Sounds serious, what’s that mistake then? Using the same password for everything! (facepalm)
But how could someone find out your “secure” password?
It’s unlikely that burglars will break in and rummage through your post-it notes to find your password. Most passwords are stolen using a technique called phishing. Phishing is where someone tricks you into revealing your sensitive information such as usernames or passwords.
They generally do this by spoofing an email, with a fake one that takes you to a site that looks just like the real thing. You might be thinking right now that you wouldn’t fall for this, you’re too streetwise – well, never say never. Hackers efforts are getting more and more convincing.
But what if someone sent you, or one of your team, an email that looks like it’s from Google saying they need you to reset your password. Would you be able to spot that?
Probably not, so you go ahead and type in your “secure” password into this fake Google website and within seconds a whole army of nasty bots have hacked your accounts. Locking you out of your email, social media channels, backups, even your online banking. Could you afford this to happen?
So this is serious, but luckily there is a simple fix.
You need to download and use a password manager, to make very strong passwords. For the sake of a few quid and an extra click when you login, at least you’ll have the peace of mind of personal data security.
We swear by LastPass – and our insurers like that we use a password manager too. We’d recommend you get straight on it and get your passwords sorted.
If you’ve got questions about securing your website and logins then get in touch, we’re Cyber Essentials Certified and are very good at giving jargon-free advice that will help your business succeed online.