Working with passwords: what to avoid
Writing down the password on a piece of paper and putting it in a visible spot is initially a failure. Does anyone else do this?
Do not use a password made up exclusively of digits (e.g. 1111, 123456, 1990, 24567). Even if the numbers are reversed, such combinations are figured out in a split second (e.g. 654321). The most common number in passwords is 1. The most common password is 12345. It is also not a very good idea to substitute letters with numbers that are similar in spelling (e.g. passw0rd). Such an option is just a piece of cake for attackers.
Do not use classic combinations and patterns when creating a password. Avoid using personal data or information, as well as names, dates of birth and other symbolic facts, simple combinations, dictionary words, standard phrases. Otherwise, you won’t even notice when you are hacked with just a “snap of fingers”.
It would be better not to save passwords on your computer. But if necessary, create a file with a unique name that will not be associated with its content.
Never use the same password for different accounts. In case of any single resource is hacked, it is not a problem to get to all the others. But if such a situation happens, you should change all your passwords immediately.
Some websites and email services provide their users with temporary passwords. You can use this opportunity, but after that, you should create your own one, as it is a ‘temporary password’.
It is also worthless to rely on words that indicate a favourite colour, fruit, or something like that. If you think that hackers need to know something about you then think again. The thing is that all these words and their variations are already available in the dictionary.
We create the winds of change. Replace your old password with a new one every six months or once a year. Another password should not be similar to the old one.
Never save your password on websites, browsers, or other automatic saving systems.
Remember that none of the services will ask you for a password purposefully or for no reason. It could be a scam.
Even if you have forgotten your password to the websites, there is always a possibility to recover it with identity confirmation through a message, email or another way.
An additional layer of security is verification. With this option, you can prevent other persons from accessing your account, and this would make it difficult for someone other than you to sneak up on your accounts.
Most passwords are 6 characters long. It is best to use passwords that are at least 8 characters long to make them more secure. Use long passwords and avoid short ones.
Create something unique and new. The password must be difficult to guess. Be creative.
Choose the basis of the password. Come up with your own system for creating a good one.
Use capital letters, lowercase letters, numeric characters, and special characters in your password.
Try to twist phrases or create something that will seem completely meaningless at first glance.
Come up with a sentence and take individual letters out of it, or you can combine 2 words, remove vowels or distort some words.
Only the user should know the password. Never share your password with anyone.
Methods of hacking can be:
- logical guess method
- dictionary attack
- brute – a force of hashed password table (when the hashes are generated and what remains to be done is to find the hash to match the password in the database)
- other methods such as social engineering, trojans and others.
The best solution is to remember the password.
Yes, if the password is complex, it seems like a difficult task. But there is always a way out.
What is an easy way to remember? Use some synonyms, antonyms, homonyms, formulas and expressions, rhymes for your password ... Visualize the password, create associations, constantly repeat it. It would be even a better way to repeatedly type the password on the keyboard until it is memorized.
Danger lurks around every corner and there is no 100% guarantee that everyone can bypass it, but you should always secure your accounts in advance and do everything possible to protect yourself and complicate the task for attackers.
Wrongdoers can steal your credit card details, gain access to your accounts, obtain or close up your website, steal any personal information. There is a lot of useful information in blog: https://zomro.com/blog/articles/.
Creating a strong and secure password
Working with passwords: what to avoid