Common security practices I wish I never saw

I see these day in and day out.

The practices that would would make any computer security expert scream and pull out their hair.

To be fair, many consumers just don’t know and aren’t really told about these.

  • Use of the same password on multiple services.
    • The danger? One weak service leaks the password, or it’s guessed, and the bad guys will try it everywhere else.
  • Use of “simple” passwords. Using no capitals or numbers at least.
    • You’d think it would be self explanatory but people still do it because “it’s easier”. Yes, for the bad guys.
  •  Running without any protection or using poor practices when holding OTHER peoples information.
    • I see this more often than I should. Doctors, lawyers, accountants, etc. running without any security in place, these are prime targets.
  • People using the same passwords for years.
    • Passwords are guessed all the time, no matter how secure. Mix it up twice a year.
  • People saying that if they get infected it won’t hurt anyone else.
    • On the contrary. Countless PCs everyday are infected and turned into “bots”. You could unwittingly be contributing to being a “spambot” or helping some jerk DDOS a website off the net. Not to mention your address book being a fresh target list.
  • Accessing your secure information in an unknown environment.
    • Just because you trust your friends or family, don’t trust their computer security. Sensitive information is to be trusted with no one but yourself. Don’t use open PCs to check your Facebook. Don’t check your bank account at a friends house.

These may all sound like paranoid ramblings, but it happens every day.
With a few steps however, you can greatly reduce your chances of infection and identity theft.
I tell my customers all the time: “Pretend like they are out to get you, because they are”.

If you need help with passwords, I suggest using KeePass.
It’s free, open source, and works on a variety of platforms (Windows, Mac, Linux, android, iOS, etc).
Not only will it store your passwords securely, but it will also help you create some!

UPDATE (11/09/2020): While KeePass is nice, I’ve long since moved to LastPass.
It allows me to store my passwords in the cloud, access from all my devices, and can auto-fill forms when I have the browser plugin installed.

Don’t forget to use proper antivirus. No free junk, no “my buddy gave it to me” antivirus, no knock off brand cause it’s cheap.
Save yourself the headache and get the good stuff.
It’s far cheaper to protect than it is to repair.

One thought on “Common security practices I wish I never saw

  1. Pingback: Keeping the doors locked - CWs Blog

Leave a comment