Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: What you don’t know about passwords might hurt you  (Read 379 times)
HCK
Global Moderator
Hero Member
*****
Posts: 79425
« on: November 28, 2012, 03:00:57 am »
What you don’t know about passwords might hurt you
   



   
I don’t mean to alarm you, but—well, actually I do. Your password strategy, if you have one at all, might be seriously out of date. In recent months, several well-publicized attacks on major online services exposed users’ passwords. For example, in June 2012, more than six million LinkedIn passwords were stolen and posted online. Just over a month later, over 450,000 Yahoo passwords were leaked. Apart from the direct damage that can come from having one’s password made public, these security breaches revealed that vast numbers of people follow dangerous password practices that can result in far worse problems.

If you haven’t examined your approach to making and using passwords recently, now is a good time to rethink your assumptions. Here are a few important facts about passwords you may not have realized—and what they mean for you.
Password reuse is a major danger
1Password makes it easy to create new, random passwords with your choice of length, digits, and symbols. You can then fill them into Web forms with a click or keyboard shortcut.
You know how it is—every time you turn around, another website or online service wants you to create a new password. Because that’s so tedious to do, many people rely on shortcuts. But these shortcuts can get you in trouble. As a case in point, consider the common practice of using the same password for multiple sites.

Suppose you signed up for a LinkedIn account, and you used the same password you previously chose for your Gmail account. Then, in June, you were one of the unlucky people whose LinkedIn password was leaked. An enterprising hacker who knew your LinkedIn password could have easily tried it with other popular services, so getting access to your Gmail account would suddenly be trivial. That’s a problem not just because someone could read or delete your email, but because you might use your Gmail address to access or reset other passwords. If the hacker clicked the “forgot password” link on another site, he could then check your email to get access to accounts that use other passwords. Even reusing a single password in two places could, in this way, cause cascading problems.
To read this article in full or to leave a comment, please click here
      

http://www.macworld.com/article/2014039/what-you-don-t-know-about-passwords-might-hurt-you.html
   
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: