The UK’s National Cyber Security Center (NCSC) advises the general public to create passwords using three random but memorable words instead of using a password that contains a series of random characters. I am.
“Three Random Words or #thinkrandom” is one of the most popular pages on the NCSC website, even five years after its first publication. The agency reviewed this idea in a recent post and concluded that choosing a three-word password instead of a complex variation is still a good practice.
According to NCSC, passwords created using three random words are usually longer and difficult to predict by hacking algorithms. Another advantage of using a three-word password is that you can easily remember it and store it in a secure location, such as a password manager.
In contrast, more complex passwords can often be guessed using specialized software. Cybercriminals are targeting predictable strategies aimed at making passwords more complex, officials said. For example, replace the number 1 with an exclamation point or replace the letter “O” with zero. Hackers are aware of such patterns and incorporate them into their hacking software to disable the required security from such passwords.
The three-word password can be easily changed according to the requirements of various websites, rather than using a random string of letters, numbers and symbols.
However, NCSC acknowledges that creating a password using three random words is not a 100% secure system and can train the algorithm to crack the password. Sometimes people can use predictable combinations of words that are easy to guess. The more words you have, the stronger your password will be, but the harder it will be to remember.
As a recommended option, NCSC advises people and organizations to use password managers to generate unique and strong passwords, but states that their uptake is still low.
The advice from NCSC came in the midst of a dramatic increase in cybercrime during a pandemic.
In 2019, a GMX survey of more than 1,000 UK consumers showed that two-thirds of UK Internet users are reusing passwords on their most important online accounts.
Only one-fifth of survey respondents said they used different passwords for each account they had, and more than two-fifths “overwhelmed” the huge number of different passwords needed to manage different online accounts. I admitted that it was a target. Also, 9% have never changed their email account password. Often, many online accounts use the “front door” as their password.
Adam Philpott, EMEA President of McAfee Enterprise, commented on the NCSC blog: Across multiple accounts.
“Companies should use the advice provided by NCSC as a standard and ensure that it is incorporated into general best practices. If they do not understand the importance of password security, they will move to a hybrid working model in particular. As we continue to do so, we offer endless opportunities for cybercriminals. “
According to the NCSC, using three random words is more secure than using a complex password.
Source link According to the NCSC, using three random words is more secure than using a complex password.