Passwords

Passwords are often the only barrier between you and your personal information. They need to be strong, secure, random and managed appropriately. Password re-use is a major problem with many people reusing passwords across multiple online services and accounts.

Breaches of personal customer information happen everyday in companies all over the world. This information can then be attained and abused by criminals in Credential Stuffing attacks. This usually consists of large-scale automated login requests directed at a variety of web applications such as web access to email - a unique password is key to stopping this.

Public/open wifi is also a danger. Users of public wifi cannot be sure who has set it up or who else is connected to it. Using a VPN (Virtual Private Network) service is by far the most effective way to make it more difficult for your session to be abused. A VPN service will encrypt data traveling to and from your laptop or phone, and connects you to a secure server — essentially making it harder for other people on the network, or whoever is operating the network, to see what you're doing or steal your details.

There are some important steps that we can take to keep our secret passwords secret:

1. Use a password Manager App - store multiple passwords with one master password

2. Think Passphrase instead of Passwords

3. Greater than 12 - Password/phrase should be longer than 12 characters

4. Beware of using public wifi, consider using a VPN service to help secure your information

5. Use Multi-Factor Authentication (MFA) on all email/social media accounts

6. Know where & when your details have been breached. Check your details on haveibeenpwned.com (HIBP) or monitor.firefox.com