activity. A VPN creates a private network from a public internet connection and keeps your information hidden. Many people check their emails and surf the web using public Wi-Fi when they’re waiting for their kids, in restaurants or at coffee shops. A VPN will hide your browsing history and scramble your data so it remains private. Some VPNs are free, and some charge between $5 and $14 a month.
Don’t click on any links in emails that look suspicious
The following brands are the most likely to be impersonated in a phishing attempt:
- Microsoft
- DHL
- Roblox
- Amazon
- Wells Fargo
- Chase
- Apple
- Dropbox
If you get unsolicited emails from any of these companies, you should be suspicious. You could forward the email to the actual company and ask them if it’s real. If it is, they’ll contact you and if it’s not, they have a security team that keeps track of these things. If you get a suspicious email from Amazon, for example, you can forward it to stop-spoofing@Amazon.com.
Be careful with social media
It’s tempting to share personal information on social media—after all, wasn’t that what it was created for? Be careful not to post personal information that can be used to guess your passwords or steal your identity. Remember that after you post something, it’s there forever. You should still be vigilant even if your profile is set to private.
Staying safe online doesn’t have to be difficult. Use a strong, unique password for every site you visit, and use a password manager to keep track of them all. Be safe.
Related Resources
View AllHow to Spot Financial Grooming Scams
Scammers no longer rely on quick-hit phishing scams; instead, they patiently cultivate online relationships — a tactic investigators call financial grooming. This article unpacks how grooming scams unfold and the red flags to watch for. We also detail the practical actions you and your loved ones can take to shut fraudsters out.
How to Protect Yourself from Spear Phishing Attacks
Cyber threats have become increasingly sophisticated, targeting not just large corporations but individuals as well. Among these threats, the spear phishing attack is one of the most deceptive and damaging. So, what is a spear phishing attack, and how do you protect yourself?
Stay Safe in the End Zone: Avoiding Financial Scams During Football Season
Football season is a time for excitement, cheering on your favorite team, and creating lasting memories with friends and family. However, it's also a time when scammers are on the lookout to take advantage of distracted fans. From fake tickets to fraudulent online offers, football season provides scammers with numerous opportunities to trick unsuspecting victims. By staying alert and knowing how to spot common scams, you can protect your finances while enjoying the game.
Protecting Your Finances: Cybersecurity Best Practices
In today's digital world, protecting your finances has become more challenging than ever. With cybercriminals constantly devising new ways to access personal information and compromise accounts, it’s crucial to stay informed and practice good cybersecurity habits. Whether you're managing your finances online or simply browsing the web, knowing how to safeguard your data can prevent financial loss and protect your personal information from falling into the wrong hands.
Chip Card: What is an EMV Card?
Today, most debit and credit cards have multiple ways to transmit data and authenticate a payment. One such way is the small, square computer chips you see on the card. This is called an EMV chip and is used to help protect the user from fraud. Read this article to learn more about how EMV chips work and how they help keep your information safe.
EMV cards, often referred to as chip cards, represent a significant advancement in credit card security technology. The term “EMV” stands for Europay, MasterCard, and Visa, the three organizations that created the standard. These cards are equipped with a small, metallic square chip on the front, which is easily recognizable and distinct from the traditional magnetic stripe on the back of older cards. This chip is a critical component of EMV technology, designed to enhance transaction security and reduce fraud.
Bank Scams: What it is, how to prevent it & the different types
According to the Federal Trade Commission, there were 2.6 million fraud reports in 2023, with $10 billion lost to fraud. It can happen to anyone and is never something to be embarrassed about. It is important to recognize though that the first line of defense is you, so being prepared to safeguard your financial safety is crucial. If something happens, the sooner you reach out for help, the better position you’ll put yourself in.
How Can I Protect My Elderly Parent’s Money?
In today’s digital world, protecting your elderly parents’ assets is essential, as the consequences of financial vulnerability can be devastating. According to the FBI Elderly Fraud Report 2022, total losses reported by elderly victims increased 84% from the previous year to $3.1 billion.
Given the high stakes, you might wonder, “How can I protect my elderly parents’ money?” Navigating the complexities of financial security for elderly parents requires a blend of empathy, strategic planning and legal action. This guide equips you with the knowledge and steps necessary to secure your elderly parents’ financial well-being.
Avoiding Holiday Scams: From Phishing to Travel Frauds
The festive season is a time of joy, giving and celebration. But as you prepare to dive into the celebrations, you must be on guard against scams that could ruin your festivities. From convincing phishing emails decorated with jingle bells to too-good-to-be-true travel deals promising a winter wonderland, the tactics are endless and, sadly, effective.
Generally, financial institutions follow information security guidelines and never request personal or sensitive information. Therefore, any call or information request for your banking information, such as banking username and password, account number, routing number or social security number, should be treated with the utmost suspicion.
As technology evolves, scammers are getting more sophisticated. Some of their rackets appear genuine. Thus, you must be extra vigilant, especially during this holiday season. Here's a detailed overview to equip you against potential pitfalls.
Ensuring Member Data Security: How Credit Unions Safeguard Your Information
In an era marked by rapid technological advancements and the growing significance of data in various sectors, the safety and security of personal information have become paramount. Credit unions, financial institutions that serve their members' financial needs while operating as non-profit organizations, are no exception to this rule.
With the increasing reliance on digital platforms for banking and transactions, credit unions have taken robust measures to keep member data safe and secure. In this article, we explore the strategies employed by credit unions to protect their members' sensitive information.
What is Two-Factor Authentication (2FA)?
Two-factor authentication is a security process that requires two different authentication methods before granting access to an online account or system. Discover the benefits of two-factor-authentication and how to enable it to protect your information.
Navigating the New Normal: Software Updates and Working from Home
In our ever-evolving digital landscape, staying informed about software updates, and remote work safety is essential. As our lives continue to be shaped by technology, members must take proactive steps to ensure their financial well-being and data security. In this article, we'll explore the importance of software updates and discuss the challenges and benefits of working from home.
Guarding Your Finances: A Guide to Shielding Against Social Engineering and Phishing Attacks
In today's interconnected world, safeguarding your financial well-being requires more than just responsible money management; it involves protecting yourself from evolving online threats like social engineering and phishing attacks. This article aims to empower you with knowledge and practical tips to keep your accounts and personal information secure.