Password reuse is a human problem. Remembering a new, secure password for every login we have can be difficult. With the rise in breaches, the character count minimum for a secure password continues to rise (depending on the source, it should be between 12-16 random characters). So it makes sense why we continue to reuse passwords with easy to remember, non-secure details such as our birthdate or sequential numbers. Additionally, the rise in mobile technology has trained us to create and use bad passwords because typing long passwords into a phone is a pain. Two recent technologies are taking the pain out of passwords: Apple’s Touch ID and password managers. Touch ID is available on many mobile banking applications and the popular payment sharing platform Venmo. Logging in to apps that support it is nearly seamless and – most importantly – seems to be secure with no wide-spread hacks yet. Password managers are an effective tool because they take the hassle out of creating and storing secure passwords. Most password managers support some sort of sync, so wherever you are, you have your passwords with you.
The Yahoo! compromise surely has exacerbated the password reuse problem for lots of users. The silver lining is the breach happened in 2014, so many of the stolen passwords are a little stale by now. However, not all users change their passwords frequently and many online services do not enforce password expirations. While any big data breach is scary, it is a good opportunity to review all your current passwords to make sure nothing is being reused. Additionally, it is useful to check in with your friends and family to remind them about the importance of password security, as they could be sharing your personal information unsafely and unknowingly. Remember, the more people aware about password security, the less chances hackers have to use our personal information in their advantage.
Here are a few quick steps to follow to get your passwords in order:
The Yahoo! breach – and other breaking news – will probably be referenced many times during Cyber Security Awareness month, so be sure to keep an eye on the news for other security best practices to help keep your information secure.