
Forget birthdates or your pet's name, choose complex passwords and remember to change them regularly. — AFP Relaxnews
World Password Day, Thursday, May 1, serves to remind Internet users of the basic rules for protecting online accounts and data. Forget birthdates or your pet's name, choose complex passwords and remember to change them regularly. This, and several other steps, can limit the risk of having your accounts hacked.
Stop using personal information
Avoid using passwords that are too simple or easily recognisable, such as your first name, the names of your children or your pet, your date of birth, or sequences of numbers or letters such as "123456” or "qwerty”, which are extremely popular but particularly vulnerable.
Change your passwords regularly
Another bad habit is reusing the same password for several services, or simply changing one character. This is unwise, because hackers' first instinct is precisely to try their luck with the password they've just stolen on several other platforms. As a general rule, it's also advisable to change all your passwords every three months. It's tedious, but it seriously boosts security.
Use a mnemonic strategy to help you choose the right password
The best way to compose and remember a complex password – made up of numbers, letters and even special characters – is to use a mnemonic technique. Just think of the first letters of each word in a sentence or song title, for example. However, remember to choose a different one for each separate online service, as each password must be unique.
Use two-factor authentication
Whenever possible, it's recommended to activate two-factor authentication, which involves adding at least one additional step to logging in to an account. This can take several forms, such as a code sent by SMS or a personal question. This way, even if your password gets cracked, hackers won't be able to access your account.
Despite taking all these precautions, no one is entirely safe from having their data hacked or stolen one day. To find out if your phone number or email address has been compromised, simply go to the Have I Been Pwned website. It lists all the latest data reported stolen.
Just type in your email address to find out if you've been affected. If so, don't panic. It doesn't necessarily mean that sensitive data is circulating online, but simply that your login is part of a leaked list.
In all cases, you should immediately change the passwords concerned, even if the data breach dates back several months or years. – AFP Relaxnews