Posted on Dec 8, 2014
PO1 Master-at-Arms
4.28K
10
17
1
1
0
The Iranians are at it again, probing and exploring cyber vulnerabilities. As if Stuxnet was not enough for them:

http://www.cnbc.com/id/102234825

Do you have a plan of action in case you become a victim? What do you observe in cyber community that you consider the cause for alarm?
Avatar feed
Responses: 9
TSgt Joshua Copeland
1
1
0
it should be a passphrase (with special char, numbers, etc) not a password.
(1)
Comment
(0)
SGT Microwave Systems Operator/Maintainer
SGT (Join to see)
10 y
Password strength
The special characters, numbers, etc are good but only if you don't follow conventional rules. Things like '$' instead of 's' and '3' instead of 'e' are standard replacements that are automatically tried by hacking tools like hashcat. In addition, something like 70% of people place a string of numbers at the end of a password instead of placing them throughout. A longer password is your best defense. For my private accounts (especially banking or store accounts) I use 1Password. They are a password generation service that creates truly random passwords but does NOT store them on a server. The only backup of your passwords is on your computer and even that backup is encrypted (1Password suggests a minimum 20 character password). I use the longest password allowed by each website.

Relevant XKCD comic attached.
(0)
Reply
(0)
Avatar small
LTJG Robert M.
1
1
0
Employing Holistic security, considering all of the entry points, not just Passwords, full defense in depth, two factor secondary authentication, encryption, backup, data loss prevention. Takes more than anti-virus folks!!

Never use information you have posted to social media accounts as password information!!

Average time a hacker is in your system before detection by a 3rd party is 243 days. Do you have a 90 Day password policy?? Hows that working for you??
(1)
Comment
(0)
Avatar small
SSG Tim Everett
1
1
0
All of my passwords are at least 16 digits long and they are randomly-generated strings of nonsense. I also am very careful as to what I browse online.
(1)
Comment
(0)
PV2 Senior Web Designer, Web Team Lead
PV2 (Join to see)
10 y
Very wise to do so. Wish others were wiser.
(0)
Reply
(0)
Avatar small

Join nearly 2 million former and current members of the US military, just like you.

close