Do a quick Google search for “password hacking software”, and you will be shocked (and maybe appalled) at how many people sell programs design to crack your passwords and hack your accounts. You’ll also find questions from people around the world asking, “what are the best ways to hack someone’s password?” These are the people you need to protect yourself against.
Here are the top cyber security factors to make a strong password and accessing your accounts:
Turn off automatic passwords, auto login, and password storage on your web browsers (IE, Firefox, Chrome, etc.) Any password stored in this way can be hacked.
Don’t log in to important accounts on shared computers (your home family computer is fine, as long as you trust everyone at home). This includes library computers, shared office computers, etc. The same goes for public internet connections, like a public wifi hotspot at a coffee shop, web proxies, free VPN or Tor.
A strong password is no good if you transmit it willy-nilly. Only send sensitive information if you’re on a secure connection. A secure connection will say either “HTTPS” (as opposed to HTTP) or “SFTP” (as opposed to FTP). These connections are encrypted and much more difficult to hack than their counterparts.
The standard recommendation is to change your passwords every 8-12 weeks. If you’re using a good random password generator to create strong passwords all the time, and storing them safely (see #13), then changing passwords regularly is a good security measure. If, however, changing passwords often will just make you go back to weaker, easy to remember passwords, like your pet’s name, don’t bother. It’s better to have a really strong password, and keep it forever, than to have a new weak password every 3 months.
Encrypt and store your passwords in a few different locations. That way, if you lose access to your computer or account, you can get your passwords back quickly and easily.
If your account has the option, turn on 2-step verification. This adds an extra layer of security by not only requiring you to enter your password correctly, but also entering a code that the system will send to your email, SMS text messages, mobile or landline phone. This way, even if a hacker gets access to your password, your account will still be protected because he doesn’t have access to your phone or email account