Byte of Prevention Blog

by Jay Reeves |

8 Steps to a Perfect Password

Pin on Pinterest Share on Google+ Share on LinkedIn

8 steps to a perfect passwordIt seems every day brings a new story of cyber-crime, data theft or computer hacking. 

Usually it turns out that the bad guys gained access to online accounts and information by stealing user passwords.

In December, for example, a cyber-security firm uncovered a stash of two million stolen user passwords for major social media sites. Included were 320,000 email accounts, 318,000 Facebook accounts and 21,000 Twitter accounts, sources reported. 

“We don’t have evidence they logged into these accounts, but they probably did,” said security manager John Miller in a story at CNN Money.

Here are additional details about the purloined passwords:

  • Thousands were variations of “12345 …” or other simple sequences of letters or numbers.
  • Thousands more were the word “password.”
  • Only five percent of passwords were considered “excellent,” meaning they used all four character types (uppercase letters, lowercase letters, numbers and special characters).
  • Only 17 percent were “good.”
  • Six percent were deemed “terrible” because they had four or fewer characters of only one type. The number of “terrible” passwords exceeded the excellent ones.

Creating a Better Password

Facebook data security expert Nick Berry told Yahoo!Finance that most people are “staggeringly unimaginative” in selecting passwords.

Here are some tips for becoming more imaginative:

  • Double your protection. Some services – such as ATM machines – require dual-factor authentication before you can use them. That means two things are needed to access the account – a traditional password and something tangible you actually hold in your hand like an ATM card or smartphone.
  • Make your password strong and unique. Use combinations of letters, numbers and characters. If the service requires only six characters, create a password using seven or eight.
  • Write it down. The more complex your password, the less likely you will be able to remember it. So put it in writing – and store that information in a safe place.
  • Safeguard your email first. Your email account is often the gateway for bad guys to get access to other vital information.
  • Use fake answers to secret questions. That way, you will thwart hackers who may happen to know your hometown or your mother’s maiden name.
  • Be careful about saving your password. Sure, it’s a pain to have to type your password every time you log onto an account. But you’ll curse the auto-save function if you lose your cellphone or laptop.
  • Mum’s the word. Duh. The whole point of a password is to keep it secret.
  • Use discretion. A little common sense goes a long way. Be selective about the places you frequent online. Stay away from sketchy sites.

And if you suspect your account has been hacked, change your password and take other preventive actions. Before it’s too late.

Jay Reeves a/k/a The Risk Man is an attorney licensed in North Carolina and South Carolina. Formerly he was Legal Editor at Lawyers Weekly and Risk Manager at Lawyers Mutual. Contact jay@lawyersmutualnc.com, phone 919-619-2441.

Sources:

 

About the Author

Jay Reeves

Jay Reeves practiced law in North Carolina and South Carolina. He was Legal Editor at Lawyers Weekly and Risk Manager at Lawyers Mutual. He is the author of The Most Powerful Attorney in the World, a collection of short stories from a law life well-lived, which as the seasons pass becomes less about law and liability and more about loss, love, longing, laughter and life's lasting luminescence.

Read More by Jay >

Related Posts

LM Portal Access your LM Portal for policy information and forms.
Need Insurance? See the difference service can make.
Payment Due? Make an online payment now.
Lawyers Mutual NC Logo

Get In Touch

Lawyers Mutual Insurance Company
1001 Winstead Drive, Suite 285

Cary, NC 27513

919.677.8900
 | 
1.800.662.8843

Fax: 919.677.9641

Latest Alerts

The Corporate Transparency Act: What North Carolina Law Firms Need to Know

Lawyers Mutual has published previous alerts regarding the new filing requirements under the Corporate Transparency Act (“CTA”) that went into effect January 1, 2024. After reviewing additional resources, we want to emphasize concerns that we have about the risks and increased potential liability for lawyers undertaking the reporting requirements. This is especially true for the continuing reporting requirements after entity formation and initial reporting.  

Learn More

eCourts Expansion Announced for 2024

The North Carolina Administrative Office of the Courts (NCAOC) recently announced additional go-live plans for counties transitioning from paper files to Enterprise Justice (Odyssey), which currently serves Harnett, Johnston, Lee, Mecklenburg and Wake counties. Twelve northeastern counties comprising Track 3, as previously announced, will go live on February 5, and 10 counties comprising Track 4 (Alamance, Chatham, Durham, Franklin, Granville, Guilford, Orange, Person, Vance and Warren) will go live on April 29.   

Learn More