Home » Sunday » Technology
Password pointers to deter hackers
Print Edition
FACEBOOK founder Mark Zuckerberg’s rarely used Twitter, LinkedIn and Pinterest accounts were briefly compromised last Sunday, serving as a reminder that everyone is susceptible to hacking.
Safeguards you could take include creating strong passwords and changing them frequently. Yes, all this is a pain, and it’s not your fault that the tech industry couldn’t grapple with the rise in security breaches. The more complicated and lengthy a password is, the harder it will be for hackers to guess.
Don’t include your kids’ names, birthdays or references to any other personal details. Hackers routinely troll Facebook and Twitter for clues to passwords like these. Obvious and default passwords such as “Password123” are also bad, as are words commonly found in dictionaries, as these are used in programs hackers have to automate guesses.
Avoid using the same password for multiple sites, so that a break of your school’s PTA site wouldn’t lead hackers to your online banking account.
You can make things easier on yourself by using a password-manager service such as LastPass or DashLane. They remember complex passwords for you — but you have to trust them. Last June, LastPass disclosed “suspicious activity” and told users to change their master passwords.
Some web browsers such as Apple’s Safari and Google’s Chrome also have built-in password managers. They work if you switch devices but not if you switch browsers.
It’s important to change your password regularly, just as good physical hygiene calls for replacing your toothbrush every few months. And don’t be tempted to recycle an old one. The longer a password sits around, the more likely it is to fall into the wrong hands.
And if a company announces that it’s been hacked, change your password right away, even if it says your information wasn’t compromised. Breaches are often worse than they first appear. LinkedIn recently disclosed that a 2012 breach affected 117 million accounts— not the 6.5 million previously thought.
Multi-factor identification — which asks users to enter a second form of identification, such as a code texted to their phone — will provide additional protections at services that offer it.
Even if hackers manage to get your password to, say, Facebook, they still need your phone with the texted code. It’s not as much of a pain as it seems, as services typically ask for this second code only when logging on from a new device or browser.
Delete or deactivate accounts you no longer use. Got a spam-filled Juno or AOL email account lying dormant? Maybe it’s time to say goodbye.
Just last week, Myspace said a hacker has put up for sale login information for some accounts created before June 11, 2013.
If, like most people, you’ve moved on to greener social media pastures, permanently get rid of the ones you no longer use. This often can be done through your account settings — as long as you still have your password to sign in.
- About Us
- |
- Terms of Use
- |
-
RSS - |
- Privacy Policy
- |
- Contact Us
- |
- Shanghai Call Center: 962288
- |
- Tip-off hotline: 52920043
- 沪ICP证:沪ICP备05050403号-1
- |
- 互联网新闻信息服务许可证:31120180004
- |
- 网络视听许可证:0909346
- |
- 广播电视节目制作许可证:沪字第354号
- |
- 增值电信业务经营许可证:沪B2-20120012
Copyright © 1999- Shanghai Daily. All rights reserved.Preferably viewed with Internet Explorer 8 or newer browsers.
