We all know someone who has used the word “password” as their password. Or someone who uses one simple password with 1 capital letter and a few numbers for everything.
The reality is, that is a dangerous game.
Companies are experiencing data breaches at an increasing rate. Just this week, Expedia fell victim to a massive cyber-attack, and with every breach cybercriminals are able to obtain customer data.
So what does that have to do with passwords?
Let’s say you are using your primary email address and the password “XYZ” and create an account with Expedia (or any site, really), and a hacker gets ahold of that information. If you are using that same email address and password combination for your bank account, home security app, social media accounts, a subscription service, or another retail site, the hacker now has access to those too. They can likely transfer your assets, steal credit card numbers, find your home address, and more.
It is safe to assume that no one wants to be caught in that scenario, so here is what we suggest:
- Never reuse passwords. Have a unique password for every account you have.
- Use passphrases instead of passwords. Instead of “Example456” we recommend something like “Ac@tsat1nthew!indow0NTues456”
- Use a secure password storage to save all your unique passphrases in one place. We really like LastPass.
- Stay on top of potential data breaches. Go to https://haveibeenpwned.com/ periodically to see if your email address has been compromised in a data breach.