Comments on: Using the same password for every website can spell trouble http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html Thu, 09 Feb 2012 13:34:16 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: LastPass may have been hacked. Is the "master key" to your online account still safe? | Sync™ Blog http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html/comment-page-1#comment-51381 LastPass may have been hacked. Is the "master key" to your online account still safe? | Sync™ Blog Thu, 05 May 2011 13:41:30 +0000 http://www.sync-blog.com/?p=3278#comment-51381 [...] PayPal, or banking may be a little tougher. And because we’ve already covered why having one password for every account is a bad idea, many people turn to services like LastPass that can act as the only password you’ll ever [...] [...] PayPal, or banking may be a little tougher. And because we’ve already covered why having one password for every account is a bad idea, many people turn to services like LastPass that can act as the only password you’ll ever [...]

]]> By: ptcruiser http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html/comment-page-1#comment-20957 ptcruiser Tue, 01 Sep 2009 12:10:06 +0000 http://www.sync-blog.com/?p=3278#comment-20957 LisaB Thanks for the further info. I'm leaning towards mitto~~the price is sure right!! I have had a "brush" with identity theft quite some time ago.The only advice the police could give me was to have an unlisted telephone number and buy a good confetti shredder.I do those things still today.The person got my name and address straight out of the phone book and her first and last name was the same as mine, including the spelling. For those reasons, I try to be as cautious as I possibly can without progressing to paranoid!!! I really do enjoy the practical info I get here. Thanks again, Lisa LisaB
Thanks for the further info. I’m leaning towards mitto~~the price is sure right!!
I have had a “brush” with identity theft quite some time ago.The only advice the police could give me was to have an unlisted telephone number and buy a good confetti shredder.I do those things still today.The person got my name and address straight out of the phone book and her first and last name was the same as mine, including the spelling.
For those reasons, I try to be as cautious as I possibly can without progressing to paranoid!!!
I really do enjoy the practical info I get here.
Thanks again, Lisa

]]> By: Lisa B http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html/comment-page-1#comment-20934 Lisa B Mon, 31 Aug 2009 22:08:26 +0000 http://www.sync-blog.com/?p=3278#comment-20934 In my experience, people end up using the same password for everything because it's too inconvenient/difficult otherwise. Even with a "system" of passwords (different ones for different account types), it's difficult because sites have different requirements (some only let you have a password that is 4 digits long). Using a password manager brings the usability/convenience dimension into the conversation. Now, I was cautious when I first encountered the concept of storing all of your passwords in one place. I'm not sure how other services work, but there are a couple of things that helped me to make my decision: 1. You always need more than one piece of information to access your passwords. They have it set up just like the banks do. If you sign in from an unrecognized computer, you will be sent a one-time text message to your phone. So if someone does get your password, you they would need to have your cell phone as well to be able to log in. the chances of them having both things is much less likely. If you want to change your password, you need to have answers to at least 2 security questions. These multiple levels of security make a breach less likely. 2. They are certified by McAfee and TRUSTe 3. I am able to log into sites that I would not normally log into very often because it's so easy (just click and log in). This is important because if there is any suspicious activity on any of these accounts, I can identify it early and address it. The top defense against fraud and identity theft is early detection. Ultimately, if you don't feel comfortable storing passwords to important sites online, you shouldn't. However, I don't know about you, but I have logins to all sorts of unimportant sites (so many sites require a login these days!). Using a service like Mitto could allow you to handle these passwords. In my experience, people end up using the same password for everything because it’s too inconvenient/difficult otherwise. Even with a “system” of passwords (different ones for different account types), it’s difficult because sites have different requirements (some only let you have a password that is 4 digits long). Using a password manager brings the usability/convenience dimension into the conversation.

Now, I was cautious when I first encountered the concept of storing all of your passwords in one place. I’m not sure how other services work, but there are a couple of things that helped me to make my decision:

1. You always need more than one piece of information to access your passwords. They have it set up just like the banks do. If you sign in from an unrecognized computer, you will be sent a one-time text message to your phone. So if someone does get your password, you they would need to have your cell phone as well to be able to log in. the chances of them having both things is much less likely. If you want to change your password, you need to have answers to at least 2 security questions. These multiple levels of security make a breach less likely.
2. They are certified by McAfee and TRUSTe
3. I am able to log into sites that I would not normally log into very often because it’s so easy (just click and log in). This is important because if there is any suspicious activity on any of these accounts, I can identify it early and address it. The top defense against fraud and identity theft is early detection.

Ultimately, if you don’t feel comfortable storing passwords to important sites online, you shouldn’t. However, I don’t know about you, but I have logins to all sorts of unimportant sites (so many sites require a login these days!). Using a service like Mitto could allow you to handle these passwords.

]]> By: ptcruiser http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html/comment-page-1#comment-20929 ptcruiser Mon, 31 Aug 2009 21:26:30 +0000 http://www.sync-blog.com/?p=3278#comment-20929 Is it really safer to use a service that would ultimately have ALL of your passwords???I mean no disrespect, I'm just not very computer savvy. Is it really safer to use a service that would ultimately have ALL of your passwords???I mean no disrespect, I’m just not very computer savvy.

]]> By: Lisa B http://www.sync-blog.com/sync/2009/08/using-the-same-password-for-every-website-can-spell-trouble.html/comment-page-1#comment-20914 Lisa B Mon, 31 Aug 2009 16:36:47 +0000 http://www.sync-blog.com/?p=3278#comment-20914 Using a secure password manager, such as Mitto (http://mitto.com) can allow you to effectively create and manage strong, unique passwords for each of your sites. They even have additional security required to log from new computers (it sends unique one time codes via text message, just like my bank). Oh, and it's free! Using a secure password manager, such as Mitto (http://mitto.com) can allow you to effectively create and manage strong, unique passwords for each of your sites. They even have additional security required to log from new computers (it sends unique one time codes via text message, just like my bank). Oh, and it’s free!

]]>