Maintaining strong passwords is paramount to your online security. In June, over 16 billion passwords were released in what experts are calling the “mother of all data breaches.” Proper management can keep your passwords secure and help you maintain your online privacy, even amidst breaches and cyberattacks.
The “Mother of All Data Breaches”
Despite the nickname, June’s “data breach” was actually a combined archive of many past breaches, resulting in a database of over 16 billion login credentials, including many from Facebook, Google, and Apple. Having such a large number of credentials in one place makes it easier for hackers to launch mass attacks. Since many users use the same passwords for multiple sites, it also allows hackers to access accounts on other sites using the same credentials, a technique known as “credential stuffing.”
Best Password Security Practices
Even though experts recommend using strong passwords and changing them frequently to protect against cyberattacks – such as those that might result from the recent breach – most people continue to use passwords that are easy to remember, and thus, easy to hack. But gone are the days where “123Password” will serve as your go-to. So, how can you generate and manage passwords that are both secure and easy to keep track of? Here are some tips to keep in mind:
1. Use at least 12 characters
It’s pretty simple: more characters = more protection. Using a combination of both uppercase and lowercase letters, special characters, and numbers is the key to a strong password.
2. Don’t include your personal information or common words/phrases
Using personal information like your birthday or name, or including common words or phrases, can make it easier for hackers to uncover your credentials in a brute force attack.
3. Don’t reuse the same password for different accounts
It’s tempting to want to create one strong password and use it across multiple sites, but this leaves your accounts more vulnerable to attack. If a breach occurs on one site, it could compromise your accounts on other sites as well.
4. Enable two-factor authentication
Enabling two-factor authentication, such as SMS verification or push verification, provides an extra level of security for your accounts.
5. Try utilizing password generators
If you’re having trouble coming up with unique passwords, try a password generator from a reputable site, like NordPass or CyberNews.
6. Change passwords after data breaches
Be sure to change your passwords frequently, especially if you suspect your credentials may have been leaked in a data breach.
7. Use a password manager
Having trouble remembering all your passwords? Password managers such as NordPass and 1Password are a great way to maintain strong passwords without having to remember them all.
*Note: security experts do not recommend using browser password managers, as that information can be easily accessed if your device is stolen.
8. Linux users: switch server passwords to SSH keys
If you use a Linux-based server, chances are, you use an SSH password and username to access it. However, switching to a private SSH key-based entry makes your server less vulnerable to brute-force attacks. Learn more about how to disable password access and set up a private key-based entry on Linux.
We Value Your Privacy
At ALTERNcloud, privacy and security are at the center of all we do. Clients choose to utilize our solutions because they know that ALTERNcloud was designed with security from its inception. Every tool we build is designed with one purpose in mind: to give you full control over your data in a secure, private cloud environment — free from the risk of de-platforming or surveillance. Our products include robust multi-factor authentication, industry-standard SSL certificates, and the transparency of open-source software – so you never have to choose between convenience and control. Join the growing number of clients who trust ALTERNcloud to safeguard what matters most.