Geeks2U Promise
We guarantee you'll love our fast, friendly service - or we'll refund your money.  
133,572 Happy Customers & Counting
Need tech support?
1300 769 448
Extended hours, 7 days a week
Home  /  geekspeak  /  Weak passwords are your weakest security link

Weak passwords are your weakest security link

In the aftermath of Heartbleed, don’t simply change all your passwords from “password” to “password1”.

Choosing easy-to-guess passwords is pretty much the biggest security blunder you can make, but people keep doing it. Every time hackers release a fresh batch of stolen passwords, the most common passwords tend to be “12345678”, “QWERTY”, “letmein” or the ever-popular “password”.

If these sound like your passwords then you’re asking for trouble. They’re the first passwords hackers try when they’re out to break into your account. The next thing they do is cycle through the dictionary, so you should never use a single word as your password, however obscure. Hackers are also awake to tricks like substituting numbers for letters, such as “p4ssw0rd”. You’ll need to do better than that.

Don’t use the names of your kids or your pets either, as such things are easily discovered online. Birthdays, sports teams and nicknames are also terrible choices for passwords, however easy they are to remember. After Heartbleed, which let hackers steal passwords from supposedly secure websites, you have to wonder how many foolish people will be forced to rename their cat “Fluffy1” just so they can remember their new favourite password.

Coming up with good passwords is tough, especially when you’re not supposed to use the same password more than once. If you have reused passwords then Heartbleed becomes an even bigger threat. Reusing passwords means you don’t just have to change your passwords on every website which was vulnerable to Heartbleed, such as Google, Facebook, Yahoo! and Dropbox. You also need to change your password on any other website where you’ve reused one of those passwords.

For example, Google was affected by Heartbleed but Apple’s iTunes wasn’t. If Heartbleed hackers get their hands on your Google password then they might try using your Gmail address and password to log into iTunes. While they’re at it they’ll try Facebook, Twitter, PayPal, Skype and lots of other services. Would they have any luck if they tried this trick on you? If so, Heartbleed presents a good opportunity to rethink your haphazard approach to choosing passwords.

The best passwords look like gibberish to anyone else but are easy for you to remember. Phrases or lyrics make a good starting point. For example, consider the first lines of Three Blind Mice. Use the first letter from each word and throw in upper and lower case letters along with numbers and punctuation. You might end up with something like; TbMtBM*ShTr*65 – a strong password which is easy for you to remember but hard for anyone else to guess, or a computer to crack.

Different combinations help you come up with a range of passwords for different websites, but keep in mind that any of your passwords could fall into the wrong hands one day. If your Google password is “TbMtBM-Google” then hackers won’t have too much trouble guessing your iTunes, Facebook and Skype passwords. You need to be smarter than that.

Don’t be lazy when it comes to your online security. If it’s all too hard, take a look at a password manager like LastPass or 1Password which can create strong passwords and remember them for you. Developing your own secure password strategy takes a little time and effort, but much less time and effort than it takes to pick up the pieces after hackers take control of your digital life.

Share

Recent News

This week we’ll see the local Australian launch of Disney+, the latest in a very long line of streaming subscription services. While there’s still clearly a place in Australian homes for free to air television (at least for live events such as sports), it’s also clear that on-demand streaming services delivered over a home broadband… More 

Computer security has never been a hotter issue than it is today. Data breaches, cryptolockers, malware, phishing – as more and more of our lives and businesses go digital, the more we expose ourselves to sneaky hackers looking to take advantage of us. As a small business owner it’s easy to let computer security slip… More 

We’re in the middle of a particularly fierce bushfire season here in Australia, and sadly that’s included not only loss of property but also loss of life. Bushfires are part of the Australian ecosystem, it’s true, and if you live in an area that’s likely to be affected by them, it’s wise to have a… More 

Microsoft used to be a software-only company, leaving the practical work of actually building PCs to partner companies such as Dell, HP, Lenovo and others. In recent years it’s branched out with its Surface range of tablet 2-in-1s and more recently, Surface-branded laptops. Microsoft recently sent me the Surface Laptop 3 to assess. As the… More