It has happened again. This time Russian hackers have stolen 1.2 billion internet credentials. So now what? Are you one of the many people that uses 1-5 user IDs and password combinations because you are afraid you won’t remember them? Consider this:
- passwords for banking
- passwords for internet access
- passwords for work
- passwords for alarm
and the list goes on and on.
There are options.
Password Management
LastPass offers a free and premium option to manage all of your passwords. Features include:
- hassle free login since it remembers your passwords for you and securely logs you into your sites once you log into LastPass
- creates unique, secure passwords for you as you need them, or helps you create new passwords for those sites where you have always used the same password
- mobile options to log in from your smartphone
- can even store documents, secure information and more
- will audit your password usage and alert you to issues with duplicates and more
- offers additional layers of security with Duo, Toopher and Yubico
- and many other features
KeePass offers a password management system that is a little more technical with features including:
- multi factor authentication
- password generator
- plugins for additional features
- and more
Multifactor Authentication
Multifactor authentication is when more than one level of login, typically the traditional login and then an SMS text message with a security code to confirm, which you need to enter. This dual level may seem like a nuisance, but you will breathe easier knowing that you have made it more difficult for hackers. Here is the definition from Wikipedia:
[box type=”info”] Multi-factor authentication (MFA) is an approach to authentication which requires the presentation of two or more of the three independent authentication factors: a knowledgefactor (“something only the user knows”), a possession factor (“something only the user has”), and an inherence factor (“something only the user is”). After presentation, each factor must be validated by the other party for authentication to occur.[/box]Some websites that currently offer Multifactor Authentication:
- Amazon Web Service
- Dropbox
- Ebay
- Microsoft
- PayPal
You can also use multifactor authentication services to protect your applications:
Tokens
Token authentication is comprised of unique item that helps to identify the user. This could be a physical item such as a key fob or smartcard, or an online item like sounds, images, etc. Services offering token authentication include:
What’s next
As technology continues to advance, passwords and online security will become an every hotter topic. Stop to assess your own situation and what might work best for you. But you need to do something. The old system isn’t working. If you disagree, it’s probably only a matter of time before you are forced to change your ways, and your passwords. My advice is to be proactive.