No it’s not a tongue twister for today it’s a lesson in the obvious for the IT world but one that’s still ignored. Lately Jeremi Gosney in Stricture Consulting Group analysed the Adobe Password file posted online of the hacked 38 million user accounts and posted the top 100 online
Below are the top 20 and should serve as a warning to all that use these or similar:
When picking a password you need to be careful to do 4 things:
- Make it relatively random – not just a real word or numbers
- Make it memorable – writing it down isn’t exactly secure either, this includes but is not limited to writing it under your keyboard, or on a post-it stuck to your monitor
- Use non standard characters – # ! or ^ for example
- Don’t use the same passwords for each site – some sites don’t even encrypt passwords and if they’re hacked then so are your more secure sites.
Here’s a few examples of good 8 character passwords that are easy-ish to remember (and none of them are one’s I use… I practice what I preach!):
- rA!$3H@s (RaiseHats)
- d@ff0d!l (daffodil)
- *&ob0l!x (asterix and obelix)
Not saying they can’t be cracked but at least you’ll make them earn their keep before they do.