Your Weak Password Is Putting Your Business At Risk

January 8, 2009 By Jeremiah Staes 1 Comment

There’s been a string of reports of various hacks of web 2.0 services, or individual services.  Whether it’s Twitter, Ning, etc, I’m hearing many reports that, as I had in a Twitter conversation with @kenburbary, It’s “the year of the miscreant.”  (By the way, if you want tips to avoid Twitter phishing, jump here to his blog).

So let’s get very serious about passwords BECAUSE 2009 IS the year of miscreant.  Deadly, business serious, and I’m going to sound tough but the message HAS to sink in.

With all of this sharing comes a responsibility to yourself.  I know, it stinks you need to have a more difficult password, but here are some facts:

1) If your password is ANY word in the dictionary or a name alone, it is much easier to be hacked.  There’s a thing called dictionary attacks where robots/scripts/etc try every english word.

Knowing this information now, you are being negligent to your business if you use a dictionary word password (especially without anything to mess it up, like numbers or special characters interspersed) and putting your business and your personal brand at risk of hackers; not to mention the time to re-create any assets that live there.

2) Depending on the age or software of the online service, some passwords are case sensitive, some aren’t.  If you can, USE CASE SENSITIVE passwords as well to increase your security.

3) The longer your password, the better.  Seriously.  Do nothing under 8 – nothing we have is less than 16 characters.  Mission critical stuff is 64 characters (we have a CD for that – after all, if a hacker/miscreant has physical access to your machine, you’re probably toast anyway).

4) User gibberish.  It’s hard to remember, but like a bank account number, you’ll eventually get it.  Go to http://www.grc.com/passwords and get yourself a unique, up to 64 character one.

5) Don’t give out your password to anyone.  I don’t give out my password to any of the Twitter services; sure, it’s just Twitter, but it’s a very bad habit.  Some of these things could easily be started knowing that many times, people’s passwords are the same for everything they do, including more serious things like their online banking.

6) Every time something wants a password, question it, even briefly:

  • What is this service asking for my password?
  • Why is it asking for it?
  • Is it really the service or program I think it is?
  • Do I trust it?  And how do I know I can trust it?

Unfortunately, even with all of this, you not alone can prevent these things.  As the hack of Twitter showed, bad security practices are done even at the top level of many sites.  Listening to podcasts like Security Now! (where many of these tips are adapted from), I’ve learned that some banks, because their websites are only web front ends to an ancient mainframe, are only 8 characters, non-case sensitive, even if you put in more!

But doing some practical things, like outlined above, can significantly reduce your chances of being hacked.  Compromising sites today is less about technology and much more about social engineering and taking advantage of the trust we seem to have.

Filed Under: Advertising, blogging, Business, Love Your User, Online Marketing Fundamentals, Podcasting, Rant, Security, Social Media, Tips, Web Sites Tagged With: password tips, prevention, Security

Auto Show Tweetup/Meetup January 23rd

January 4, 2009 By Jeremiah Staes Leave a Comment

With a ton of people coming to Detroit for the NAIAS auto show, I thought it in order to have a Tweetup, especially since we’re actually downtown and just a couple people mover stops or blocks from Cobo Hall.  Perfect for all of you folks in town who might not have rented a car, or those who want to drop in between festivities.

View From The OfficeSo here’s the deal – Friday, January 23rd, starting at 6ish, come on down (or over).  Food, Wii, etc. as well as live-streaming from our podcast studio.  Not sure what we’ll create, but we’ll create something together :-)

So join us in our HQ located in a 1905 Beaux Arts beauty of a building, steps from the People Mover and right next to Compuware, Greektown and the Stadiums.

Update: Go ahead and join the event on Facebook!

Our location is on the contact page – but as we get closer, I’ll be posting easy parking directions, as well as routes from the major hotels downtown.

Filed Under: Business, Fun, User Generated Content Tagged With: detroit auto show, naias, tweetup

Effective vs. Trendy

January 2, 2009 By Jeremiah Staes 1 Comment

As we embark on 2009, a lot of things seem to be falling out of cutting-edge fashion, like Facebook or Podcasting, or a host of other things.

But the reality is that for your business, you need to focus on what works.  Both Podcasting and Facebook are “dead” to some because they’re no longer cutting edge.  It’s not sexy to talk about them anymore to the digerati – which, by the way, are very much the core composition of Twitter today (but they probably won’t be the vox populi - or voice of the people - next year).

For many folks, their gainful employment is fed by the newest things because their purpose is to be on the cutting edge, not necessarily put the things to practical use. That’s okay, everyone has a role and they’re all worthy… but my job is NOT that.  My job is to put butts in seats for events, gain coverage of events and companies, improve the sales of products and services, and help make my client’s customers happy.

As an idea, it’s estimated that 28 million people downloaded podcasts last year, and additional people are listening to podcasts (as much as another 28-35 million, extrapolating from our percentage numbers) on the website and don’t even know it’s a podcast.  140 million accounts are on Facebook.

Yet “everyone” is all a-twitter about Twitter, with only about 3 million accounts and 1.5 million active ones, according to Net@Nite.

Many times, when tools still exist but fall off the “hip” radar, that usually means they’re quickly headed to the mainstream.  Pay heed to this gap; success is getting your business active for your product or service right on the cusp; that’s where it makes sense to be a good marketing budget monetary risk to take.

So is betting early wise on something like Twitter?  Sure.  If you have the resources (time), especially if you enjoy the medium or tool (Twitter) and a business that makes sense for it (and maybe it means experimenting to see if yours is), Twitter can reap rewards, like it did for Dell, apparently selling a million dollars worth of stuff. But remember, Dell is a natural fit with the current tech-savvy community.

Of course, you shouldn’t do everything for work – it’s more than okay, and I think a very good thing, if you use the tools as part of your personal/social life as well.  Maybe your first dip into Twitter isn’t focused on your company – but on your personal passions.

Filed Under: Business, Online Marketing Fundamentals, Social Media Tagged With: facebook, Podcasting, Social Media
Newer Posts »