The following is a test I made based on best practices methods. If you get more than 80 your pretty safe, between 80 and 40 you’re at risk and below 40 you’re easy to hack and probably you could be already hacked:
1.Do you use the same passwords for all your online accounts?
B. Not all my accounts have the same password
2. If you use different passwords for your accounts, how many characters are different between them?
B. Two minimum
C. More than three
D. Totally different passwords
3. When was the last time you changed your passwords?
A. Less than two months
B. More than two months
C. About a year
D. Don’t know
4. Do your passwords contain your name or any related information to your life? (Pet name, first car, hobby, your company’s name, university…)
B. Only few letters indicating the word
5. Did you share any of your passwords with anyone? (relatives, lovers, partners, family…)
B. Yes, but I changed it to a totally different one
6. What’s the length of your passwords?
A. Less than 8 characters
B. More than 8 characters
C. More than 10 characters
7. Do your passwords contain special characters and numbers (e.g. # ? ! @ etc)?
B. Only Special Characters
C. Only Numbers
8. Do you keep your passwords written or stored digitally?
B. Yes, but in a protected document
Is it really that hard…
1. When someone cracks your password, the first thing they’ll try is to use the password with other accounts. So be sure to use different passwords for each account:
2. You have to make sure that no two passwords are identical, and the less similar they are the better. Once the hacker finds a password, he’ll try it to different accounts, and then he’ll change some of the characters to find the other passwords. This is done using smart algorithms and programs allowing to test hundreds of thousands of different passwords at once:
3. International standards always recommend changing the password every two months (even some standards recommend 45 days). Be sure to set reminders to change your passwords before the end of the recommended period:
4. The first thing a hacker might do to crack a password is gather information about the victim: their name, the names of their family members, pets, car, anything related to them. As such, the hacker can tune the process and gain time to crack the password:
5. Don’t ever share your passwords!! Even your WiFi password at home! When you share your password. This might seem irrelevant to you but some hackers actually analyze the way you think when creating a password based on your WiFi password. This can be harmful for many reasons: People who know your password can share it by mistake (or intentionally) with others, which in turn makes it a tool to identify and help cracking your other passwords:
6. The length of the passwords is important, to crack a string (word) of eight characters is easier than ten. This is a mathematical concern. If you have 4 characters (XXXX) and each X can be a number from 0 to 9, according to the permutation formula of probability, you can write that password in 5,040 different ways. Now imagine including all of the alphabet in it, then the password can be written in 358,000 ways. So a 10-character long password using 22 characters of the alphabet along with 10 digits from 0 to 9 and 5 special characters would mean your password can be written in 160,945,136,352,000 ways. That’s 160 trillion different combinations. You see how important that is?
7. It is important to have a complex password! So if you add both uppercase and lowercase letters, the 160 trillion combinations are doubled:
8. Never write your passwords on sticky notes, word documents or on your mobile phone. Your passwords must be stored in your brain, so make sure to choose an unforgettable complex password:
Note: Please note that this test does not guaranty any full security on your accounts. It just indicates how much your Password Policy is strong and secure. Always consult your ISC guy concerning every change you wish to do, and if you have further questions please do not hesitate to get in touch in the comment box or via email!