Millions risk having bank accounts, photo albums and sensitive emails hacked by cyber attackers because their passwords are too weak.
The Home Office warned 75% of people do not follow official advice to protect vital information – putting themselves under threat.
Experts say online passwords should include a combination of words, numbers and symbols to keep hackers out of accounts such as emails and Facebook.
But a Government poll of 5,000 people found the vast majority instead used just a single word and number combination.
Crime Minister Karen Bradley warned: “When passwords are compromised, financial and banking details can be stolen.
“And there is an emotional impact caused by the loss of irreplaceable photos, videos and emails. Even worse, these can be seized to extort money.”
The risk from hackers is in the spotlight after attacks on celebrity iCloud accounts – where information from users’ mobiles can be stored.
Stars including Oscar-winning actress Jennifer Lawrence had intimate photos posted online. But officers warned it is not just celebrities who are at risk.
Jamie Saunders, of the National Crime Agency’s cyber-crime unit, said hackers will also break into the public’s accounts and use private images or emails to blackmail them.
He said: “Cyber criminals will target weakness. And therefore having weak passwords will leave you vulnerable.”
New NCA guidance says people should include three words in a password as well as numbers, symbols and upper - and lower-case letters.
The Government survey found only 25% use more than one word, and only a 33% include a symbol, such as an asterisk.
Around one in six uses their pet’s name, while one in seven uses an obvious date, such as a wedding anniversary. Other easy guesses include a child’s name, a birthday or place of birth.
Most people said they used weak passwords as they would struggle to remember anything complex. But Mr Saunders warned: “Nobody wants financial details, business information or photos to be stolen or held to ransom.”
Log in do's and don'ts
Stay informed. Subscribe to our newsletter
Do use different passwords everywhere. If your sole password gets cracked once, it means the person with that info now has access to all of your online accounts: Facebook, email, Amazon, PayPal... you name it.
Do remember the Pants Rule: Passwords are like underwear. Change often. Don’t share them. Don’t leave them out for others to see.
Do make passwords long.
Don’t use any word which can be found in the dictionary. Remember hackers have dictionaries too.
Don’t use numbers or letters in their keyboard order (“1234” or “qwerty”).
Don’t use the names of your relatives, your kids, or your pet, or football team, or use your birthday, anniversary, even your car licence plate number.
Don’t set your answer to security questions with the true answer. This can be found out. Set a random answer i.e. Place of Birth? Answer: Teletubbies.
The Standard Group Plc is a
multi-media organization with investments in media platforms spanning newspaper
print operations, television, radio broadcasting, digital and online services. The
Standard Group is recognized as a leading multi-media house in Kenya with a key
influence in matters of national and international interest.
join