Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Google recommends changing your password twice a year

Google offers online safety tips

Article comments

Change your passwords twice a year and never reuse them. Those are a few of the tips Google lists in an online security checklist that helps people stay one step ahead of the scammers.

With most Internet users now wary of spam messages, fraudsters have increasingly focused on popular web services such as Gmail, Facebook, Yahoo and Hotmail. They break into accounts and then send their messages to the victim's contacts, hoping that the spam will be more effective because it comes from a friend. "People are far more likely to respond to a message from someone they know," said Andrew Brandt, lead threat researcher with antivirus vendor Webroot, speaking via instant message.

The spam can include links to fraudulent pharmaceutical websites, phoney phishing pages or pleas for money. In one scam that has been run for more than a year now, the criminal pretends that he's trapped in a foreign country and asks friends of his victim to wire him funds.

Victims usually don't know how their accounts were compromised, but according to Google there are several ways this can happen. User names and passwords are often stolen in phishing attacks or via malicious software that records them as they are typed into the computer. Sometimes the criminals hack into websites that are linked to Google accounts. "If that site is hacked and your sign-in information is discovered, the hijacker has easy access to your Google Account,' wrote Priya Nayak, an online operations strategist with Google.

And sometimes the bad guys simply guess right. "You use a password that’s easy to guess, like your first or last name plus your birth date ('Laura1968'), or you provide an answer to a secret question that’s common and therefore easy to guess, like 'pizza' for 'What is your favourite food?,'" Navak wrote. Keeping your password changed, and using one that's hard to guess, can help thwart many of these techniques.

Webroot's Brandt said that Google's advice for twice yearly changes is reasonable. He thinks people should change their passwords as often as they can. "I change my passwords at least four times a year, but I'm a security nerd and use password manager software which generates the passwords and reminds me to change them."

Brandt users a password manager that comes with Webroot's security software, but there are free options too. LastPass and Keepass are two popular choices. Even with password managers, it's a chore to keep on top of all the different log-in information that most people need to surf the Internet. But for important accounts, the work is worth it, according to Google.

"Online accounts that share passwords are like a line of dominoes," Nayak wrote. "When one falls, it doesn’t take much for the others to fall, too. This is why you should choose unique passwords for important accounts like Gmail (your Google Account), your bank, commerce sites, and social networking sites."

Released last week, Google's checklist includes 18 basic security tips that everyone using the Internet should know.



Share:

More from Techworld

More relevant IT news

Comments

Terry Collmann said: FFS who can remember two dozen or more passwords I try to make every password different using an easy for me to remember generator for each site but even so - roll on thumbprintiris recognition on PCs



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *