Nowadays, it seems like we need a code or password for just about everything: when we unlock our phone, access our bank, or check social media.
But are you still using your first pet’s name as your password? If that’s you, read on, because one of the simplest ways to stay safe online is to strengthen the way you protect your information online.
Cyber criminals often try to break into our email, banking, shopping or social media accounts because so much of our daily activities happen online. The good news is that two simple habits can make a very big difference: using strong pass phrases and turning on multi-factor authentication (MFA).
What is a pass phrase?
A pass phrase is a safer, more modern version of a password. Instead of using a single word, a birthday, or a pet’s name, a passphrase uses several random words joined together. When the words are unrelated, the pass phrase becomes extremely difficult for anyone else to guess. A strong pass phrase should be at least fourteen characters long and include four or more random words. For example, something like ‘garden river reading coffee’ is easy to say and remember, but extremely hard for a cyber criminal to crack.
Using a different pass phrase for each account is just as important. If one service is hacked and your passphrase is stolen, the others will remain safe. Many people find it difficult to keep track of several long phrases, so a password manager can help. A password manager stores your passphrases securely and fills them in for you when you need them. Then you only need to remember that one main password for your password manager.
What about MFA?
Alongside strong pass phrases, MFA adds another protective layer. This is sometimes called two-step verification. It works by asking for two forms of proof when you sign in. The first proof is your passphrase. The second might be a code sent to your phone, a code generated by an app, or a prompt asking you to confirm the login.
This extra step is quick, but it makes it much harder for someone else to get into your account. MFA stops most attacks, even if a cyber criminal manages to guess your passphrase because they don’t have that second piece of the puzzle. This is the reason why banks, government services and major companies rely on MFA to protect people’s personal information.
Options for setting up an MFA can usually be found in the Security or Login sections in the account settings of your device.
Always remember
If you ever receive a notification with a login code when you are not trying to sign in to a service, that is a fairly good indication that someone else may be attempting to access your account. Do not enter the code. Instead, ignore it and change your pass phrase as soon as possible.
Strong pass phrases and MFA work together to keep your accounts secure. They help protect your money, your identity and your privacy.
These steps take only a few minutes to set up and offer powerful protection against some of the most common online threats, keeping your information safe.