cybersecurity digital-living guide life-hacks News passwords security technology Tutorials

How to Create Strong Passwords and Keep Hackers at Bay

Ehtasham Ahmad4 weeks ago

0 14 4 minutes read

how-to-create-strong-passwords-and-keep-hackers-at-bay — How to Create Strong Passwords and Keep Hackers at Bay

Creating a strong password is imperative for securing your accounts against possible hacking or cracking attempts or dictionary attacks. A strong password can be created using a password generator or manager or by using a combination of letters, numbers and special characters, manually. Still, by abiding by certain rules, a strong and secure password can easily be set for your account. The following points have to be considered while setting a secure password:

Avoiding simplicity

For a password to be truly ‘Secure‘, it must be unconventional and not easily guessable. Using 1234, 1122 or ABCD or similar simple patterns can be guessed without much effort.

Save from brute force attacks

Brute force attacks try all possible combinations continuously until right combination is found. So make sure your password is lengthy, utilizes all types of characters from special to uppercase and lowercase, and comprises letters, numbers and special symbols.

Hyphenated password

Using a long and hyphenated compound word as a password saves it from both dictionary attacks and brute force attacks. For example, setting Mind-go-need-this as a password would be impossible to guess.

Use emoticons

A new password for a new account

Image: DIW-Aigen

Do not use the same password for all your accounts; otherwise, the compromising of your password would lead to much loss, including monetary. Also, to recollect all successfully, make them memorable.

Writing them down on your wall or sticky note is not a good idea

Having more than one functional account tempts a person to write down their frequently used login details on a sticky note on PC screen or their desk, in case one forgets them. Do not fall for this temptation. Trust is an issue these days. So relying on your memory is the best option or maybe try using your favorite messaging app such as Whatsapp to send that password as a note to yourself.

Spot weakness in passwords

Passwords must be easy to remember and recollect, and at the same time, it should be free of any weakness. Certain patterns do make passwords weak and guessable, so they need to be avoided.

Never use most common words as passwords. Words like Sky, computer and smartphone are too simple. Hackers can easily crack it in no time with the help of modern software.

People have a tendency of choosing a password from their personal lives. It might be a difficult one, but not for someone who really knows you intimately. So avoid this loophole as well.

A password comprising 4 to 6 letters can be found out using software. A long password is the key, having at least 12 characters.

What are the best password creating methods?

The following methods can help in creating passwords:

Obscure passphrase

Just as the above mentioned example, create a long and unusual password, using historical figures, favorite hobby or color. You can set Cricket-bat-ball-warner as a password: all the words belong to the cricket world, so it would be easy to remember.

Sentence method

By picking up first letters from each word of a sentence can result in a pretty obscure and strong password. Let us take the example of the following sentence: My favorite batsman is Warner. After picking up the first two letters from each, the password is MyfabaisWa. It could be made safer with the addition of the symbols.

Muscle memory method

Use a Random Password Generator to create passwords. Keep creating until you find one easily typable. Keep practicing it until your fingers have mastered typing it.

Using password managers

Password managers are helpful in generating strong passwords. They create random passwords by choosing all available symbols to generate a secure password. Not only do they generate passwords, but they also store various login details of your many online accounts, which is handy if you have more than one account and cannot memorize all passwords.

Some of the well-known password managers are Bitwarden, NordPass, Dashlane, 1Password, Google Password and LastPass.

How does someone hack our passwords?

Hackers use various ways to hack or crack a password to be able to reach sensitive data. People who use the same password all their lives or use the same one on different accounts are more prone to such attacks.

By employing Brute Force Attack, hackers, with the help of a program, tries all possible combinations until they find out the correct one. A hacker showed the effectiveness of such a method in 2012 by employing a 25-GPU cluster to obtain almost 90% of LinkedIn passwords.

Dictionary attack is also a common way. Unlike Brute Force Attack, it does not involve random guessing of combinations, but rather a predefined set of data is available to choose from. So the smaller the password, the more prone you are to this attack.

Image: DIW-Aigen

The most clever way is a Phishing attack. Fake emails are sent to people, pretending to be from a reliable source, to obtain their login details. Many people have fallen prey to a phishing attack. Not only emails, but also direct messaging and phone calls are also used for obtaining banking details.

Firstly, just make sure your password is still secure and not compromised. Use programs like Have I Been Pwned and Google Password Manager to detect the problem. Secondly, if you login details have been breached, change your username, email and password instantly. And lastly, keep changing them after a 3-to-4 month period to maintain security.

Avoid using login details on sites using old HTTP protocol. If these sites do not encrypt users’ passwords, which is a standard way today, avoid giving them your details.

Since Two-factor authentication and multi-factor authentication have made it almost impossible to breach someone’s account, it is highly improbable that your password details would be of any use to hackers. SMS verification, email verification, face verification and fingerprint/biometric verification have added extra layers to the security of accounts.

The old ways are still the best ways. Physical security keys, available in USA and Bluetooth versions, allow only the bearer of security keys to have access to accounts and data, making it the most secure way.

Conclusion

Never share your passwords; it is meant to be private. Keep changing your password after the interval of 3 months. Install an up-to-dated antivirus software to protect your device against any malware. And use a reliable VPN if you are using a free Wi-fi outside.