Virtually every online application requires a password – and, if you’re like me, you probably have hundreds or, at least, dozens of logins to manage.
For some people, the approach is simple. They use a single moderately secure password across all the sites and applications they visit. Needless to say, this is a really poor idea. Or, taking this strategy to the next level, they use a simple memorable password for certain (non-important) sites and a more complex variation of the same password for the sites they perceive to be more sensitive. This too, is a very badapproach.
Most people would be surprised to learn that their WordPress installations are likely the victim of numerous break-in attempts daily. A 2014 Global Security Report by Trustwave.com indicated that 31% of website breaches were a consequence of weak passwords. According to Wordfence Security (one of the premium WordPress plugins that we use to protect our clients) there are typically 20,000 attacks every minute against the 3 million sites they currently protect. If your username and password combination is compromised, your online identity could be hijacked, your web content could be maliciously adjusted, or worse, other online sites and systems you use might also be infiltrated.
So, how do hackers get your password? Simple – they guess (the guessing is done with algorithms/scripts, but it’s still guessing). If your password isn’t both strong and unique, you make their job easier. Bottom line – it all comes down to having a secure password for each site.
Great. It’s settled. We need to use complex passwords. The problem is how do we manage them?
In the early days of online, if you wanted to keep track of complex passwords, you’d need to create and manage a notebook or spreadsheet with a vast list of your passwords. It wasn’t particularly secure, nor was it convenient.
Luckily, today there are some excellent solutions that can be used to manage all your complex passwords. These applications can create secure passwords, associate them with each site you visit and encrypt them into a safe storage location. My favourite and the one we recommend to our clients is 1Password from AgileBits. The best way to learn what 1Password can do, is to watch the following short video.
1Password is available for Mac OS, iOS, Windows and Android. The application syncs across multiple devices, so your passwords are always available.
A similar alternative is Lastpass which offers both free and premium versions. The premium version adds cross device syncing (which is a must-have for most of us.)
Both of these solutions install an extension in your browser that automatically accesses your secure password when you attempt to login to a secure site. No more typing, no more remembering, no more fussing to find your password.
Now your passwords can be as complex as, “LeDN4w;sDgQX(3Hr7gxhqy“, instead of “qwerty“. You’ll sleep better knowing your passwords are unique, secure and always at your fingertips.
The solution is simple. Use complex passwords.
Great. It’s settled. We need to use complex passwords. The problem is how do we manage them?
In the early days of online, if you wanted to keep track of complex passwords, you’d need to create and manage a notebook or spreadsheet with a vast list of your passwords. It wasn’t particularly secure, nor was it convenient.
Luckily, today there are some excellent solutions that can be used to manage all your complex passwords. These applications can create secure passwords, associate them with each site you visit and encrypt them into a safe storage location. My favourite and the one we recommend to our clients is 1Password from AgileBits. The best way to learn what 1Password can do, is to watch the following short video.
1Password is available for Mac OS, iOS, Windows and Android. The application syncs across multiple devices, so your passwords are always available.
A similar alternative is Lastpass which offers both free and premium versions. The premium version adds cross device syncing (which is a must-have for most of us.)
Both of these solutions install an extension in your browser that automatically accesses your secure password when you attempt to login to a secure site. No more typing, no more remembering, no more fussing to find your password.
Now your passwords can be as complex as, “LeDN4w;sDgQX(3Hr7gxhqy“, instead of “qwerty“. You’ll sleep better knowing your passwords are unique, secure and always at your fingertips.
