Password 123 Isn’t Cutting it Anymore

We all know that dreaded line: please enter your username and password. This is about the time where some of us start searching through the notes app on our phone, camera roll, random post-its stuck everywhere, before we eventually give up and reset it for (probably) the 10^th time. During this password redemption, we tell ourselves this time we will REALLY remember what we made it because it’s going to be simple, obvious, maybe even just “password123.”

As much as we often hate the password world that we live in, where even going to our favorite ice cream place requires an app (and subsequently anther password) to get a free cone (and who would turn that down?), creating secure passwords is very important. You may not realize it, but even something as simple as your rewards app can hold clues to your life or information that gives hackers insights on how to steal other, more sensitive information. And really, let’s be honest, how many of us try and use the same passwords for multiple different accounts? While a “clever” life hack, you are a hacker’s dream candidate. Once you let them in on a small part of your brain, it’s open season.

On top of that, think about your social media accounts. Although it might feel harmless to post about your dog’s birthday, how many of us use our pet’s names in our passwords? It doesn’t take a detective to say some of us are guilty of this to some extent. Snooping on social media and finding key information such as pet names is a great starting point for hackers and can lay the groundwork for stealing all your information (and maybe your free rewards points).

The key is creating a password that is both memorable and hard to guess. One way to do this is to use a combination of random, unrelated words or ideas that are easy for you to remember but nearly impossible for anyone else to figure out. Don’t over think this passphrase.  For example, “Cat Ocean Match Great Isnt” would be a great passphrase.  Again, don’t over think it.

It is important to follow these tips:

• Make them long:  The longer the phrase, the harder it is to crack.
• Create a memorable passphrase:  Attempt to use 4-7 unrelated words.
• Make them unique:  Don’t reuse passwords or even slight modifications of the same password.

For the tough stuff, save your brain and use a password manager. When picking one, ensure it has a strong security track record, a zero-knowledge policy (meaning your passwords aren’t saved on their servers), cross-device compatibility, emergency access options, easy backup and recovery, and features that fit your needs such as a built-in password generator and secure sharing with family.

A new method of securely logging in is to use a passkey.  Passkeys provide the strongest protection against threats, such as phishing.  Unlike passwords, passkeys are tied to your device and can not be given to the bad guys.  Support for passkeys is rapidly growing, and you can now use them to securely log in to your Crane Credit Union online/mobile banking account.

As easy as it is to just default to the same passwords we’ve been using for years, personal security online is a crucial step to protecting yourself. Using these tips can help you be your best first line of protection when hackers come knocking.