Dayspring
05-27-2014, 09:22 AM
In the wake of all of the recent security "lapses" at places like EBAY, we really should review some basic security procedures:
Enable 2-Factor Verification
This means that when you log in from a new location to sites that have this available, it would require a code that is either sent to you via SMS or via a code app (like Google Authenticator). So even if your password is compromised, your account is secure b/c the "hacker" doesn't have your phone that the SMS/code.
Here's a good website that has information on how to enable this on sites/accounts that you may use:
http://lifehacker.com/5938565/heres-everywhere-you-should-enable-two-factor-authentication-right-now
I HIGHLY recommend using 2 Factor Verification on places like Google, Facebook, Paypal and if available, your bank. (I know Chase does it, not sure about others.)
Strong Passwords
I can't emphasize this enough. Use a combination of letters, numbers and symbols in your passwords. Just adding an exclamation point on to your password can add significant amounts of time on to what would be necessary to brute force/dictionary guess a person's password.
You also should NOT use the same password between different sites. I know, this is a tough one and I'm guilty of it as well. It's a pain in the rear to remember which password for which site. But it'd be like having the same key to your car, house and bank account all on one key - not really great.
One solution to that is to use a password manager like LastPass, KeePass or 1Password. They can take the pain out of using a strong, unique password per website. not only will it generate a strong password, it'll remember it for you AND will make a unique one per website.
This is the only area that I can't really help on - I don't use a manager (and I really should). But I'm looking into it.
Some reference sites/articles for information:
http://lifehacker.com/5937303/your-clever-password-tricks-arent-protecting-you-from-todays-hackers
http://lifehacker.com/how-spammers-spoof-your-email-address-and-how-to-prote-1579478914
http://lifehacker.com/5794486/how-to-add-a-second-layer-of-encryption-to-dropbox
http://youtu.be/YOe9YsKb0g8
Enable 2-Factor Verification
This means that when you log in from a new location to sites that have this available, it would require a code that is either sent to you via SMS or via a code app (like Google Authenticator). So even if your password is compromised, your account is secure b/c the "hacker" doesn't have your phone that the SMS/code.
Here's a good website that has information on how to enable this on sites/accounts that you may use:
http://lifehacker.com/5938565/heres-everywhere-you-should-enable-two-factor-authentication-right-now
I HIGHLY recommend using 2 Factor Verification on places like Google, Facebook, Paypal and if available, your bank. (I know Chase does it, not sure about others.)
Strong Passwords
I can't emphasize this enough. Use a combination of letters, numbers and symbols in your passwords. Just adding an exclamation point on to your password can add significant amounts of time on to what would be necessary to brute force/dictionary guess a person's password.
You also should NOT use the same password between different sites. I know, this is a tough one and I'm guilty of it as well. It's a pain in the rear to remember which password for which site. But it'd be like having the same key to your car, house and bank account all on one key - not really great.
One solution to that is to use a password manager like LastPass, KeePass or 1Password. They can take the pain out of using a strong, unique password per website. not only will it generate a strong password, it'll remember it for you AND will make a unique one per website.
This is the only area that I can't really help on - I don't use a manager (and I really should). But I'm looking into it.
Some reference sites/articles for information:
http://lifehacker.com/5937303/your-clever-password-tricks-arent-protecting-you-from-todays-hackers
http://lifehacker.com/how-spammers-spoof-your-email-address-and-how-to-prote-1579478914
http://lifehacker.com/5794486/how-to-add-a-second-layer-of-encryption-to-dropbox
http://youtu.be/YOe9YsKb0g8