The Do’s and Don’ts to Choosing a Great Password

Weak passwords can compromise the best security tools and controls. With a never-ending list of applications and services that users and consumers access, people may have dozens of passwords to maintain at any given time. Often, the temptation to use familiar terms such as pet names, favorite teams or the names of children or friends can cause risk since much of those details can be discovered by a simple examination of social media.

Creating strong passwords offers greater security for minimal effort. Weak passwords can compromise the best security tools and controls. With a never-ending list of applications and services that users and consumers access, people may have dozens of passwords to maintain at any given time. Often, the temptation to use familiar terms such as pet names, favorite teams or the names of children or friends can
cause risk since much of those details can be discovered by a simple examination of social media.

Under Lock and Key
You can buy a small padlock for less than a dollar—but you should not count on it to protect anything of value. A thief could probably pick a cheap lock without much effort, or simply break it. And yet, many people use similarly flimsy passwords to “lock up” their most valuable assets, including money and confidential information. Fortunately, everyone can learn how to make and manage stronger passwords. It is an easy way to strengthen security both at work and at home.

What Makes a Password ‘Strong’?
Let’s say you need to create a new password that’s at least 12 characters long, and includes numerals, symbols, and upper- and lowercase letters. You think of a word you can remember, capitalize the first
letter, add a digit, and end with an exclamation point. The result: Strawberry1!

Unfortunately, hackers have sophisticated password-breaking tools that can easily defeat passwords based on dictionary words (like “strawberry”) and common patterns, such as capitalizing the first letter.
Increasing a password’s complexity, randomness, and length can make it more resistant to hackers’ tools. For example, an eight-character password could be guessed by an attacker in less than a day, but a 12-character password would take two weeks. A 20-character password would take 21 centuries. You can learn more about creating strong passwords in your organization’s security awareness training. Your organization may also have guidelines or a password policy in place.

Why Uniqueness Matters
Many people reuse passwords across multiple accounts, and attackers take advantage of this risky behavior. If an attacker obtains one password—even a strong one—they can often use it to access other valuable accounts.

Here is a real-life example: Ten years ago, Alice joined an online gardening forum. She also created an online payment account and used the same password. She soon forgot about the gardening forum, but someone accessed her payments account years later and stole a large sum of money.

Alice did not realize the gardening forum had been hacked, and that users’ login credentials had been
leaked online. An attacker probably tried reusing Alice’s leaked password on popular sites—and
eventually got lucky.

Guarding Your Passwords & PINS. Passwords and PINS protect sensitive data and it's critical to keep them safe. Try these best practices to stay protected.

1. Do not write them down – Many make the mistake of writing passwords on post-it notes and
leaving them in plain sight. Even if you hide your password, someone could still find it. Similarly, do
not store your login information in a file on your computer, even if you encrypt that file.
2. Do not share passwords – You cannot be sure someone else will keep your credentials safe. At
work, you could be held responsible for anything that happens when someone is logged in as you.
3. Do not save login details in your browser – Some browsers store this information in unsafe
ways, and another person could access your accounts if they get your device.
4. Use a password manager – These tools can securely store and manage your passwords and
generate strong new passwords. Some can also alert you if a password may have been
compromised.
5. Never reuse passwords – Create a unique, strong password for each account or device. This
way, a single hacked account does not endanger other accounts.
6. Create complex, long passwords – Passwords based on dictionary words, pets’ names, or other
personal information can be guessed by attackers.

Coming from sunny southern California, there’s nothing quite as nice as an aimless, leisurely drive down the coast. As delightful as that is, it’s not a metaphor for life. Life is complicated and moves fast. It’s easy to get sidetracked. That’s why when it comes to any of your goals, especially financial independence, a clear vision of what you’re working towards and a developed idea of the best way to get there will keep you in route to your goal. Many folks have a general idea of where they want to go. They want to be fiscally responsible, perhaps investing in a home and saving for retirement while still prepared for the financially unexpected. However, 1 in 3 Americans have less than $5,000 saved for retirement and only 16 percent of those surveyed had more than 15 percent of their income saved. We know that most people have good intentions. So why do their actions take them so far away from their goals?

It all comes down to that lack of a map – not having a well-defined goal and detailed route to get there. Yes, it’s good to know that you want to be fiscally responsible, but if you don’t have a detailed definition of what that means, how do you know when you’ve achieved it? What are you saving for? How much do you need to save for retirement and how much do you need in your emergency fund? What other financial goals do you have, and which ones take priority? Lacking those details may make it easier to get distracted by impulse purchases or detoured by a financial commitment that might not be the best for your budget or your long-term financial goals.

Once you have the destination, then you need to determine the most direct route to get there. Do you have a distinct budget for all your needs and your goals? Are you going to have a monthly amount deducted from your account to your savings goals? Have you considered the influences that work against your goals and what you might do to counter them? Having a distinct plan doesn’t mean that everything is settled. Circumstances may arise that distract or reprioritize your goals. Having a definitive plan, though, can help you recalibrate your course and prevent you from being shifted away from your goals long-term.

The road to your financial independence is oftentimes anything but direct. Between relationships, families, career, health and everything in between, it’s easy to lose sight of your goals. Yet, by thinking things through and creating a detailed plan, we can stay on course. Despite every fork in the road, every decision that tempts us away from our goals, we are able to remember what we’re saving for and the right steps we put in place to get there, which makes it easier to stay on course to our financial independence.

1. https://www.cnbc.com/2018/08/27/1-in-3-americans-have-less-than-5000-dollars-saved-for-retirement.html
2. https://www.cnbc.com/2018/03/15/bankrate-65-percent-of-americans-save-little-or-nothing.html