News & AnalysisSecurity & Compliance

Experts Suggest Ways Of Getting More Creative With Passwords

A new report reveals that ‘123456’ was the most attempted login password this year, followed by ‘1234’, ‘admin’, ‘ubnt’ and ‘password’.

fileless

Despite phenomenal rise in cyber security breaches and warnings by security experts, it appears that some internet users have not updated their passwords to a more secure one.

A new report by cyber security firm Sophos reveals that ‘123456’ was the most attempted login password this year, followed by ‘1234’, ‘admin’, ‘ubnt’ and ‘password’.

On World Password Day, observed on May 2 every year to raise awareness on the criticality of using strong passwords, Sophos recommends that using simple, easy to guess, or a commonly used bad password make your account more susceptible to hacking, which can lead to financial fraud or having your personal information exposed or leaked.

“Passwords are an important aspect of computer security – they are the front line of protection for user accounts in a very wide variety of services and systems. Unfortunately, people are not changing factory default passwords, which cybercriminals are counting on to carry out their attacks.  Building strong, unique passwords and using a password manager to keep track of them is a best security practice everyone should use in this digital age,” said Sunil Sharma, managing director sales, Sophos India & SAARC.

In another report, Gary Davis, Chief Consumer Security Evangelist, McAfee informed, “Times have changed, especially in the digital world – years ago, consumers did not store nearly as much personal data on the internet. However, today, our most sensitive details live behind online password protection – from our financials, to our official documentation, personal photos and more. This means consumer behavior around passwords must evolve, in order to prevent cyber-criminals from accessing vital information.

Here are some of the things to consider to protect your password.

  • Do not use common passwords and do not use simple personal details within your passwords. Basic personal info such as your birthday, family members’ names or pets’ names are easily guessable. The same applies for common passwords such as “password” or “qwerty.” The less obvious and more obscure, the better.
  • Layer up your passwords. Passwords should always contain a variety of capital and lowercase letters, numbers and symbols. Today, many systems enforce password requirements during the account set-up process, to ensure password strength.
  • Choose unique passwords across all of your accounts. Many consumers utilize the same password, or variations of it, across all of their accounts. This means if a hacker discovers just one password, all personal info is suddenly at risk. Therefore, it is crucial to diversify your passcodes to ensure hackers cannot obtain access to all of your accounts at once, should one password be somehow compromised.
  • Use a password manager. Using a password manager will dramatically simplify managing passwords across all your accounts and make is easy to quickly change a password if your service provider announces that they have been breached. Since it can be difficult to remember multiple complex passwords, use a password manager to keep track. With password managers, you’ll only need to remember one master password, in order to access the rest. Many password managers can also generate strong passwords to utilize when creating new logins.
  • Enable two- or multi-factor authentication. Two- or multi-factor authentication provides an extra layer of security, as it requires multiple forms of verification. This reduces the risk of successful impersonation by hackers.”

World Password Day is the perfect opportunity to be diligent about revamping passwords, Davis said. “Go to a site such as haveibeenpwned.com to see if your password(s) have been compromised in a breach and are generally available to bad actors. If they are change them wherever they are used.”

Leave a Response