Web Safe…Password Safe in Today’s Environment

Use Long and Complex Passwords

• Length: A password should be at least 12-16 characters.

• Complexity: Include a mix of upper and lower case letters, numbers, and special characters (e.g., @, #, %).

• Avoid Common Words: Don’t use easily guessable passwords like “password123,” your name, or common dictionary words.

2. Use a Password Manager

• A password manager can generate and store long, complex passwords for all your accounts. This makes it easier to use unique passwords for each site without having to memorize them.

3. Enable Two-Factor Authentication (2FA)

• Add an extra layer of security by enabling 2FA wherever possible. This typically involves receiving a code on your phone or through an authenticator app in addition to entering your password.

4. Use Unique Passwords for Each Account

• Don’t reuse passwords across multiple sites. If one account gets compromised, it won’t affect your others.

5. Change Passwords Regularly

• Periodically change passwords, especially for critical accounts (e.g., banking, email, etc.).

6. Avoid Password Hints and Security Questions

• Avoid using obvious hints or answers to common security questions, like your mother’s maiden name or your pet’s name.

7. Monitor Your Accounts for Suspicious Activity

• Regularly check your accounts for any unauthorized or unusual activity. Many services offer alerts if there are logins from unknown locations or devices.

8. Use Passphrases

• Instead of just a random combination of characters, use a passphrase—combining multiple unrelated words to create a long, memorable, and complex password. For example: Giraffe%Sushi3Wind!

9. Secure Your Devices

• Ensure your devices are secure with strong passwords or biometric authentication (fingerprint, face recognition). If your device is compromised, your passwords could be too.

 Setting up Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security by requiring something you know (your password) and something you have (usually a code sent to your phone or an app). Here’s how to set it up:

Step-by-Step for Common Platforms:

• Google Accounts:

  1. Go to your Google Account: myaccount.google.com.

  2. Select Security from the left-hand menu.

  3. Under “Signing in to Google,” select 2-Step Verification.

  4. Click Get Started and follow the prompts to set up 2FA. You’ll be asked to verify your phone number and choose a second method (such as receiving codes via text or using an authenticator app).

• Apple ID:

  1. Open Settings on your iPhone or iPad.

  2. Tap your name at the top of the screen, then tap Password & Security.

  3. Tap Turn On Two-Factor Authentication.

  4. Follow the prompts to enter your phone number for receiving verification codes.

• Facebook:

  1. Go to Settings > Security and Login.

  2. Find Two-Factor Authentication and click Edit.

  3. Choose how you want to receive your code (via text or an app).

  4. Follow the prompts to finish the setup.

• Instagram:

  1. Open Instagram and go to Settings > Security > Two-Factor Authentication.

  2. Select either Text Message or Authentication App to get the verification code.

  3. Follow the prompts to enable.

Tip: The most secure 2FA method is using an authenticator app (like Google Authenticator or Authy) rather than relying on SMS, as SMS can be intercepted.