Tag Archives: password managers

Tech Trends/Lifestyle, Online Safety, How To, home, #VZWBuzz Mobile Lifestyle Chats

Secure Your Data with a Password Manager

28/03/2020 Tracey Dowdy 1 Comment

By Tracey Dowdy

Still using your birthday as your password? Your child’s birthday? Your anniversary? That’s what a friend of mine that works in online security refers to as “One, two, three, four, come on hackers, open the door” kind of protection.

During this season when so many of us are working from home, secure passwords are more important than ever. If you’ve been online for years, the prospect of securing all those accounts may seem daunting. But, the risk of leaving your personal information vulnerable to hackers far outweighs any potential cost or inconvenience. That’s why you need to start using a Password Manager which serves as an encrypted database of all your passwords. Instead of writing them on post-it notes you’ll lose or saving hem in a note or memo on your phone which could be lost, stolen, or hacked, do yourself a favor and remember one – the one that unlocks the vault – your password manager.

Here are three of the best options out there.

LastPass remembers all your passwords across devices for free. It’s particularly useful for online shopping as once you’re logged in, LastPass auto-populates all the necessary fields, and allows you to store more than just passwords to your online accounts – you can store insurance cards, memberships, and Wi-Fi passwords and safely share passwords and notes with sensitive information with anyone via encrypted text. There are paid versions, but the free version offers everything the average user will need.

Zoho Vault is great if you have to share access within a workgroup. Passwords are encrypted with the strongest encryption standard (AES-256); enables you to provide passwords to users and groups in bulk while instantly denying access to any user who is removed; enables direct connection to websites and apps without having to manually enter login credentials; allows you to grant different access privileges to select individuals; and generates reports to keep track of which users have access to various passwords. There are free and paid versions with a 15-day free trial on paid editions.

Dashlane syncs across all your Windows, macOS, Android, and iOS devices, provides all the essential and advanced password management features of many pricier versions, includes VPN protection, and will even scan the Dark Web for compromised accounts and capture your online shopping receipts. The biggest downside is the cost. Though there is a free version, some of the features users really want are only included in the paid versions, and there is limited support for Internet Explorer users.

Tracey Dowdy is a freelance writer based just outside Washington DC. After years working for non-profits and charities, she now freelances, edits and researches on subjects ranging from family and education to history and trends in technology. Follow Tracey on Twitter.

Online Safety, How To, home

Create and Store Strong Passwords

05/03/2020 Tracey Dowdy 44 Comments

By Tracey Dowdy

By now we all understand the absolute importance of strong passwords to protect our personal data. Post-it notes get lost, hard copies kept in diaries and planners can be compromised, and smartphone memos and notes are also at risk.

The trick is to create and remember unique passwords for all your accounts. According to LogMeIn, which makes the LastPass password manager, it’s not uncommon for users to have 85 passwords for all your accounts, from banking to streaming to social media, making it impossible for the average individual to remember them all without help.

And although password security isn’t an iron-clad guarantee that your data will never be compromised or hacked, it certainly minimizes your risk. These tips will help you create, manage, and store secure passwords.

Write them down. That may seem counterintuitive, but if you have a safe, firebox, or file cabinet that can be locked, you can go old-school and write it down. Just be sure you limit the number of people who know you’ve written them down and where you store them.

Use a Password Manager. The best passwords are longer than eight characters, are hard to guess and comprised of a variety of characters, numbers and special symbols. The problem is those same features that make them hard to guess also make them hard to remember especially if you’re smart enough to use unique passwords for each account. Password managers like Dashlane, 1Password, and LastPass create secure, complex passwords and store them in an encrypted database.

Monitor whether your passwords have been compromised. Mozilla’s Firefox Monitor, Have I Been Pwned, and Google’s Password Checkup can show you which – if any – of your email addresses and passwords have been compromised in a data breach.

Avoid using birthdays, anniversaries, and other common passwords. Passwords like password, 123456, qwerty, or your birthday, anniversary, child, spouse or pet’s name are among the most common and easily guessed. If you’re using one or any of these, stop reading and go change it now!

The bigger the better. Eight characters are generally the suggested length for secure passwords but don’t be afraid to use more. The challenge, of course, becomes trying to remember those long, complicated characters, but that’s why password managers come in handy.

Don’t repeat your passwords. One of the biggest and most common mistakes we make, even with complex passwords, is repeating them across accounts. Don’t do it. Once they’ve guessed it for one, hackers will attempt to access other accounts leaving your data vulnerable.

Use two-factor authentication (2FA) Along with a complex, secure password, you should also use two-step verification (2FA) for an additional layer of protection so even if hackers guess your password, there’s an additional layer of protection. When you use 2FA, once the password is entered, you’ll be sent a one-time code – usually via text – so that only you can access the account. Without entering that code, the account remains locked.

Use an authentication app like Authy, Google Authenticator or Microsoft Authenticator instead of text messaging in 2FA. Once you’re set-up, you can choose to register your device or browser so you don’t need to keep verifying it each time you sign in.

By the way, a survey by the UK’s National Cyber Security Centre (NCSC), analyzed passwords belonging to accounts worldwide that had been breached. They also discovered that codes using names, sports teams and swear words are more popular than you might think.

The top 10 most common passwords were:

123456
123456789
qwerty
password
111111
12345678
abc123
1234567
Password1
12345

So, if you’re “protecting” yourself with any of those, it’s not a matter of “if” you’ll be hacked but “when.”

How To, home, Tech Trends/Lifestyle, Online Safety

Secure Your Amazon Account

04/03/2020 Tracey Dowdy 314 Comments

By Tracey Dowdy

My debit card was recently compromised. Fortunately, seeing a charge for $500 worth of alcohol out of state was a red flag and I was able to correct the security breach before any additional charges were made. It made me hyper-aware of how easily our bank accounts and personal information could be accessed by individuals with criminal intent.

It’s not just skimmers at gas pumps, or ghost ATM’s and fake fronts, sometimes we do the leg work for the criminals by leaving our personal information vulnerable online. Think about how many online accounts you have with your credit card or other banking information stored. Your Amazon account may be the granddaddy of them all – not only is your address, shopping habits, preferences, and debit or credit card tied to the account, if you’ve shipped items or gifted services to friends and family, their address is available too. There’s no time like now to ensure your information – and theirs – is protected.

Start by making sure that the information linked to your Amazon account is up to date. Sign in to your account, click on Login & security and confirm your email address and phone number are accurate. If a hacker were to attempt accessing your account or try to change your security settings, Amazon will send you an email to confirm you are the one making the changes, and having a phone number linked to your account acts as a backup method to receive one-time passcodes.

Second, make sure you have a secure password, one that is unique to Amazon and not used across multiple platforms. Use a random password generator from a reputable site like Norton or choose from this list from CNET. Once you’ve come up with a new, secure password, go to Edit next to the password field under Login & Security. Enter your current password, copy and paste the new one, and then click Save changes.

You should also use two-step verification for an additional layer of protection. Password managers not only store your assigned password, but they also store the one-time passwords – OTP – that two-step verification uses. Once you turn it on, after entering your password, you’ll receive a text (or see it in an app – see below) with a one-time code to enter to complete the login. You cannot access the account without both. To turn on two-step verification, go to Login & security, and click the Edit button next to the 2SV settings, and then click Get started.

You have two options to receive your OTP codes: via text or via the Authenticator app. If you choose text, you’ll receive a message with your OTP code whenever you log into your Amazon account. If you choose the Authenticator app, you can access your code within your password manager or a dedicated authenticator app like Google Authenticator.

If you choose an Authenticator app, use your preferred app to scan the QR code. The app will display a six-digit code – simply enter it and click Verify OTP to continue.

On the next page, click Got it. Turn on Two-Step Verification.

This page will walk you through the process for signing into devices that can’t display the OTP prompt – e.g. your Kindle. Instead, you’ll need to enter your password followed by the OTP code in order to sign in.