An online survey involving more than a thousand people shined a light on the fact that the majority of people aren’t taking the steps to secure their private information away from the malicious actors. 59 percent of the people in question said that they use one password for all their accounts, making them an easy target for programs which are able to try out more than 100 million passwords a second.
The solution is simple – one should have a different username and password for each account they have, but it isn’t easy. Keeping track of all of them can quickly show difficult.
The company that started the survey, LastPass, is in the process of solving this problem. They are working on a password that holds the key to an encrypted vault where you can store all of your passwords. This way, you only need to memorize one.
The so-called master password would allow you to lock and unlock your digital vault, and it shouldn’t be reused anywhere else, according to Steve Schult, senior director of LastPass’s product management.
Another option that LastPass offers is to change your password into a long stream of text that’s different each time and for each site you visit. This allows you to enter the same password that LastPass would change each time without you having to fuss over it.
Unless you have a password manager, there’s little chance of keeping all your passwords unique for every website you visit and account you make, Schult added. Passwords that contain between 20 and 40 characters with upper and lower case letters, numbers and characters are impossible to remember.
Phishing still remains one of the most common ways hackers steal information from people, by simply sending an email that looks like it’s from a credit card company or a bank, asking for their information which people still give away even though there are warnings about this type of scams everywhere.
Not everyone supports LastPass’ idea. Sean Cassidy, a security expert, pointed out that the password manager is an easy target for phishing itself. He pointed out that an attack could happen while a LastPass user visited a malicious website within the Chrome browser. The website would create a fake logout information and simply ask for the user’s LastPass password. In reality, this never happened before, and the company updated its software to make sure it would never happen.
Two-factor identification is recommended, for both LastPass or any other password manager and any website you use. This is obtained by signing into your account which triggers a short series of characters to be sent to your smartphone that you then have to type in order to access your account.
With hackers always coming up with new creative ways to steal one’s information, we need to do everything we can to secure our data and escape becoming another victim.
Schult warned everyone to be proactive with their security because not doing anything about it is basically just waiting to be hacked.