Earlier this week, a large security vulnerability called Heartbleed emerged. This vulnerability allows intruders to trick servers into leaking your personal data.
The risk of a "heartbleed" vulnerability is that it lurks deeper than a common application because it can be easily solved by upgrading the application.
Services that send security information from websites such as Gmail and Facebook may be affected by the heart bleed vulnerability.
The heartbleed vulnerability affects various versions of OpenSSL-supports data encryption standards for most network services. This vulnerability was initially discovered by the security company Codenomicon team and Google's security officer Neel Mehta.
OpenSSL has released an emergency update program, but we still need to take additional measures to ensure your personal data security.
The best way to protect yourself from the "heartbleed" vulnerability is to not only update your password, but also ensure that the password you choose is not easily cracked. The following tips help you build a reliable, strong password that is not easily accessed by others.
1. Make sure your password is long enough.
The more letters you have in your password, the less likely your password will be guessed by others. Google and Microsoft both believe that the longer the password, the more secure it is. Microsoft recommends that your password contain at least 8 letters. Most websites have the minimum number of letters required for password settings, which effectively prevents you from using a password with four letters that are easily guessed.
2. Try to arrange password letters randomly.
If the password you use is a common word or phrase, your password will not be valid for a long time because it is easy to be guessed. You 'd better use a random combination of letters, numbers, and symbols. Do not use your name or company name as your password, or use a word as your password. Your password should contain a series of uppercase and lowercase letters, numbers, and symbols.
3. Replace the correct spelling words with incorrect spelling.
If you are going to use words or phrases in your password, deliberately using the wrong spelling is also a good way to prevent the password from being guessed by others. You can replace letters with symbols and numbers. For example, if you want to use "I love soccer" in your password, you can change it to "1LuvSoCC3r! 1 "to make it safer.
4. do not apply the same password to multiple accounts.
Do not apply the same password to all your accounts. Otherwise, if attackers find a password, they may access all your personal pages and accounts. You should also make sure that each password is different from the one you previously set or another existing password.
5. Avoid being mentally retarded.
If you are still not sure about the difference between strong passwords and mentally retarded passwords, do not use these passwords: abc1234, password, admin, iloveyou, and aaaaaa. When Adobe's system was attacked by hackers in last December, they all cracked simple and low-level passwords.
6. Write the password by making sentences.
Another good way to write strong passwords is to come up with a sentence that you can easily remember and rewrite it. For example, you made a sentence "My favorite animal is the koala bear ". Now, you can use the first letter of each word in the sentence, add some punctuation marks, and replace some letters with numbers. In this case, the password is mFA1tkB !.
7. Use applications and tools to create and manage passwords.
Sometimes, even if you follow the tips listed above, it is hard to come up with a secure password that you can remember. Fortunately, we have some trustworthy applications and services that can help you solve this problem.
For example, LastPass can save all your important passwords in a safe place for unified management. This application encrypts your data and password list to prevent others from seeing them. In addition, it also provides two-step authentication methods for you to choose from: it contains a password generator that can create random passwords that are almost impossible for others to guess. The free desktop version of LastPass saves the password on the LastPass when you log on to a new website. However, you must use the advanced reservation service ($12 per year) to use the mobile LastPass.
In addition, LastPass also provides a useful tool to tell you whether your website is affected by the Heartbleed vulnerability.
The 1Password application is another option to enhance your password security. The app is priced at $17.99 and offers many features similar to LastPass, including password generator and secure encryption. It also has a browser plug-in that can be synchronized with your desktop. (BI Chinese site)