Each day, our lives become more inseparable from the internet; we email instead of call, we stay in touch with social media, we shop online, bank online, etc. And each of our online accounts requires a password. We all know that choosing a strong password is important for internet security, but nonetheless many of us opt for weak passwords simply because they are easier to remember and keep track of. While it is inconvenient to create very strong passwords, the potential fallout from having your accounts hacked will be much more inconvenient. Don’t worry; after reading this article, you’ll be a pro when it comes to knowing whether a password is strong, and we’ll give you a handy secure password generator to take some of the guesswork out of creating a strong password.
Here are the top cybersecurity factors to make a strong password and accessing your accounts:
This takes extra work on your part, for sure. But imagine what would happen if a hacker cracked just one of your passwords—a password that you use to access several different accounts. The hacker would now be free to sign in to any of the accounts using that password. Don’t make a hacker’s job any easier!
If it’s in the dictionary, it’s a real word, and it doesn’t belong in your passwords. There is an entire method of password hacking called “dictionary attack” that exploits people’s tendency to use dictionary words in their passwords.
Don’t log in to important accounts on shared computers (your home-family computer is fine, as long as you trust everyone at home). This includes library computers, shared office computers, etc. The same goes for public internet connections, like a public wifi hotspot at a coffee shop, web proxies, free VPN, or Tor.
A strong password is no good if you transmit it willy-nilly. Only send sensitive information if you’re on a secure connection. A secure connection will say either “HTTPS” (as opposed to HTTP) or “SFTP” (as opposed to FTP). These connections are encrypted and much more difficult to hack than their counterparts.
You can make sure your connections are encrypted when using your mobile devices by setting up a VPN (Virtual Private Network) on your home computer. Then, whenever you use your cell phone, tablet or laptop, connect to the VPN, and this will encrypt all the data that is leaving your mobile device so that hackers and hacking software can’t read it.
The standard recommendation is to change your passwords every 8-12 weeks. If you’re using a good random password generator to create strong passwords all the time and storing them safely (see #13), then changing passwords regularly is a good security measure. If, however, changing passwords often will just make you go back to weaker, easy to remember passwords, like your pet’s name, don’t bother. It’s better to have a really strong password and keep it forever than to have a new weak password every 3 months.