Pass the Word on Passwords
A recent survey conducted by ZoneAlarm revealed that 79% of computer users have passwords that are considered risky.  Any password that is easily guessable is considered risky. 
The survey resulted in a list of the top 20 most commonly used passwords.  In numerical order, they are as follows:


There you have it.  Are you surprised?  Do you use any of these passwords?  Be honest.  If you do, you should know that the "bad guys" are also aware of this list.  In fact, these passwords, and others like them, are usually the first ones they will try when attempting to break into your accounts.  Feeling a little less secure?  Want to know how to build better passwords?  Read on.

Creating Strong Passwords

Coming up with a good password is not rocket science.  All it takes is a little time and thought.  The trick is to develop passwords that are difficult to guess, but are easy to remember.

First of all, a strong password is one that is 8 characters in length or greater, and contains a combination of uppercase letters, lowercase letters, numbers, and special characters.  The goal is to make the password complex enough that the bad guys cannot figure it out, even with sophisticated password guessing programs.

Cxrt4!yud99&eGX3 is an example of a great password because it is extremely difficult to guess, but it is also very difficult for the user to remember.  Here is a quick, two-step process for creating strong, but memorable passwords.


Step 1 - Develop a Phrase that is Easy to Remember

     Example:  I often enjoy vacationing in the south of France during summer!



Step 2 - Create a Password from the Phrase

     Example:
  I0nJoyVitSoFds!

Now we have a password that is 15 characters long, contains upper- and lower-case letters, a number, and a special character.  The process involved simply taking the initial letter of each word in the phrase to form the password.  Then we substituted a number for a letter (the 'o' in often became a zero), mixed case, and ended with a special character.  To make the password even longer, we added most of the word 'enjoy.'

If you feel the password is just too long, you can create a shorter phrase, but remember that you want your password to have a minimum of 8 characters.


Note:  Please don't use this example for your password.

Password Re-use

Because people tend to have multiple accounts, either locally on their computer, or online, the temptation is to use the same password for every account (particularly if they have a favorite password that is easy to remember).  This is a dangerous practice for the reason that should the password fall into the hands of another person, they now have access to all of the accounts "protected" by that password.

The best practice is to have an unique strong password for each account.  So how do you remember all of those passwords?  The simple solution is to use a password safe program.  Such programs allow you to record and securely store all of your passwords in one place.

Two examples of password safe programs are KeyPass and PasswordSafe.  Both are easily downloaded and installed.  Best of all, they are free!

Password Tips from Kaspersky Lab



Watch this short discussion on best practices for creating and managing passwords.
Fake Notifications

An ongoing trend among cybercriminals is to blend social engineering with malware.

This is accomplished via the use of fake notifications.

A good example is a spurious email message that appears to have been sent from a shipping company like FedEx or UPS claiming that an item you recently shipped cannot be delivered. You are urged to contact the company immediately, and an embedded link is provided for detailed information.

However, clicking on the link results in being directed to a malicious Website where malware is waiting to be downloaded to the unsuspecting user.

To avoid an online disaster, never click on a link embedded in an email.

If you have recently shipped something and need to check its status, go directly to the shipper’s Website to inquire.

   
   
   
   

 

 

 

Twitter Facebook Linkedin Flikr UFV on Google+ YouTube goUFV