![]() GPG and 7-zip are perfect if you want to share / store / send something sensitive. Full disk encryption with Bitlocker on Windows, FileVault on Mac or LUKS on Linux are your first line of defense against unauthorized access. Alternatives are SSH tunnels or Socks Proxy configured in your Chrome or Firefox.Ĭheck your passwords if they have been breached and setup a monitoring for future breaching with the help of ![]() VPN software like OpenVPN, IPsec and Wireguard on your own VPS are the most common solution. Protect yourself, especially while travelling, and encrypt your internet connection. The duration should not be longer than 30 seconds.Ĭreate a habit of locking the computer when you leave the desk even if its just for a short period. You should configure your phone and computer to automatically lock when inactive. Better alternatives are HTTPS, SFTP, FTPS. Secure passwords are random and look like qs^?#jD3Ym}8rB&D or }+Eph6/.q(7t*TjZĭo not construct passwords from a pattern like myPassw0rdForGmail and myPassw0rdForWindows as stolen passwords will automatically allow hackers to guess the password for other accounts.Īvoid password mechanisms that cannot be changed yet can be cloned like your iris or fingerprint.īe cautious and avoid logging in on computers of other people.ĭo not login to sensitive accounts over untrusted WiFi hotspots, free VPN services, and the Tor network, as you never know who is controlling them.Ĭheck for the protocol before you send any sensitive information and avoid unencrypted connections like HTTP or FTP. are inherently insecure and should be avoided. Passwords like QWERTY, 123456, password!, 4nt0n!. Most exploits have been fixed for weeks before attackers are actively exploiting them. ![]() Use something like Google Authenticator, Authy, Yubikey and try to avoid SMS if possible.ĭo not use zip codes, house and phone numbers, birthdays and sequences from your ID or social security number. Use random passwords with at least 16 characters and try to include special characters, numbers, upper and lowercase symbols.ĭo not include the names of family members, pets, or friends in your passwords. Use an enterprise password manager like Psono to store and manage all these passwords. So if one website is being compromised the attacker does not automatically gain access to other potentially more sensitive websites. Use unique passwords, so different passwords for different accounts. You can prevent being hacked by brute force or dictionary attacks or being exploited by social engineering by following some rules: Many of them will give you memorable passwords according to them, but those passwords are based on their own library of words without letting you select the base to build your real memorable password.Your passwords deserve to be secure. ![]() What about Password Generators? Many of them will give you very strong passwords, but almost impossible to memorise. Many of the most popular ones could potentially leak unencrypted credentials and passwords ( check this Independent Security Evaluators (ISE)'s research) You have to rely on that third party software and assume it is operative at any time. What about Password Managers? They are pretty easy and safe to use, but you still need one master password to access them. You can easily check how strong are these passwords (click over the passwords to copy them) with tools like "How secure is my password?" or this artificial neural network developed by Carnegie Mellon University - Spoiler: it would take a contemporary computer hundreds of generations to crack this kind of passwords. To have an even stronger password structure, you can also use a root password per category (for example: one for social networks, another for streaming services, another one for financial services.), such as:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |