Passwords

What is a password?

A code used to help get access to a locked system.  Personal identification numbers (PINs) are much the same thing.  You also come across the word “passcode” for example on an Apple device like an iPhone.  Usually used in conjunction with a user name, which may be an e-mail address or a name you choose yourself.

What are the risks?

Passwords (and PINS) are required for just about everything you do on a computer or on the Internet: securing and locking your computer and your account on it, creating e-mail or social networking accounts, online banking and shopping, registering for a wide variety of internet sites.  The same applies to various office IT systems.  So poor management of passwords in your digital life can lead to the following:

Inconvenience  - the risk of losing  access and then having to get your password reset etc, delay in whatever it is you want to do; setting a password that is too difficult or complicated – if you cannot cope with it you are likely to lock yourself out more.

                                Potential compromise and/or loss of your personal data, arising from failure to set a password/PIN at all (for example on your laptop, smart phone etc); leaving a password on a default setting; setting a password that is too obvious or too closely tied to obvious personal details about yourself for example using birthdays, details with your own name etc; using the same password for all log-ins – especially when combined with using the same e-mail address for all your online activity.  You can end up creating links between aspects of your online activity that you do not want.

Having your password hacked, for example via a “phishing attack” – an email sent to persuade you to visit a fake website, where, if you are unwary, you will enter or verify your credentials, thus passing them on to whoever is trying  to steal them – and who may publish them on the Internet or sell them on.

Compromise of the site hose potentially making passwords available to others.

How can I stay safe?

Do not use passwords that are obvious, for example birthdays, your own name etc. or even worse 12345, password or QWERTY.

Do not use the same passwords for every account or registration.

Create strong passwords.  Some websites dictate certain features, for example minimum length, use of upper and lower case, use of numbers or symbols.

Within those limitations, try to choose passwords you are likely to remember.

Consider the potential of using a random nonsense phrase.

Rather than using your “normal” e-mail address for every occasion, consider the possibility of creating a separate (or more than one) free e-mail account that you can use with your passwords.

Change your passwords regularly

Look after your passwords – do not leave them lying around and do not share them with others.  If you think someone knows your password, change it.

Keep your internet security at a high level;

Guard against the possibility of phishing attacks: be very wary of clicking on links in e-mails, especially unexpected ones;

Do not, under any circumstances, give your password to someone else – ever.  Especially if you get a dodgy-sounding cold call from a company offering to fix some fault with your internet connection they claim to have identified, it is a scam.