Monday, October 19, 2009

Protect yourself online

Nearly every day I get emails from "other professionals" in the real estate industry. Many of them are junk that I haven't asked for from people I don't know - and most of the time those go directly in the trash unless they have a REALLY catchy subject.

About 10% of the emails are from people I have actually met or worked with. Often those will go in the trash too, unless they're directly related to a transaction we're working on or may be working on together (again, noted by the subject line).

Today I browsed an email sent over by a mortgage person that was working with the buyer on a property where I represented the seller. It was one of the smoothest transactions I've done - in large part because the mortgage person knew what was going on and actually paid attention and followed through on things.

What'd I learn today? I learned that some folks need to have better email passwords. Here's the scoop:

Stolen Hotmail Passwords Demonstrate Need for Stronger Passwords

By now, you've probably heard that 30,000 passwords for Hotmail and Gmail accounts were stolen earlier this month.

But did you know that a security group analyzed those passwords and found that the most commonly used password was 123456? If that wasn't bad enough, the second most common password that was used...yep, you guessed it...123456789.

In today's electronic environment, that's unbelievable. We no longer live in a world where we can use a simple string of numbers or a child's name as a password. They're just too easy to hack...and the results can be much more devastating than merely finding your emails made public.

The problem is that we all have so many passwords. So how do we make strong passwords that we can actually remember for every account?

The tips below can help you avoid the most common password pitfalls and even implement a few new ideas that will make your passwords easy to remember...and hard to break!

Don't Use a Password that's Easy to Guess

There's no way around it...a well-protected password is hard for other people to guess. How do you do that? It's pretty simple really. Just follow this advice:

* Use a random string of characters. That means no sequential letters or numbers, like those Hotmail accounts that used 123456!
* Make it looooong. The longer the better--even up to as many as 10 to 14 characters if space allows.
* Switch things up. Use a combination of upper and lower case letters, along with a few numbers mixed in the middle or end.
* Don't use substitute symbols in common words. Using "@" for "a" or "1" for "I" may look good to you, but most hackers are smart enough to break those substitutes rather quickly when the password consists of a common word.
* For that matter, avoid easy targets like words straight out of the dictionary or things like family names and birthdays.

Don't Use the Same Password for All Accounts!

Most of us cheat when it comes to passwords. We have trouble remembering our passwords, so we come up with two or three that we can remember and use them everywhere.

But...you should avoid the temptation! That's because all of your accounts will be vulnerable if even one account is compromised. The reality is, you need to create and remember multiple passwords--a different one for each account! Fortunately, it's easier than you think. Just follow the steps below.

4 Simple Steps to Memorable, Yet Unique Passwords

Good passwords come down to two things: (1) they're easy for you to remember and (2) they're hard for others to break. Here's a sure-fire tip that can help you achieve both!

1. Think up a phrase. Instead of a common word or family member's name, think up a unique phrase that only you know. For example, you may think up something off the wall such as "I Like Short Hair Too."
2. Make it an acronym. In our example, "I Like Short Hair Too" would become ILSHT.
3. Add Complexity. Remember those substitutes you're not supposed to use with common dictionary words? Well, you CAN use them with your acronym. For example, "I Like Short Hair Too" can become "1 Like $hort Hair 2" which makes: 1L$H2. You can also use upper and lower letters to make it 1L$h2. The point is to be creative, but in a way that you can easily remember it.
4. Make it unique. A password is only really unique if you use it for one account and one account only. So you can't just use 1L$h2 for every account. And, in reality it's still too short. Here's the key to the whole process: Mix in additional letters and numbers that are unique to each account. For example, if you're logging into a "gmail account" you can use the "gm" and "@cct" (for acct) to make: 1L$h2gM@cct. Then, for a Netflix account, you may use: 1L$h2Nf@cct. That way, you're passwords will be hard for others to guess and unique to each account, but also easy for you to remember!

Of course, these are just examples. You'll want to be creative and think up your own acronym and ways to add unique characters for each account. And then keep that little secret to yourself so no one will be able to guess your account passwords.

Follow these simple steps and you'll have passwords that are tough to break, unique to every account, and easy to remember. And if you have children in your house who are starting to use passwords for email and IM accounts, teach them these steps to help educate them on the importance of strong passwords - they'll thank you later in life!

No comments: