I’m not saying passwords aren’t hacked, but the majority of hacking is done in bulk fashion by breaking into company computers, not knocking off employees one-by-one.
I love my new job. I thought that would be a good way to start this entry because today there’s something I didn’t like at work. I had to change my password.
For those who don’t work in a business environment user names and passwords are critical for accessing data and communicating with co-workers. My work computers won’t work without the proper username/password combo.
At this company your password must be changed every 90 days. Simple so far. It must contain upper and lower case letters plus a number or two. Punctuations are encouraged, but I haven’t crossed that line yet.
Once I changed my password it was necessary to update all the devices I use, like my cellphones and a handful of PCs.
Correct me if I’m wrong. The vast majority of us use one or two or a handful of passwords for the myriad sites that require one. I’m in the half dozen range.
That’s already tough enough to remember. Now I’ve got a password that’s specifically designed to be difficult to remember and which must be changed regularly!
I would buy into all this if password hacking was a big deal. It’s not. I’m not saying passwords aren’t hacked, but the majority of hacking is done in bulk fashion by breaking into company computers, not knocking off employees one-by-one¹.
When individual user passwords are revealed it’s usually because they’re given away in social engineer schemes, like phishing. This password changing won’t stop that.
Most of us aren’t worth enough for someone to spend the time and energy necessary to hack our accounts. I’m certainly not.
I change my password because my bosses have asked me. I’m a good employee. I’m just not sure how much we’re accomplishing.
¹ – “Hacking” of voicemail accounts by Rupert Murdoch’s News of the World is heavily in the news right now. I think, as the story comes into focus, we’ll see it’s not really hacking that’s been done, but bribing people with access to share that access.
Hacked! I’ve been hacked again. I hate it when that happens, but if you run a website it will happen sooner or later. This wasn’t my first time.
I cleaned out as much of the wound as I could. There are probably a few small pieces still hanging around in hidden recesses of my server. After years of hosting websites my directory tree already looks like that drawer in the kitchen where you throw everything that has no real place to go. That makes searching more difficult.
The hack itself wasn’t going to infect you as a reader, but it did plant seeds for further, deeper hacks. I cleaned those out.
I host a bunch of sites from this server. All of them were hit to some extent.
The point of entry was my FTP (file transfer protocol) account. I found strange activity in the logs. The attack looks like it came from a computer in Australia, though hackers seldom leave a direct trail that can be easily followed.
I’ve changed my password. That may or may not help.
It’s frustrating. It’s time consuming. It will happen again.
Seriously, is there anyone who doesn’t use the same password on more than one account? I already balance five or six passwords in my head. One for each site I visit would be nuts!
I checked in with Gmail a little earlier. Those Google boys run all my email accounts. There was a message with scary red type. Someone had logged into my account from China! The Gmail crew was wondering whether that was OK by me?
I’m a tech savvy guy. It really was from Gmail containing some details no spammer could ever conjure.
I have accounts on lots of sites. Many use the same password. That’s probably how whoever broke in gained access. This is the kind of password you can’t just guess. It’s now changed.
Thankfully this particular password wasn’t associated with any account that has access to my money. It was however my favorite. I’ve used it since the early days of the Internet.
I looked through Gmail again after the change. Everything seems intact. This should be an effective remedy.
It’s time we found a way to replace passwords. Seriously, is there anyone who doesn’t use the same password on more than one account? I already balance five or six passwords in my head. One for each site I visit would be nuts!