Understanding Passwords – don’t be a victim

ByRussell Kirkpatrick Tech Talk
TechTalk - Understanding Passwords

Understanding Passwords: Don't be a victim

The concept of passwords has not changed over the last 50-year. It’s a secret sequence of letters, numbers, symbols, and lengths that make up a password. It’s supposed to be hard to figure out to keep others from gaining access to what we are protecting.

The concept of passwords is a good one but has a few critical limitations that we all should be aware of, and I’ll share why.

Memorable Passwords

Passwords created are typically formed to be memorable. These tend to reference important dates, pets, family, and locations. They are commonly reused over and over again. And more often done to extend our memorable passwords is adding characters or symbols to the end of them when needed.

We use memorable passwords to make it easier for us to remember and recall. This may have been a good tactic 30-years ago, however today it’s common knowledge and is being used against us. Software is more than capable of using psychological techniques and traits to figure out passwords. I urge and stress enough to everyone… stop using memorable passwords.

Unique Passwords

Over the last 50-years, using passwords has increasingly become a common practice. As the availability of technology and accessibility of Internet connectivity increased, so did the number of internet accounts requiring passwords. Since more than 200-billion passwords have been created and used.

For a human to create a truly unique password is extremely rare at best, especially if we focus on meeting minimum password requirements. These requirements are typically 8 characters in length, with upper and lower case letters, and a number or symbol contained within it. The likely hood of creating a password that has been created before is pretty good.

Passwords For Sale

Every so often we hear of a data breach, where a company has been hacked and data taken from them. More than 9,000 data breaches have been publically announced since 2005, totally more than 10 billion records taken. Now keep in mind that is only what is reported by big corporations like TJ Maxx, Sony, Evernote, Target, eBay, JP Morgan Chase, Yahoo, Heartland, AOL, and Experian to name a few.

Data taken is typically sold on the dark web. The collections of compromised passwords grow every day.

What are the odds a password has not been created before? What are the odds the password using is not already for sale on the dark web?

Two-Factor Authentication (2FA)

Knowing that passwords can be compromised, two-factor authentication was born. It acts as a secondary password that constantly changes, typically six numbers in length. This in conjunction with a password strengthens the overall weakness of just using a password. It brilliantly creates a secondary layer of protection that is less likely to be compromised. Sweet! Now we can go back to using memorable passwords.

Wait a minute… less likely? Yes, even 2FA can be compromised in several ways. Using 2FA helps and I highly recommend using it when you can, but it does not help if weak and compromised passwords are used.

Summary

The odds are stacked against us. With:

  • over 7-billion people and growing on the planet actively using the internet;
  • minimal enforced standards for passwords;
  • possibilities creating a truly unique password;
  • the average person changing their password every 5-years;
  • more sophisticated hackers and software evolving every day;
  • lack of consumer cyber education;
  • corporate data breaches increasing every year;

It’s a lot to take in and understand. Most of us will continue to ignore the facts until becoming a victim. I encourage everyone to take a stand and move beyond minimum standards. Embrace the fact that maximum-length passwords should be the standard. Having unique passwords for every account is a beautiful thing. And finally, don’t be afraid of changing passwords more regularly – hopefully more than once a year. 

Russell Kirkpatick
President | Founder
Join Us!

Welcome to our platform, where we take online security very seriously. We understand the importance of having strong and unique passwords for all of your online accounts. Unfortunately, many individuals fall into the trap of using simple and easily guessed passwords, which leave them vulnerable to cyber attacks. That’s why we offer our password assistance services to all visitors. Our team of experts will work with you to create strong and complex passwords, as well as provide tips and resources for keeping your accounts secure. Don’t wait until it’s too late, let us help you protect your valuable information and avoid becoming a victim of cybercrime.

Similar Posts

  • Feeling Lucky?

    MyITAssistant takes protection to a whole new level, with Web Protection. Now you can feel confident knowing there is a security blanket in place when using the Internet. This is an upgrade to the already amazing Guardian services provided by MyITAssistant. With web protection in place, Guardian will actively protect and block: Malware sites Phishing…

  • Internet Garbage

    Let’s face it there is a monstrous pile of garbage on the Internet, doing more harm than good. It is content we don’t approve of, advertising, social and marketing agendas, hidden spyware and tracking, malicious infections, scams … and the list goes on and on.

  • Is your Data Safe?

    We have a backup service available that would suit your needs, without needing a server. The Data Guardian service is a local and online backup service that is HIPAA compliant – offering up to military grade encryption, if you desire it. As with our website hosting services, you would need to be a subscriber of…

  • Using Strong Passwords

    Common sense tells us that we should, but reality holds us far from that. The passwords we used are common names of pets, places or other memorable references that draw meaning to us. Often these passwords are slightly skewed, backwards, forwards, with a number or capitalized letter as an attempt to meet specified minimum requirements….