Many users make serious mistakes with passwords
It is true that most users know what to do to have a good password. They know that you do not have to use the same password in several sites, that you do not have to use words or figures that relate us and are easy to guess or they know that Phishing attacks are more than present and are one of the main threats.
However, according to a report he has made LastPass, 65% of users reuse passwords in all accounts, 44% indicated that they had shared passwords and confidential data over the Internet while teleworking, or 68% assured that they did not create more secure passwords for financial matters. All this makes those online accounts unprotected and can be exposed to attackers.
That is why we want to show what not to do in relation to passwords. A series of important questions that in fact most users do not take into account. The goal is to create passwords that are really strong and can fulfill their function of protecting online accounts. If for example we talk about Phishing, something vital is to recognize insecure SMS.
Avoid reusing passwords
The first and most important thing to mention is that we should never use the same password in more than one place. We mentioned that 65% of users reuse them, but this is a major mistake that can leave us unprotected.
Our advice is to create passwords that are unique for each registration on the Internet, for each device or service that we use. Why is this important? Let’s say that we have the same password in the Facebook account, in the email and in an Internet forum in which we register once to ask a question.
That forum has suffered a security breach and all users and passwords have been exposed. We have not even realized it since we have not entered that page for a long time. Now, an attacker can test that password for our Facebook account and email. Being the same, it would have full access.
Never use words or digits that we can remember
It is also essential avoid using words that are easy to memorize, such as names, surnames or localities. In the same way, we must avoid numbers that are related to us, such as ID, telephone number or date of birth.
This will be the first thing an attacker will try. You can make different combinations of this type of words or digits that may be related to the user. That is why it is essential that we use a mixture of letters (both uppercase and lowercase), numbers and other special symbols.
Change keys from time to time
Another clear mistake that many users make is that they do not change their passwords. They register on a platform or service, such as social networks, Internet forums, accounts to buy online … They create a password and leave it as is for years.
It may happen that at any given moment that account or service has some vulnerability and is exposed. But we change periodically it could be available to an attacker sometime and it would be too late. This would also help us prevent keys from being stolen in Chrome.
Do not send sensitive data over the Internet without security
We have also seen that another typical mistake made by many users is to send sensitive data and even passwords via Internet. For example with co-workers, through platforms that may not be encrypted.
We must avoid doing this. Whenever we have to send some type of confidential information, it must be done from applications and services that are fully encrypted and secure. Only in this way will we guarantee that this information will not be exposed on the network.
Ultimately, these issues are some of the most important to avoid problems with passwords on the Internet. We must always protect the keys, create them securely, make them unique, and change them from time to time to maintain security.